First published: Tue Jun 08 2021(Updated: )
All versions of GitLab CE/EE starting from 12.8 before 13.10.5, all versions starting from 13.11 before 13.11.5, and all versions starting from 13.12 before 13.12.2 were affected by an issue in the handling of x509 certificates that could be used to spoof author of signed commits.
Credit: cve@gitlab.com
Affected Software | Affected Version | How to fix |
---|---|---|
GitLab GitLab | >=12.8.0<13.10.5 | |
GitLab GitLab | >=12.8.0<13.10.5 | |
GitLab GitLab | >=13.11.0<13.11.5 | |
GitLab GitLab | >=13.11.0<13.11.5 | |
GitLab GitLab | >=13.12.0<13.12.2 | |
GitLab GitLab | >=13.12.0<13.12.2 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.