First published: Wed Feb 07 2024(Updated: )
An issue has been discovered in GitLab EE affecting all versions from 16.4 prior to 16.6.7, 16.7 prior to 16.7.5, and 16.8 prior to 16.8.2 which allows a maintainer to change the name of a protected branch that bypasses the security policy added to block MR.
Credit: cve@gitlab.com
Affected Software | Affected Version | How to fix |
---|---|---|
GitLab GitLab | >=16.4.0<16.6.7 | |
GitLab GitLab | >=16.7.0<16.7.5 | |
GitLab GitLab | >=16.8.0<16.8.2 |
Upgrade to versions 16.8.2, 16.7.5, 16.6.7 or above.
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.