CVE-2018-13346: Input Validation
Mercurial before version 4.6.1 has a missing check for fragment start position in mpatch.c:mpatchapply()
Upstream Changelog:
https://www.mercurial-scm.org/wiki/WhatsNew#Mercurial4.6.1.282018-06-06.29
Upstream Patch:
https://www.mercurial-scm.org/repo/hg/rev/faa924469635
Other sources
The mpatchapply function in mpatch.c in Mercurial before 4.6.1 incorrectly proceeds in cases where the fragment start is past the end of the original data, aka OVE-20180430-0004.
— GitHub
The mpatchapply function in mpatch.c in Mercurial before 4.6.1 incorrectly proceeds in cases where the fragment start is past the end of the original data, aka OVE-20180430-0004.
— MITRE
Affected Software
Remediation
Patch Available
Event History
Frequently Asked Questions
What is CVE-2018-13346?
CVE-2018-13346 is a vulnerability in Mercurial before 4.6.1 that allows the mpatch_apply function in mpatch.c to incorrectly proceed in cases where the fragment start is past the end of the original data.
What is the severity of CVE-2018-13346?
The severity of CVE-2018-13346 is high, with a CVSS score of 7.5.
Which software versions are affected by CVE-2018-13346?
Versions of Mercurial before 4.6.1 are affected by CVE-2018-13346.
How can I fix CVE-2018-13346?
To fix CVE-2018-13346, update Mercurial to version 4.6.1 or later.
Where can I find more information about CVE-2018-13346?
More information about CVE-2018-13346 can be found at the following references: [Link 1](https://access.redhat.com/errata/RHSA-2019:2276), [Link 2](https://lists.debian.org/debian-lts-announce/2020/07/msg00032.html), [Link 3](https://www.mercurial-scm.org/repo/hg/rev/faa924469635).