First published: Fri Jul 01 2022(Updated: )
A Regular Expression Denial of Service vulnerability in GitLab CE/EE affecting all versions from 1.0.2 prior to 14.10.5, 15.0 prior to 15.0.4, and 15.1 prior to 15.1.1 allows an attacker to make a GitLab instance inaccessible via specially crafted web server response headers
Credit: cve@gitlab.com cve@gitlab.com
Affected Software | Affected Version | How to fix |
---|---|---|
GitLab GitLab | >=1.0.2<14.10.5 | |
GitLab GitLab | >=1.0.2<14.10.5 | |
GitLab GitLab | >=15.0.0<15.0.4 | |
GitLab GitLab | >=15.0.0<15.0.4 | |
GitLab GitLab | =15.1.0 | |
GitLab GitLab | =15.1.0 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.