FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

Gitlab -- Multiple vulnerabilities

Affected packages
11.4.0 <= gitlab-ce < 11.4.6
8.9.0 <= gitlab-ce < 11.3.10

Details

VuXML ID d889d32c-ecd9-11e8-9416-001b217b3468
Discovery 2018-11-19
Entry 2018-11-20

Gitlab reports:

Persistent XSS Autocompletion

Unauthorized service template creation

References

CVE Name CVE-2018-18643
CVE Name CVE-2018-19359
URL https://about.gitlab.com/2018/11/19/critical-security-release-gitlab-11-dot-4-dot-6-released/