CVE-2018-13346 — Improper Input Validation in Mercurial

CWE-20 — Improper Input Validation CWE-125 — Out-of-bounds Read9 documents6 sources

Severity

7.5HIGHNVD

EPSS

0.3%

top 49.79%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Mercurial Debian Mercurial

Timeline

PublishedJul 6

Latest updateMay 13

Description

The mpatch_apply function in mpatch.c in Mercurial before 4.6.1 incorrectly proceeds in cases where the fragment start is past the end of the original data, aka OVE-20180430-0004.

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:NExploitability: 3.9 | Impact: 3.6

Affected Packages4 packages

▶debiandebian/mercurial< mercurial 4.6.1-1 (bookworm)

▶NVDmercurial/mercurial< 4.6.1

▶PyPImercurial/mercurial< 4.6.1

▶Debianmercurial/mercurial< 4.6.1-1+3

Patches

Patch: www.mercurial-scm.org ↗Patch: www.mercurial-scm.org ↗

🔴Vulnerability Details

GHSA

Mercurial Improper Input Validation vulnerability↗2022-05-13

▶

OSV

Mercurial Improper Input Validation vulnerability↗2022-05-13

▶

OSV

CVE-2018-13346: The mpatch_apply function in mpatch↗2018-07-06

▶

📋Vendor Advisories

Red Hat

mercurial: Missing check for fragment start position in mpatch.c:mpatch_apply()↗2018-06-06

▶

Debian

CVE-2018-13346: mercurial - The mpatch_apply function in mpatch.c in Mercurial before 4.6.1 incorrectly proc...↗2018

▶

💬Community

Bugzilla

CVE-2018-13347 mercurial: Buffer underflow in mpatch.c:mpatch_apply()↗2018-06-22

▶

Bugzilla

CVE-2018-13346 mercurial: Missing check for fragment start position in mpatch.c:mpatch_apply()↗2018-06-22

▶

Bugzilla

CVE-2018-13346 CVE-2018-13347 mercurial: various flaws [fedora-all]↗2018-06-22

▶