CVE-2019-15741

CVE-2019-15741 affects GitLab Omnibus 7.4–12.2.1, where an unsafe interaction with logrotate can enable privilege escalation. The root cause is the log directory ownership being set to user 'git', allowing local users to leverage logrotate rotation to gain elevated privileges. Exploitation detail...