Malicious code in build-benchmarks (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 9051e586242e7f4cb76bca3b533a915678a64eb52f0b8812e1a1d1f35e358fd5 The OpenSSF Package Analysis project identified 'build-benchmarks' @ 15.2.4 npm as malicious. It is considered malicious because: - The package...

GitLab < 15.1.6 (CVE-2022-2931)

The version of GitLab installed on the remote host is affected by a vulnerability, as follows: - A potential DOS vulnerability was discovered in GitLab CE/EE affecting all versions before 15.1.6, all versions starting from 15.2 before 15.2.4, all versions starting from 15.3 before 15.3.2. Malform...

PT-2022-23349 · Gitlab · Gitlab Ce/Ee +1

Name of the Vulnerable Software and Affected Versions: GitLab CE/EE versions 10.8 through 15.1.6 GitLab CE/EE versions 15.2 through 15.2.4 GitLab CE/EE versions 15.3 through 15.3.2 Description: A potential DOS issue was discovered in GitLab CE/EE. It is related to improper data handling on branch...

CVE-2022-2865

Removed by vendor...