pkg:Debian/mercurial

36 total CVEsCRITICAL14HIGH14MEDIUM3

✅ Check your installed version

All known vulnerabilities

  • CRITICAL9.8CVE-2014-9390mercurial - security update
    from 0, < 3.1.2-2
  • CRITICAL9.8CVE-2014-9390mercurial - security update
    from 0, < 1.6.4-1+deb6u1
  • CRITICAL9.8CVE-2014-9462mercurial - security update
    from 0, < 2.2.2-4+deb7u1
  • CRITICAL9.8CVE-2014-9462mercurial - security update
    from 0, < 3.4-1
  • CRITICAL9.8CVE-2017-1000116Mercurial is vulnerable to shell injection attack
    from 0, < 4.3.1-1
  • CRITICAL9.8CVE-2017-17458mercurial - security update
    from 0, < 3.1.2-2+deb8u5
  • CRITICAL9.8CVE-2017-17458mercurial - security update
    from 0, < 4.4.1-1
  • CRITICAL9.8CVE-2017-17458mercurial - security update
    from 0, < 2.2.2-4+deb7u6
  • CRITICAL9.8CVE-2017-17458mercurial - security update
    from 0, < 3.1.2-2+deb8u6
  • CRITICAL9.8CVE-2017-17458mercurial - security update
    from 0, < 4.0-1+deb9u2
  • CRITICAL9.8CVE-2018-13347Mercurial mishandles integer addition and subtraction
    from 0, < 4.6.1-1
  • CRITICAL9.1CVE-2018-17983Mercurial Out-of-bounds Read vulnerability
    from 0, < 4.7.2-1
  • CRITICAL9.1CVE-2018-1000132mercurial - security update
    from 0, < 4.5.2-1
  • CRITICAL9.1CVE-2018-1000132mercurial - security update
    from 0, < 2.2.2-4+deb7u7
  • HIGH8.8CVE-2016-3105mercurial - security update
    from 0, < 3.1.2-2+deb8u3
  • HIGH8.8CVE-2016-3105mercurial - security update
    from 0, < 2.2.2-4+deb7u3
  • HIGH8.8CVE-2016-3105mercurial - security update
    from 0, < 3.8.1-1
  • HIGH8.8CVE-2016-3630Mercurial arbitrary code execution vulnerability
    from 0, < 3.7.3-1
  • HIGH8.8CVE-2016-3069Mercurial vulnerable to arbitrary code execution via a crafted name when converting a Git repository
    from 0, < 3.7.3-1
  • HIGH8.8CVE-2016-3068mercurial - security update
    from 0, < 3.7.3-1
  • HIGH8.8CVE-2016-3068mercurial - security update
    from 0, < 2.2.2-4+deb7u2
  • HIGH8.8CVE-2017-9462mercurial - security update
    from 0, < 4.3.1-1
  • HIGH8.8CVE-2017-9462mercurial - security update
    from 0, < 2.2.2-4+deb7u4
  • HIGH7.5CVE-2017-1000115mercurial - security update
    from 0, < 3.1.2-2+deb8u4
  • HIGH7.5CVE-2017-1000115mercurial - security update
    from 0, < 4.3.1-1
  • HIGH7.5CVE-2017-1000115mercurial - security update
    from 0, < 2.2.2-4+deb7u5
  • HIGH7.5CVE-2018-13346Mercurial Improper Input Validation vulnerability
    from 0, < 4.6.1-1
  • HIGH7.5CVE-2018-13348Mercurial Improper Input Validation vulnerability
    from 0, < 4.6.1-1
  • MEDIUM5.9CVE-2010-4237Mercurial Improper Certificate Validation vulnerability
    from 0, < 1.6.4-1
  • MEDIUM5.9CVE-2019-3902mercurial - security update
    from 0, < 4.9-1
  • MEDIUM5.9CVE-2019-3902mercurial - security update
    from 0, < 3.1.2-2+deb8u7
  • CVE-2025-2361mercurial - security update
    from 0, < 5.6.1-4+deb11u1
  • CVE-2025-2361mercurial - security update
    from 0, < 5.6.1-4+deb11u1
  • CVE-2025-2361mercurial - security update
    from 0, < 6.3.2-1+deb12u1
  • CVE-2008-2942Mercurial Directory traversal vulnerability
    from 0, < 1.0.1-2
  • CVE-2008-4297Mercurial before 1.0.2 does not enforce the allowpull permission setting for a pull operation from hgweb, which allows remote attackers to…
    from 0, < 1.0.1-5.1