FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

Gitlab -- Patch Release: 16.10.2, 16.9.4, 16.8.6

Affected packages
16.10.0 <= gitlab-ce < 16.10.2
16.9.0 <= gitlab-ce < 16.9.4
gitlab-ce < 16.8.6


VuXML ID dad6294c-f7c1-11ee-bb77-001b217b3468
Discovery 2024-04-10
Entry 2024-04-11

Gitlab reports:

Stored XSS injected in diff viewer

Stored XSS via autocomplete results

Redos on Integrations Chat Messages

Redos During Parse Junit Test Report


CVE Name CVE-2023-6489
CVE Name CVE-2023-6678
CVE Name CVE-2024-2279
CVE Name CVE-2024-3092