Total vulnerabilities in the database
The _validaterepo function in sshpeer in Mercurial before 3.2.4 allows remote attackers to execute arbitrary commands via a crafted repository name in a clone command.
| Software | From | Fixed in |
|---|---|---|
| opensuse / opensuse | 13.1 | 13.1.x |
| opensuse / opensuse | 13.2 | 13.2.x |
| mercurial / mercurial | - | 3.2.3.x |