gitlab-org/omnibus-gitlab

gitlab-org/omnibus-gitlab

Releases5.08K

Frequency21 hours

Last Release 14 days ago

Stars696

This project creates full-stack platform-specific downloadable packages for GitLab.

Log in to subscribe

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2023-5332 ↗	Dec 4, 2023Monday, 4 December 2023, 07:15	5.9 MEDIUM	—
Patch in third party library Consul requires 'enable-script-checks' to be set to False. This was required to enable a patch by the vendor. Without this setting the patch could be bypassed. This only affects GitLab-EE.
CVE-2019-15741 ↗	Sep 16, 2019Monday, 16 September 2019, 18:15	9.8 CRITICAL	7.5 HIGH
An issue was discovered in GitLab Omnibus 7.4 through 12.2.1. An unsafe interaction with logrotate could result in a privilege escalation
CVE-2019-14943 ↗	Aug 29, 2019Thursday, 29 August 2019, 12:15	—	7.5 HIGH
An issue was discovered in GitLab Community and Enterprise Edition 12.0 through 12.1.4. It uses Hard-coded Credentials.