FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2025-07-18 21:06:46 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

k68

These are the vulnerabilities relating to the commit you have selected:

VuXML IDDescription
729008b9-54bf-11ef-a61b-2cf05da270f3Gitlab -- Vulnerabilities

Gitlab reports:

Privilege Escalation via LFS Tokens Granting Unrestricted Repository Access

Cross project access of Security policy bot

Advanced search ReDOS in highlight for code results

Denial of Service via banzai pipeline

Denial of service using adoc files

ReDoS in RefMatcher when matching branch names using wildcards

Path encoding can cause the Web interface to not render diffs correctly

XSS while viewing raw XHTML files through API

Ambiguous tag name exploitation

Logs disclosings potentially sensitive data in query params

Password bypass on approvals using policy projects

ReDoS when parsing git push

Webhook deletion audit log can preserve auth credentials


Discovery 2024-08-07
Entry 2024-08-07
gitlab-ce
gitlab-ee
>= 17.2.0 lt 17.2.2

>= 17.1.0 lt 17.1.4

>= 12.0.0 lt 17.0.6

CVE-2024-3035
CVE-2024-6356
CVE-2024-5423
CVE-2024-4210
CVE-2024-2800
CVE-2024-6329
CVE-2024-4207
CVE-2024-3958
CVE-2024-4784
CVE-2024-3114
CVE-2024-7586
https://about.gitlab.com/releases/2024/08/07/patch-release-gitlab-17-2-2-released/