FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

Gitlab -- Multiple vulnerabilities

Affected packages
11.4.0	<=	gitlab-ce	<	11.4.6
8.9.0	<=	gitlab-ce	<	11.3.10

Details

VuXML ID	d889d32c-ecd9-11e8-9416-001b217b3468
Discovery	2018-11-19
Entry	2018-11-20

Gitlab reports:

Persistent XSS Autocompletion

Unauthorized service template creation

[source]

References

CVE Name	CVE-2018-18643
CVE Name	CVE-2018-19359
URL	https://about.gitlab.com/2018/11/19/critical-security-release-gitlab-11-dot-4-dot-6-released/

Copyright © 2003-2005 Jacques Vidrine and contributors.
Please see the source of this document for full copyright information.