First published: Wed Jun 12 2024(Updated: )
An issue has been discovered in GitLab CE/EE affecting all versions prior to 16.10.7, starting from 16.11 prior to 16.11.4, and starting from 17.0 prior to 17.0.2. A vulnerability in GitLab's CI/CD pipeline editor could allow for denial of service attacks through maliciously crafted configuration files.
Credit: cve@gitlab.com
Affected Software | Affected Version | How to fix |
---|---|---|
GitLab GitLab | <16.10.7 | |
GitLab GitLab | <16.10.7 | |
GitLab GitLab | >=16.11.0<16.11.4 | |
GitLab GitLab | >=16.11.0<16.11.4 | |
GitLab GitLab | >=17.0.0<17.0.2 | |
GitLab GitLab | >=17.0.0<17.0.2 |
Upgrade to versions 16.10.7, 16.11.4, 17.0.2 or above.
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.