Linux Distros Unpatched Vulnerability : CVE-2022-2428

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A crafted tag in the Jupyter Notebook viewer in GitLab EE/CE affecting all versions before 15.1.6, 15.2 to 15.2.4, and 15.3 to 15.3.2 allows an attacker to issu...

Linux Distros Unpatched Vulnerability : CVE-2022-2865

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A cross-site scripting issue has been discovered in GitLab CE/EE affecting all versions before 15.1.6, 15.2 to 15.2.4 and 15.3 prior to 15.3.2. It was possible ...

OPENSUSE-SU-2024:13903-1 teleport-15.2.4-1.1 on GA media

These are all security issues fixed in the teleport-15.2.4-1.1 package on the GA media of openSUSE Tumbleweed...

Malicious code in build-benchmarks (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 9051e586242e7f4cb76bca3b533a915678a64eb52f0b8812e1a1d1f35e358fd5 The OpenSSF Package Analysis project identified 'build-benchmarks' @ 15.2.4 npm as malicious. It is considered malicious because: - The package...

GitLab < 15.1.6 (CVE-2022-2931)

The version of GitLab installed on the remote host is affected by a vulnerability, as follows: - A potential DOS vulnerability was discovered in GitLab CE/EE affecting all versions before 15.1.6, all versions starting from 15.2 before 15.2.4, all versions starting from 15.3 before 15.3.2. Malform...

PT-2022-23349 · Gitlab · Gitlab Ce/Ee +1

Name of the Vulnerable Software and Affected Versions: GitLab CE/EE versions 10.8 through 15.1.6 GitLab CE/EE versions 15.2 through 15.2.4 GitLab CE/EE versions 15.3 through 15.3.2 Description: A potential DOS issue was discovered in GitLab CE/EE. It is related to improper data handling on branch...

UBUNTU-CVE-2022-3031

An issue has been discovered in GitLab CE/EE affecting all versions before 15.1.6, all versions starting from 15.2 before 15.2.4, all versions starting from 15.3 before 15.3.2. It may be possible for an attacker to guess a user's password by brute force by sending crafted requests to a specific...

UBUNTU-CVE-2022-2592

A lack of length validation in Snippet descriptions in GitLab CE/EE affecting all versions prior to 15.1.6, 15.2 prior to 15.2.4 and 15.3 prior to 15.3.2 allows an authenticated attacker to create a maliciously large Snippet which when requested with or without authentication places excessive loa...

UBUNTU-CVE-2022-3030

An improper access control issue in GitLab CE/EE affecting all versions starting before 15.1.6, all versions from 15.2 before 15.2.4, all versions from 15.3 before 15.3.2 allows disclosure of pipeline status to unauthorized users...

UBUNTU-CVE-2022-2931

A potential DOS vulnerability was discovered in GitLab CE/EE affecting all versions before 15.1.6, all versions starting from 15.2 before 15.2.4, all versions starting from 15.3 before 15.3.2. Malformed content added to the issue description could have been used to trigger high CPU usage...

CVE-2022-2865

Removed by vendor...