FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

Gitlab -- vulnerabilities

Affected packages
17.5.0	<=	gitlab-ce	<	17.5.1
17.4.0	<=	gitlab-ce	<	17.4.3
11.2.0	<=	gitlab-ce	<	17.3.6
17.5.0	<=	gitlab-ee	<	17.5.1
17.4.0	<=	gitlab-ee	<	17.4.3
11.2.0	<=	gitlab-ee	<	17.3.6

Details

VuXML ID	78e6c113-91c1-11ef-a904-2cf05da270f3
Discovery	2024-10-23
Entry	2024-10-24

Gitlab reports:

HTML injection in Global Search may lead to XSS

DoS via XML manifest file import

[source]

References

CVE Name	CVE-2024-6826
CVE Name	CVE-2024-8312
URL	https://about.gitlab.com/releases/2024/10/23/patch-release-gitlab-17-5-1-released/

Copyright © 2003-2005 Jacques Vidrine and contributors.
Please see the source of this document for full copyright information.