119 matches found
GHSA-C73G-R4CP-2XMG vulnerabilities
Vulnerabilities for packages: gitlab-pages...
CVE-2026-8144 vulnerabilities
Vulnerabilities for packages: gitlab-pages...
GHSA-FQVQ-P2GC-C297 vulnerabilities
Vulnerabilities for packages: gitlab-pages...
CVE-2026-8280 vulnerabilities
Vulnerabilities for packages: gitlab-pages...
CVE-2026-8280 vulnerabilities
Vulnerabilities for packages: gitlab-rails-ce, gitlab-pages...
CVE-2026-8144 vulnerabilities
Vulnerabilities for packages: gitlab-rails-ce, gitlab-pages...
GHSA-C73G-R4CP-2XMG vulnerabilities
Vulnerabilities for packages: gitlab-rails-ce, gitlab-pages...
GHSA-FQVQ-P2GC-C297 vulnerabilities
Vulnerabilities for packages: gitlab-rails-ce, gitlab-pages...
CLEANSTART-2026-CH77232 Security fixes for CVE-2025-61726, CVE-2025-61728, CVE-2025-61729, CVE-2025-61730, CVE-2025-61732, CVE-2025-68119, CVE-2025-68121, CVE-2026-25679, CVE-2026-27139, CVE-2026-27142 applied in versions: 18.7.1-r0
Multiple security vulnerabilities affect the gitlab-pages-fips package. These issues are resolved in later releases. See references for individual vulnerability details...
CVE-2026-25679 vulnerabilities
Vulnerabilities for packages: gitlab-pages, crossplane-provider-aws-ec2, kube-logging-operator-custom-runner, gcp-compute-persistent-disk-csi-driver, cloud-sql-proxy, falco-no-driver, boring-registry, k8sgpt, step-kms-plugin, prometheus-alertmanager, crossplane-provider-aws-cloudwatchlogs, podman...
GHSA-J3GX-2473-5FP8 vulnerabilities
Vulnerabilities for packages: gitlab-pages, crossplane-provider-aws-ec2, kube-logging-operator-custom-runner, gcp-compute-persistent-disk-csi-driver, cloud-sql-proxy, falco-no-driver, boring-registry, k8sgpt, step-kms-plugin, prometheus-alertmanager, crossplane-provider-aws-cloudwatchlogs, podman...
CVE-2026-27142 vulnerabilities
Vulnerabilities for packages: flux-source-controller, gitlab-pages, cert-manager, kserve, crossplane-provider-aws-ec2, gitness, podinfo, azuredisk-csi, dkron, gcp-compute-persistent-disk-csi-driver, step-ca, cloud-sql-proxy, crossplane-provider-aws-cloudfront, falco-no-driver, ksops,...
GHSA-RV83-G57W-FR8J vulnerabilities
Vulnerabilities for packages: gitlab-pages, crossplane-provider-aws-ec2, kube-logging-operator-custom-runner, gcp-compute-persistent-disk-csi-driver, cloud-sql-proxy, falco-no-driver, boring-registry, k8sgpt, step-kms-plugin, prometheus-alertmanager, crossplane-provider-aws-cloudwatchlogs, podman...
GHSA-J4J7-VW47-RHFQ vulnerabilities
Vulnerabilities for packages: flux-source-controller, gitlab-pages, cert-manager, kserve, crossplane-provider-aws-ec2, gitness, podinfo, azuredisk-csi, dkron, gcp-compute-persistent-disk-csi-driver, step-ca, cloud-sql-proxy, crossplane-provider-aws-cloudfront, falco-no-driver, ksops,...
CVE-2026-25679 vulnerabilities
Vulnerabilities for packages: cilium-envoy-fips, flux-helm-controller, crossplane-function-environment-configs-fips, logstash, gitlab-kas-fips, kong-ingress-controller, neuvector-dbgen, node-problem-detector-fips, nats-top, trivy-fips, certificate-transparency-fips, kubernetes-csi-driver-nfs,...
GHSA-J4J7-VW47-RHFQ vulnerabilities
Vulnerabilities for packages: cilium-envoy-fips, flux-helm-controller, crossplane-function-environment-configs-fips, logstash, gitlab-kas-fips, kong-ingress-controller, trivy-fips, certificate-transparency-fips, kubernetes-csi-driver-nfs, redka, cluster-api-gcp-controller, plugin-barman-cloud,...
GHSA-RV83-G57W-FR8J vulnerabilities
Vulnerabilities for packages: cilium-envoy-fips, flux-helm-controller, crossplane-function-environment-configs-fips, logstash, gitlab-kas-fips, kong-ingress-controller, neuvector-dbgen, node-problem-detector-fips, nats-top, trivy-fips, certificate-transparency-fips, kubernetes-csi-driver-nfs,...
GHSA-H355-32PF-P2XM vulnerabilities
Vulnerabilities for packages: gitlab-pages, crossplane-provider-aws-ec2, kube-logging-operator-custom-runner, gcp-compute-persistent-disk-csi-driver, cloud-sql-proxy, falco-no-driver, boring-registry, govulncheck, k8sgpt, step-kms-plugin, prometheus-alertmanager,...
CVE-2025-68121 vulnerabilities
Vulnerabilities for packages: gitlab-pages, crossplane-provider-aws-ec2, kube-logging-operator-custom-runner, gcp-compute-persistent-disk-csi-driver, cloud-sql-proxy, falco-no-driver, boring-registry, govulncheck, k8sgpt, step-kms-plugin, prometheus-alertmanager,...
CVE-2025-61732 vulnerabilities
Vulnerabilities for packages: gitlab-pages, licenseclassifier, crossplane-provider-aws-ec2, kube-logging-operator-custom-runner, gcp-compute-persistent-disk-csi-driver, fluent-operator, cloud-sql-proxy, falco-no-driver, boring-registry, govulncheck, k8sgpt, step-kms-plugin, prometheus-alertmanage...