FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2024-04-25 11:22:49 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

k68

These are the vulnerabilities relating to the commit you have selected:

VuXML ID	Description
b68cc195-cae7-11e9-86e9-001b217b3468	Gitlab -- Multiple Vulnerabilities Gitlab reports: Kubernetes Integration Server-Side Request Forgery Server-Side Request Forgery in Jira Integration Improved Protection Against Credential Stuffing Attacks Markdown Clientside Resource Exhaustion Pipeline Status Disclosure Group Runner Authorization Issue CI Metrics Disclosure User IP Disclosed by Embedded Image and Media Label Description HTML Injection IDOR in Epic Notes API Push Rule Bypass Project Visibility Restriction Bypass Merge Request Discussion Restriction Bypass Disclosure of Merge Request IDs Weak Authentication In Certain Account Actions Disclosure of Commit Title and Comments Stored XSS via Markdown EXIF Geolocation Data Exposure Multiple SSRF Regressions on Gitaly Default Branch Name Exposure Potential Denial of Service via CI Pipelines Privilege Escalation via Logrotate Discovery 2019-08-29 Entry 2019-08-30 gitlab-ce ge 12.2.0 lt 12.2.3 ge 12.1.0 lt 12.1.8 ge 0.0.0 lt 12.0.8 https://about.gitlab.com/2019/08/29/security-release-gitlab-12-dot-2-dot-3-released/ CVE-2019-15728 CVE-2019-15730 CVE-2019-15722 CVE-2019-15729 CVE-2019-15721 CVE-2019-15727 CVE-2019-15726 CVE-2019-15724 CVE-2019-15725 CVE-2019-15723 CVE-2019-15732 CVE-2019-15731 CVE-2019-15738 CVE-2019-15737 CVE-2019-15734 CVE-2019-15739 CVE-2019-15740 CVE-2019-15733 CVE-2019-15736 CVE-2019-15741

VuXML ID

Description

b68cc195-cae7-11e9-86e9-001b217b3468

Gitlab -- Multiple Vulnerabilities

Gitlab reports:

Kubernetes Integration Server-Side Request Forgery

Server-Side Request Forgery in Jira Integration

Improved Protection Against Credential Stuffing Attacks

Markdown Clientside Resource Exhaustion

Pipeline Status Disclosure

Group Runner Authorization Issue

CI Metrics Disclosure

User IP Disclosed by Embedded Image and Media

Label Description HTML Injection

IDOR in Epic Notes API

Push Rule Bypass

Project Visibility Restriction Bypass

Merge Request Discussion Restriction Bypass

Disclosure of Merge Request IDs

Weak Authentication In Certain Account Actions

Disclosure of Commit Title and Comments

Stored XSS via Markdown

EXIF Geolocation Data Exposure

Multiple SSRF Regressions on Gitaly

Default Branch Name Exposure

Potential Denial of Service via CI Pipelines

Privilege Escalation via Logrotate

Discovery 2019-08-29
Entry 2019-08-30
gitlab-ce

ge 12.2.0 lt 12.2.3

ge 12.1.0 lt 12.1.8

ge 0.0.0 lt 12.0.8

https://about.gitlab.com/2019/08/29/security-release-gitlab-12-dot-2-dot-3-released/
CVE-2019-15728
CVE-2019-15730
CVE-2019-15722
CVE-2019-15729
CVE-2019-15721
CVE-2019-15727
CVE-2019-15726
CVE-2019-15724
CVE-2019-15725
CVE-2019-15723
CVE-2019-15732
CVE-2019-15731
CVE-2019-15738
CVE-2019-15737
CVE-2019-15734
CVE-2019-15739
CVE-2019-15740
CVE-2019-15733
CVE-2019-15736
CVE-2019-15741