oss-sec mailing list archives

Previous By Date Next
Previous By Thread Next

Re: request for CVEs for git clients

From: Julien Cristau <jcristau () debian org>
Date: Sat, 20 Dec 2014 12:43:41 +0100
On Thu, Dec 18, 2014 at 16:34:22 -0800, Russ Allbery wrote:


Kurt Seifried <kseifried () redhat com> writes:


Ah my bad, I saw the blog entry, didn't read the git announcement -
CVE-2014-9390


My understanding is that this bug also affects Mercurial.  I'm not sure if
it should get its own separate CVE (or possibly already has).


http://mercurial.selenic.com/wiki/WhatsNew#Mercurial_3.2.3_.282014-12-18.29
uses that same CVE-2014-9390 id.

Cheers,
Julien
Previous By Date Next
Previous By Thread Next

Current thread: