FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2025-10-07 15:55:27 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

These are the vulnerabilities relating to the commit you have selected:

VuXML IDDescription
477fdc04-9aa2-11f0-961b-2cf05da270f3Gitlab -- Vulnerabilities

Gitlab reports:

Denial of Service issue when uploading specifically crafted JSON files impacts GitLab CE/EE

Denial of Service issue bypassing query complexity limits impacts GitLab CE/EE

Information disclosure issue in virtual registery configuration for low privileged users impacts GitLab CE/EE

Privilege Escalation issue from within the Developer role impacts GitLab EE

Denial of Service issue in GraphQL API via Unbounded Array Parameters impacts GitLab CE/EE

Improper Authorization issue for Project Maintainers when assigning roles impacts GitLab EE

Denial of Service issue in GraphQL API blobSearch impacts GitLab CE/EE

Incorrect ownership assignment via Move Issue drop-down impacts GitLab CE/EE

Denial of Service issue via string conversion methods impacts GitLab CE/EE


Discovery 2025-09-25
Entry 2025-09-26
gitlab-ce
gitlab-ee
>= 18.4.0 lt 18.4.1

>= 18.3.0 lt 18.3.3

>= 11.10.0 lt 18.2.7

CVE-2025-10858
CVE-2025-8014
CVE-2025-9958
CVE-2025-7691
CVE-2025-10871
CVE-2025-10867
CVE-2025-5069
CVE-2025-10868
https://about.gitlab.com/releases/2025/09/25/patch-release-gitlab-18-4-1-released/