Mercurial · Mercurial · CVE-2018-17983
**Name of the Vulnerable Software and Affected Versions**
Mercurial versions prior to 4.7.2
**Description**
The issue is related to an out-of-bounds read that occurs during the parsing of a malformed manifest entry in the `cext/manifest.c` file. This can potentially lead to information disclosure or other security issues.
**Recommendations**
For Mercurial versions prior to 4.7.2, update to version 4.7.2 or later to resolve the issue. As a temporary workaround, consider restricting access to malformed manifest entries until the update is applied.