CVE-2018-13347 — Integer Overflow or Wraparound in Mercurial

CWE-190 — Integer Overflow or Wraparound CWE-20 — Improper Input Validation CWE-787 — Out-of-bounds Write10 documents7 sources

Severity

9.8CRITICALNVD

EPSS

1.2%

top 21.41%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Mercurial Debian Mercurial

Timeline

PublishedJul 6

Latest updateMay 13

Description

mpatch.c in Mercurial before 4.6.1 mishandles integer addition and subtraction, aka OVE-20180430-0002.

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HExploitability: 3.9 | Impact: 5.9

Affected Packages4 packages

▶debiandebian/mercurial< mercurial 4.6.1-1 (bookworm)

▶NVDmercurial/mercurial< 4.6.1

▶PyPImercurial/mercurial< 4.6.1

▶Debianmercurial/mercurial< 4.6.1-1+3

Patches

Patch: www.mercurial-scm.org ↗Patch: www.mercurial-scm.org ↗Patch: www.mercurial-scm.org ↗

🔴Vulnerability Details

GHSA

Mercurial mishandles integer addition and subtraction↗2022-05-13

▶

OSV

Mercurial mishandles integer addition and subtraction↗2022-05-13

▶

CVEList

CVE-2018-13347: mpatch↗2018-07-06

▶

OSV

CVE-2018-13347: mpatch↗2018-07-06

▶

📋Vendor Advisories

Red Hat

mercurial: Buffer underflow in mpatch.c:mpatch_apply()↗2018-06-06

▶

Debian

CVE-2018-13347: mercurial - mpatch.c in Mercurial before 4.6.1 mishandles integer addition and subtraction, ...↗2018

▶

💬Community

Bugzilla

CVE-2018-13347 mercurial: Buffer underflow in mpatch.c:mpatch_apply()↗2018-06-22

▶

Bugzilla

CVE-2018-13346 mercurial: Missing check for fragment start position in mpatch.c:mpatch_apply()↗2018-06-22

▶

Bugzilla

CVE-2018-13346 CVE-2018-13347 mercurial: various flaws [fedora-all]↗2018-06-22

▶