2 matches found
[SECURITY] [DSA 4206-1] gitlab security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4206-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff May 21, 2018 https://www.debian.org/security/faq -...
CVE-2018-8971
The CVE-2018-8971 issue affects GitLab releases prior to 10.3.9, 10.4.x before 10.4.6, and 10.5.x before 10.5.6, where an incorrect omniauth-auth0 configuration in the Auth0 integration allows signing in unintended users. The vulnerability has a high/critical impact (ATT&CK not specified in docs)...