First published: Wed Jun 12 2024(Updated: )
An issue has been discovered in GitLab CE/EE affecting all versions starting from 8.4 prior to 16.10.7, starting from 16.11 prior to 16.11.4, and starting from 17.0 prior to 17.0.2. A vulnerability in GitLab's Asana integration allowed an attacker to potentially cause a regular expression denial of service by sending specially crafted requests.
Credit: cve@gitlab.com
Affected Software | Affected Version | How to fix |
---|---|---|
GitLab GitLab | >=8.4<16.10.7 | |
GitLab GitLab | >=8.4<16.10.7 | |
GitLab GitLab | >=16.11.0<16.11.4 | |
GitLab GitLab | >=16.11.0<16.11.4 | |
GitLab GitLab | >=17.0<=17.0.2 | |
GitLab GitLab | >=17.0<17.0.2 |
Upgrade to versions 16.10.7, 16.11.4, 17.0.2 or above.
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.