FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2025-01-14 21:31:10 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

k68

These are the vulnerabilities relating to the commit you have selected:

VuXML ID	Description
24c88add-4a3e-11ef-86d7-001b217b3468	Gitlab -- Vulnerabilities Gitlab reports: XSS via the Maven Dependency Proxy Project level analytics settings leaked in DOM Reports can access and download job artifacts despite use of settings to prevent it Direct Transfer - Authorised project/group exports are accessible to other users Bypassing tag check and branch check through imports Project Import/Export - Make project/group export files hidden to everyone except user who initiated it Discovery 2024-07-24 Entry 2024-07-25 gitlab-ce gitlab-ee >= 17.2.0 lt 17.2.1 >= 17.1.0 lt 17.1.3 >= 12.0.0 lt 17.0.5 CVE-2024-5067 CVE-2024-7057 CVE-2024-0231 https://about.gitlab.com/releases/2024/07/24/patch-release-gitlab-17-2-1-released/

VuXML ID

Description

24c88add-4a3e-11ef-86d7-001b217b3468

Gitlab -- Vulnerabilities

Gitlab reports:

XSS via the Maven Dependency Proxy

Project level analytics settings leaked in DOM

Reports can access and download job artifacts despite use of settings to prevent it

Direct Transfer - Authorised project/group exports are accessible to other users

Bypassing tag check and branch check through imports

Project Import/Export - Make project/group export files hidden to everyone except user who initiated it

Discovery 2024-07-24
Entry 2024-07-25
gitlab-ce
gitlab-ee

>= 17.2.0 lt 17.2.1

>= 17.1.0 lt 17.1.3

>= 12.0.0 lt 17.0.5

CVE-2024-5067
CVE-2024-7057
CVE-2024-0231
https://about.gitlab.com/releases/2024/07/24/patch-release-gitlab-17-2-1-released/