Description
The _validaterepo function in sshpeer in Mercurial before 3.2.4 allows remote attackers to execute arbitrary commands via a crafted repository name in a clone command.
References (7)
Core 7
Core References
Third Party Advisory vendor-advisory
x_refsource_gentoo
https://security.gentoo.org/glsa/201612-19
Exploit x_refsource_misc
http://chargen.matasano.com/chargen/2015/3/17/this-new-vulnerability-mercurial-command-injection-cve-2014-9462.html
Vendor Advisory x_refsource_confirm
http://www.oracle.com/technetwork/topics/security/bulletinjul2015-2511963.html
Mailing List vendor-advisory
x_refsource_suse
http://lists.opensuse.org/opensuse-updates/2015-03/msg00085.html
Vendor Advisory x_refsource_confirm
http://mercurial.selenic.com/wiki/WhatsNew
Third Party Advisory vendor-advisory
x_refsource_debian
http://www.debian.org/security/2015/dsa-3257
Third Party Advisory, VDB Entry vdb-entry
x_refsource_osvdb
http://www.osvdb.org/119816
Scores
EPSS
0.0113
EPSS Percentile
78.6%
Details
CWE
CWE-20
Status
published
Products (4)
mercurial/mercurial
< 3.2.3
opensuse/opensuse
13.1
opensuse/opensuse
13.2
pypi/mercurial
0 - 3.2.4PyPI
Published
Mar 31, 2015
Tracked Since
Feb 18, 2026