[Git][security-tracker-team/security-tracker][master] Track two gitlab CVEs from the Jan 7, 2021 release
Salvatore Bonaccorso
carnil at debian.org
Fri Jan 8 12:35:26 GMT 2021
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
101980c2 by Salvatore Bonaccorso at 2021-01-08T13:34:51+01:00
Track two gitlab CVEs from the Jan 7, 2021 release
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -2258,6 +2258,8 @@ CVE-2021-22167
RESERVED
CVE-2021-22166
RESERVED
+ - gitlab <not-affected> (Only affects Gitlab 13.7.x)
+ NOTE: https://about.gitlab.com/releases/2021/01/07/security-release-gitlab-13-7-2-released/
CVE-2021-22165
RESERVED
CVE-2021-22164
@@ -21547,6 +21549,9 @@ CVE-2020-26415 (Information about the starred projects for private user profiles
- gitlab 13.4.7-1
CVE-2020-26414
RESERVED
+ [experimental] - gitlab 13.5.6-1
+ - gitlab <unfixed>
+ NOTE: https://about.gitlab.com/releases/2021/01/07/security-release-gitlab-13-7-2-released/
CVE-2020-26413 (An issue has been discovered in GitLab CE/EE affecting all versions st ...)
- gitlab 13.4.7-1
CVE-2020-26412 (Removed group members were able to use the To-Do functionality to retr ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/101980c2bfe4ddf238dd40bc99045ab7e62983de
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/101980c2bfe4ddf238dd40bc99045ab7e62983de
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20210108/193bc321/attachment.html>
More information about the debian-security-tracker-commits
mailing list