CVE-2025-1250 Allocation of Resources Without Limits or Throttling in GitLab

An issue has been discovered in GitLab CE/EE affecting all versions from 15.0 before 18.1.6, 18.2 before 18.2.6, and 18.3 before 18.3.2 that could have allowed an authenticated user to stall background job processing by sending specially crafted commit messages, merge request descriptions, or not...

CVE-2021-22185

Insufficient input sanitization in wikis in GitLab version 13.8 and up allows an attacker to exploit a stored cross-site scripting vulnerability via a specially-crafted commit to a wiki...

SUSE CVE-2015-4143

The EAP-pwd server and peer implementation in hostapd and wpasupplicant 1.0 through 2.4 allows remote attackers to cause a denial of service out-of-bounds read and crash via a crafted 1 Commit or 2 Confirm message payload...

hostapd and wpa_supplicant denial of service vulnerabilities (CNVD-2015-03931)

hostapd is a daemon that implements a wireless access point AP and authentication server. wpasupplicant is a daemon that runs in the background, developed by software developer Jouni Malinen and other contributors, and is primarily used to support the WEP, WPA/WPA2 and WAPI wireless protocols and...

GLSA-200908-05 : Subversion: Remote execution of arbitrary code

The remote host is affected by the vulnerability described in GLSA-200908-05 Subversion: Remote execution of arbitrary code Matt Lewis of Google reported multiple integer overflows in the libsvndelta library, possibly leading to heap-based buffer overflows. Impact : A remote attacker with commit...