FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2026-03-03 16:31:49 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

These are the vulnerabilities relating to the commit you have selected:

VuXML ID	Description
2263ea04-ac81-11ef-998c-2cf05da270f3	Gitlab -- vulnerabilities Gitlab reports: Privilege Escalation via LFS Tokens DoS through uncontrolled resource consumption when viewing a maliciously crafted cargo.toml file Unintended Access to Usage Data via Scoped Tokens Gitlab DOS via Harbor registry integration Resource exhaustion and denial of service with test_report API calls Streaming endpoint did not invalidate tokens after revocation Discovery 2024-11-26 Entry 2024-11-27 gitlab-ce gitlab-ee >= 17.6.0 lt 17.6.1 >= 17.5.0 lt 17.5.3 >= 8.12.0 lt 17.4.5 CVE-2024-8114 CVE-2024-8237 CVE-2024-11669 CVE-2024-8177 CVE-2024-11828 CVE-2024-11668 https://about.gitlab.com/releases/2024/11/26/patch-release-gitlab-17-6-1-released/

VuXML ID

Description

2263ea04-ac81-11ef-998c-2cf05da270f3

Gitlab -- vulnerabilities

Gitlab reports:

Privilege Escalation via LFS Tokens

DoS through uncontrolled resource consumption when viewing a maliciously crafted cargo.toml file

Unintended Access to Usage Data via Scoped Tokens

Gitlab DOS via Harbor registry integration

Resource exhaustion and denial of service with test_report API calls

Streaming endpoint did not invalidate tokens after revocation

Discovery 2024-11-26
Entry 2024-11-27
gitlab-ce
gitlab-ee

>= 17.6.0 lt 17.6.1

>= 17.5.0 lt 17.5.3

>= 8.12.0 lt 17.4.5

CVE-2024-8114
CVE-2024-8237
CVE-2024-11669
CVE-2024-8177
CVE-2024-11828
CVE-2024-11668
https://about.gitlab.com/releases/2024/11/26/patch-release-gitlab-17-6-1-released/