PublicDate: 2008-06-30 20:41:00 UTC
Candidate: CVE-2008-2942
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-2942
Description:
 Directory traversal vulnerability in patch.py in Mercurial 1.0.1 allows
 user-assisted attackers to modify arbitrary files via ".." (dot dot)
 sequences in a patch file.
Ubuntu-Description:
Notes:
Bugs:
Priority: low
Discovered-by:
Assigned-to:
CVSS: 

Patches_mercurial:
upstream_mercurial: released (1.0.1-2)
dapper_mercurial: ignored (reached end-of-life)
feisty_mercurial: needed (reached end-of-life)
gutsy_mercurial: needed (reached end-of-life)
hardy_mercurial: ignored (reached end-of-life)
intrepid_mercurial: not-affected (1.0.1-5.1)
jaunty_mercurial: not-affected (1.0.1-5.1)
karmic_mercurial: not-affected (1.0.1-5.1)
lucid_mercurial: not-affected (1.0.1-5.1)
maverick_mercurial: not-affected (1.0.1-5.1)
natty_mercurial: not-affected (1.0.1-5.1)
oneiric_mercurial: not-affected (1.0.1-5.1)
devel_mercurial: not-affected (1.0.1-5.1)