CVE-2018-13348
unknown
CVSS v3
—
CVSS v2
—
VIR risk
—
Description
The mpatch_decode function in mpatch.c in Mercurial before 4.6.1 mishandles certain situations where there should be at least 12 bytes remaining after the current position in the patch data, but actually are not, aka OVE-20180430-0001.
Predictions
Exploit likelihood
30%
Patch ETA
—
Heuristic predictions, AS-IS, for prioritization only.
Mitigations
Vendor advisory: debian — https://security-tracker.debian.org/tracker/CVE-2018-13348
Vendor advisory: suse — https://www.suse.com/security/cve/CVE-2018-13348.html
OS impact
| OS | Version | Status | Fixed in |
|---|---|---|---|
| sles | affected | | |
| debian | bookworm | fixed | 4.6.1-1 |
| debian | bullseye | fixed | 4.6.1-1 |
| debian | forky | fixed | 4.6.1-1 |
| debian | sid | fixed | 4.6.1-1 |
| debian | trixie | fixed | 4.6.1-1 |
Package impact
| Ecosystem | Package | Vulnerable | Fixed |
|---|---|---|---|
| PyPI | mercurial | <4.6.1 | 4.6.1 |
References
- https://nvd.nist.gov/vuln/detail/CVE-2018-13348
- https://github.com/pypa/advisory-database/tree/main/vulns/mercurial/PYSEC-2018-90.yaml
- https://lists.debian.org/debian-lts-announce/2020/07/msg00032.html
- https://www.mercurial-scm.org/repo/hg/rev/90a274965de7
- https://www.mercurial-scm.org/wiki/WhatsNew#Mercurial_4.6.1_.282018-06-06.29
- https://www.suse.com/security/cve/CVE-2018-13348.html
- https://security-tracker.debian.org/tracker/CVE-2018-13348
Verify integrity in audit chain (admin only). AS-IS.