FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

Gitlab -- Multiple Vulnerabilities

Affected packages
13.1.0	<=	gitlab-ce	<	13.1.3
13.0.0	<=	gitlab-ce	<	13.0.9
0	<=	gitlab-ce	<	12.10.14

Details

VuXML ID	f7a97d43-c039-11ea-a051-001b217b3468
Discovery	2020-07-06
Entry	2020-07-07

Gitlab reports:

Workhorse bypass allows files in /tmp to be read via Maven Repository APIs

[source]

References

CVE Name	CVE-2020-15525
URL	https://about.gitlab.com/releases/2020/07/06/critical-security-release-gitlab-13-1-3-released/

Copyright © 2003-2005 Jacques Vidrine and contributors.
Please see the source of this document for full copyright information.