FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2025-02-02 08:34:31 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

k68

These are the vulnerabilities relating to the commit you have selected:

VuXML ID	Description
cc1ac01e-86b0-11ef-9369-2cf05da270f3	Gitlab -- vulnerabilities Gitlab reports: Run pipelines on arbitrary branches An attacker can impersonate arbitrary user SSRF in Analytics Dashboard Viewing diffs of MR with conflicts can be slow HTMLi in OAuth page Deploy Keys can push changes to an archived repository Guests can disclose project templates GitLab instance version disclosed to unauthorized users Discovery 2024-10-09 Entry 2024-10-10 gitlab-ce gitlab-ee >= 17.4.0 lt 17.4.2 >= 17.3.0 lt 17.3.5 >= 8.16 lt 17.2.9 CVE-2024-9164 CVE-2024-8970 CVE-2024-8977 CVE-2024-9631 CVE-2024-6530 CVE-2024-9623 CVE-2024-5005 CVE-2024-9596 https://about.gitlab.com/releases/2024/10/09/patch-release-gitlab-17-4-2-released/

VuXML ID

Description

cc1ac01e-86b0-11ef-9369-2cf05da270f3

Gitlab -- vulnerabilities

Gitlab reports:

Run pipelines on arbitrary branches

An attacker can impersonate arbitrary user

SSRF in Analytics Dashboard

Viewing diffs of MR with conflicts can be slow

HTMLi in OAuth page

Deploy Keys can push changes to an archived repository

Guests can disclose project templates

GitLab instance version disclosed to unauthorized users

Discovery 2024-10-09
Entry 2024-10-10
gitlab-ce
gitlab-ee

>= 17.4.0 lt 17.4.2

>= 17.3.0 lt 17.3.5

>= 8.16 lt 17.2.9

CVE-2024-9164
CVE-2024-8970
CVE-2024-8977
CVE-2024-9631
CVE-2024-6530
CVE-2024-9623
CVE-2024-5005
CVE-2024-9596
https://about.gitlab.com/releases/2024/10/09/patch-release-gitlab-17-4-2-released/