Gentoo Linux Security Advisory 201612-19 - Multiple vulnerabilities have been found in Mercurial, the worst of which could lead to the remote execution of arbitrary code. Versions less than 3.8.4 are affected.
47c379d973e4969784c5bccded8e80c7573e79b6ec6f68d82c36130813ba786e
Debian Linux Security Advisory 3542-1 - Several vulnerabilities have been discovered in Mercurial, a distributed version control system.
8a55233ac0ff62df88d422523f37a42a009f2e368698ed0a39f5c316eb14eec0
Slackware Security Advisory - New mercurial packages are available for Slackware 13.0, 13.1, 13.37, 14.0, 14.1, and -current to fix security issues.
d0919f77b9b9e732bca1f1e124be77e787a59e2770588c11f149a2c7ab403dc7