CVE-2018-13348 — Improper Input Validation in Mercurial

CWE-20 — Improper Input Validation CWE-125 — Out-of-bounds Read10 documents7 sources

Severity

7.5HIGHNVD

EPSS

0.6%

top 30.13%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Mercurial Debian Mercurial

Timeline

PublishedJul 6

Latest updateMay 13

Description

The mpatch_decode function in mpatch.c in Mercurial before 4.6.1 mishandles certain situations where there should be at least 12 bytes remaining after the current position in the patch data, but actually are not, aka OVE-20180430-0001.

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:NExploitability: 3.9 | Impact: 3.6

Affected Packages4 packages

▶debiandebian/mercurial< mercurial 4.6.1-1 (bookworm)

▶NVDmercurial/mercurial< 4.6.1

▶PyPImercurial/mercurial< 4.6.1

▶Debianmercurial/mercurial< 4.6.1-1+3

Patches

Patch: www.mercurial-scm.org ↗Patch: www.mercurial-scm.org ↗

🔴Vulnerability Details

GHSA

Mercurial Improper Input Validation vulnerability↗2022-05-13

▶

OSV

Mercurial Improper Input Validation vulnerability↗2022-05-13

▶

OSV

CVE-2018-13348: The mpatch_decode function in mpatch↗2018-07-06

▶

CVEList

CVE-2018-13348: The mpatch_decode function in mpatch↗2018-07-06

▶

📋Vendor Advisories

Red Hat

mercurial: Improper length check in mpatch.c↗2018-06-06

▶

Debian

CVE-2018-13348: mercurial - The mpatch_decode function in mpatch.c in Mercurial before 4.6.1 mishandles cert...↗2018

▶

💬Community

Bugzilla

CVE-2018-13348 mercurial: Improper length check in mpatch.c [fedora-all]↗2018-06-22

▶

Bugzilla

mercurial: Integer overflow in mpatch.c:mpatch_decode()↗2018-06-22

▶

Bugzilla

CVE-2018-13348 mercurial: Improper length check in mpatch.c↗2018-06-22

▶