FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

Gitlab -- Multiple vulnerabilities

Affected packages
11.7.0 <= gitlab-ce < 11.7.4
11.6.0 <= gitlab-ce < 11.6.9

Details

VuXML ID 43ee6c1d-29ee-11e9-82a1-001b217b3468
Discovery 2019-02-05
Entry 2019-02-06

Gitlab reports:

Leak of Confidential Issue and Merge Request Titles

Persistent XSS in User Status

References

CVE Name CVE-2019-6796
CVE Name CVE-2019-7353
URL https://about.gitlab.com/2019/02/05/critical-security-release-gitlab-11-dot-7-dot-4-released/