This script is Copyright (C) 2009-2014 Tenable Network Security, Inc.
The remote openSUSE host is missing a security update.
The hgweb script didn't enforce the 'allowpull' permission setting
which allowed anyone to retrieve files from the repository
See also :
Update the affected mercurial package.
Risk factor :
Medium / CVSS Base Score : 5.0