« back to all changes in this revision
Viewing changes to debian/changelog
- Committer: Package Import Robot
- Date: 2015-06-17 13:09:05 UTC
- Revision ID: package-import@ubuntu.com-20150617130905-oz83huwlvaox2ug8
[ Jamie Strandboge ]
* SECURITY UPDATE: fix for improperly handling case-insensitive paths on
Windows and OS X clients
- http://selenic.com/repo/hg-stable/rev/885bd7c5c7e3
- http://selenic.com/repo/hg-stable/rev/c02a05cc6f5e
- http://selenic.com/repo/hg-stable/rev/6dad422ecc5a
- CVE-2014-9390
- LP: #1404035
[ Marc Deslauriers ]
* SECURITY UPDATE: arbitrary command exection via crafted repository
name in a clone command
- d/p/from_upstream__sshpeer_more_thorough_shell_quoting.patch: add
more thorough shell quoting to mercurial/sshpeer.py.
- CVE-2014-9462
* SECURITY UPDATE: fix for improperly handling case-insensitive paths on
Windows and OS X clients
- http://selenic.com/repo/hg-stable/rev/885bd7c5c7e3
- http://selenic.com/repo/hg-stable/rev/c02a05cc6f5e
- http://selenic.com/repo/hg-stable/rev/6dad422ecc5a
- CVE-2014-9390
- LP: #1404035
[ Marc Deslauriers ]
* SECURITY UPDATE: arbitrary command exection via crafted repository
name in a clone command
- d/p/from_upstream__sshpeer_more_thorough_shell_quoting.patch: add
more thorough shell quoting to mercurial/sshpeer.py.
- CVE-2014-9462
- files added:
- .pc/CVE-2014-9390.pt1
- .pc/CVE-2014-9390.pt1/mercurial
- .pc/CVE-2014-9390.pt2
- .pc/CVE-2014-9390.pt2/mercurial
- .pc/CVE-2014-9390.pt2/tests
- .pc/CVE-2014-9390.pt4
- .pc/CVE-2014-9390.pt4/mercurial
- .pc/CVE-2014-9390.pt4/tests
- .pc/from_upstream__sshpeer_more_thorough_shell_quoting.patch
- .pc/from_upstream__sshpeer_more_thorough_shell_quoting.patch/mercurial
- files modified:
- .pc/applied-patches
added
removed
debian/changelog
