From ${URL} : A possible arbitrary code execution when converting Git repos was found in Mercirual. Mercurial prior to 3.8 allowed arbitrary code execution when using the convert extension on Git repos with hostile names. This could affect automated code conversion services that allow arbitrary repository names. This is a further side-effect of Git CVE-2015-7545. External Reference: https://www.mercurial-scm.org/wiki/WhatsNew#Mercurial_3.8_.2F_3.8.1_.282016-5-1.29 Upstream fix: https://selenic.com/hg/rev/a56296f55a5e @maintainer(s): since the fixed package is already in the tree, please let us know if it is ready for the stabilization or not.
Yes, feel free to stabilize.
CVE-2016-3105 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2016-3105): The convert extension in Mercurial before 3.8 might allow context-dependent attackers to execute arbitrary code via a crafted git repository name.
@arches, please stabilize: =dev-vcs/mercurial-3.8.4 Yes, the bug title differs as 3.8.1 is the actual fixed version thus it needs to reflect for GLSA reasons. Thanks.
Stable for HPPA PPC64.
amd64 stable
x86 stable
arm stable
Stable on alpha.
ppc stable
sparc stable
ia64 stable. Maintainer(s), please cleanup.
This issue was resolved and addressed in GLSA 201612-19 at https://security.gentoo.org/glsa/201612-19 by GLSA coordinator Aaron Bauman (b-man).