Security update for mercurial
This update for mercurial fixes the following issues:
Mercurial was updated to 4.2.3, a security fix update for
- CVE-2017-1000115: Incomplete symlink auditing allowed writing to files outside of the repository (boo#1053344)
- CVE-2017-1000116: Client-side code execution via argument injection in SSH URLs (boo#1052696)
- Submitted by Takashi Iwai (tiwai)
Fixed bugs
bnc#1053344
VUL-0: CVE-2017-1000115: mercurial: path traversal via symlink
bnc#1052696
VUL-0: CVE-2017-1000116: mercurial: client-side code execution via argument injection in SSH URLs