The vulnerability of the Sqlalchemy mako Python template library, related to an incorrect regular expression, allows attackers to cause service interruptions.

The vulnerability of the Sqlalchemy mako Python template library is related to insufficient input validation when processing regular expressions in the Lexer class. Exploiting this vulnerability allows a malicious actor to deliver specially crafted data to the application and execute a...

CVE-2019-10640

CVE-2019-10640 affects GitLab Community and Enterprise Edition prior to 11.7.10, 11.8.x prior to 11.8.6, and 11.9.x prior to 11.9.4. The vulnerability is a regex input validation issue on the .gitlab-ci.yml refs value, which allows uncontrolled resource consumption. Affected versions and the root...