FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

Gitlab -- Arbitrary repo read in Gitlab project import

Affected packages
11.6.0	<=	gitlab-ce	<	11.6.4
11.5.0	<=	gitlab-ce	<	11.5.7
8.9.0	<=	gitlab-ce	<	11.4.14

Details

VuXML ID	ff50192c-19eb-11e9-8573-001b217b3468
Discovery	2019-01-16
Entry	2019-01-17

Gitlab reports:

Arbitrary repo read in Gitlab project import

[source]

References

CVE Name	CVE-2019-6240
URL	https://about.gitlab.com/2019/01/16/critical-security-release-gitlab-11-dot-6-dot-4-released/

Copyright © 2003-2005 Jacques Vidrine and contributors.
Please see the source of this document for full copyright information.