Mercurial 4.9 release

This is an overview of 4.9 release.

1. Security Fixes

It was possible to use symlinks and subrepositories to defeat Mercurial's path-checking logic and write files outside a repository. This has been fixed. Users on older versions can either disable subrepositories with

allowed = false

in their configuration or by ensuring any cloned repositories don't contain malicious symlinks.

2. New Features

3. New Experimental Features

4. Other Notable Features

5. Bug Fixes

6. Backwards Compatibility Changes

7. Internal API Changes

Release4.9 (last edited 2019-02-02 02:48:03 by YuyaNishihara)