18 matches found
CVE-2022-0740
Incorrect authorization in the Asana integration's branch restriction feature in all versions of GitLab CE/EE starting from version 7.8.0 before 14.7.7, all versions starting from 14.8 before 14.8.5, all versions starting from 14.9 before 14.9.2 makes it possible to close Asana tasks from...
EUVD-2022-15807
Malicious code in bioql PyPI...
Linux Distros Unpatched Vulnerability : CVE-2022-0740
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Incorrect authorization in the Asana integration's branch restriction feature in all versions of GitLab CE/EE starting from version 7.8.0 before 14.7.7, all...
SUSE CVE-2022-2196
A regression exists in the Linux Kernel within KVM: nVMX that allowed for speculative execution attacks. L2 can carry out Spectre v2 attacks on L1 due to L1 thinking it doesn't need retpolines or IBPB after running L2 due to KVM L0 advertising eIBRS support to L1. An attacker at L2 with code...
BIT-GITLAB-2022-0740
Incorrect authorization in the Asana integration's branch restriction feature in all versions of GitLab CE/EE starting from version 7.8.0 before 14.7.7, all versions starting from 14.8 before 14.8.5, all versions starting from 14.9 before 14.9.2 makes it possible to close Asana tasks from...
Improper Authorization
gitlab is vulnerable to Improper Authorization. The vulnerability exists due to the incorrect authorization in the Asana integration's branch restriction feature in the library, which allows an attacker to close Asana tasks from unrestricted branches...
Linux Kernel 安全漏洞
Linux kernel is the kernel used by the Linux Foundation's open source operating system Linux. A security vulnerability exists in Linux Kernel version 6.2, which stems from a common IBRS being enabled that makes userspace processes vulnerable...
CVE-2022-0740
Incorrect authorization in the Asana integration's branch restriction feature in all versions of GitLab CE/EE starting from version 7.8.0 before 14.7.7, all versions starting from 14.8 before 14.8.5, all versions starting from 14.9 before 14.9.2 makes it possible to close Asana tasks from...
CVE-2022-0740
Incorrect authorization in the Asana integration's branch restriction feature in all versions of GitLab CE/EE starting from version 7.8.0 before 14.7.7, all versions starting from 14.8 before 14.8.5, all versions starting from 14.9 before 14.9.2 makes it possible to close Asana tasks from...
CVE-2022-0740
Incorrect authorization in the Asana integration's branch restriction feature in all versions of GitLab CE/EE starting from version 7.8.0 before 14.7.7, all versions starting from 14.8 before 14.8.5, all versions starting from 14.9 before 14.9.2 makes it possible to close Asana tasks from...
Authorization
Incorrect authorization in the Asana integration's branch restriction feature in all versions of GitLab CE/EE starting from version 7.8.0 before 14.7.7, all versions starting from 14.8 before 14.8.5, all versions starting from 14.9 before 14.9.2 makes it possible to close Asana tasks from...
UBUNTU-CVE-2022-0740
Incorrect authorization in the Asana integration's branch restriction feature in all versions of GitLab CE/EE starting from version 7.8.0 before 14.7.7, all versions starting from 14.8 before 14.8.5, all versions starting from 14.9 before 14.9.2 makes it possible to close Asana tasks from...
CVE-2022-0740
GitLab CE/EE versions are affected by an incorrect authorization in the Asana integration's branch restriction feature, allowing closure of Asana tasks from unrestricted branches. Affected ranges: 7.8.0–14.7.6; 14.8.0–14.8.4; 14.9.0–14.9.1. Root cause: enforcement gap in the branch restriction lo...
CVE-2022-0740
Incorrect authorization in the Asana integration's branch restriction feature in all versions of GitLab CE/EE starting from version 7.8.0 before 14.7.7, all versions starting from 14.8 before 14.8.5, all versions starting from 14.9 before 14.9.2 makes it possible to close Asana tasks from...
CVE-2022-0740
Incorrect authorization in the Asana integration's branch restriction feature in all versions of GitLab CE/EE starting from version 7.8.0 before 14.7.7, all versions starting from 14.8 before 14.8.5, all versions starting from 14.9 before 14.9.2 makes it possible to close Asana tasks from...
PT-2022-13402 · Gitlab +1 · Gitlab Ce/Ee +2
Name of the Vulnerable Software and Affected Versions: GitLab CE/EE versions 7.8.0 through 14.7.7 GitLab CE/EE versions 14.8.0 through 14.8.4 GitLab CE/EE versions 14.9.0 through 14.9.1 Description: The issue is related to incorrect authorization in the Asana integration's branch restriction...
GitLab Community Edition (CE) and Enterprise Edition (EE) 授权问题漏洞
GitLab Enterprise Edition is a content management system.GitLab Community Edition is a community edition of GitLab from GitLab, Inc. An authorization issue vulnerability exists in GitLab Community Edition CE and Enterprise Edition EE due to incorrect authorization in the branch restriction featur...
kernel: Indirect Branch Prediction Barrier is force-disabled when STIBP is unavailable or enhanced IBRS is available.
A flaw was found in the Linux kernel’s implementation of the Enhanced IBPB Indirect Branch Prediction Barrier. The IBPB mitigation will be disabled when STIBP is not available or when the Enhanced Indirect Branch Restricted Speculation IBRS is available. This flaw allows a local attacker to perfo...