FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2025-11-21 11:10:32 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

These are the vulnerabilities relating to the commit you have selected:

VuXML ID	Description
f741ea93-af61-11f0-98b5-2cf05da270f3	Gitlab -- vulnerabilities Gitlab reports: Improper access control issue in runner API impacts GitLab EE Denial of service issue in event collection impacts GitLab CE/EE Denial of service issue in JSON validation impacts GitLab CE/EE Denial of service issue in upload impacts GitLab CE/EE Incorrect Authorization issue in pipeline builds impacts GitLab CE Business logic error issue in group memberships impacts GitLab EE Missing authorization issue in quick actions impacts GitLab EE Discovery 2025-10-22 Entry 2025-10-22 gitlab-ce gitlab-ee >= 18.5.0 lt 18.5.1 >= 18.4.0 lt 18.4.3 >= 10.6.0 lt 18.3.5 CVE-2025-11702 CVE-2025-10497 CVE-2025-11447 CVE-2025-11974 CVE-2025-11971 CVE-2025-6601 CVE-2025-11989 https://about.gitlab.com/releases/2025/10/22/patch-release-gitlab-18-5-1-released/
5a1d6309-c04a-11f0-85d8-2cf05da270f3	Gitlab -- vulnerabilities Gitlab reports: Cross-site scripting issue in k8s proxy impacts GitLab CE/EE Incorrect Authorization issue in workflows impacts GitLab EE Information Disclosure issue in GraphQL subscriptions impacts GitLab CE/EE Information Disclosure issue in access control impacts GitLab CE/EE Prompt Injection issue in GitLab Duo review impacts GitLab EE Client Side Path Traversal issue in branch names impacts GitLab EE Information Disclosure issue in packages API endpoint impacts GitLab CE/EE Improper Access Control issue in GitLab Pages impacts GitLab CE/EE Denial of service issue in markdown impacts GitLab CE/EE Discovery 2025-11-12 Entry 2025-11-13 gitlab-ce gitlab-ee >= 18.5.0 lt 18.5.2 >= 18.4.0 lt 18.4.4 >= 13.2.0 lt 18.3.6 CVE-2025-11224 CVE-2025-11865 CVE-2025-2615 CVE-2025-7000 CVE-2025-6945 CVE-2025-11990 CVE-2025-6171 CVE-2025-7736 CVE-2025-12983 https://about.gitlab.com/releases/2025/11/12/patch-release-gitlab-18-5-2-released/

VuXML ID

Description

f741ea93-af61-11f0-98b5-2cf05da270f3

Gitlab -- vulnerabilities

Gitlab reports:

Improper access control issue in runner API impacts GitLab EE

Denial of service issue in event collection impacts GitLab CE/EE

Denial of service issue in JSON validation impacts GitLab CE/EE

Denial of service issue in upload impacts GitLab CE/EE

Incorrect Authorization issue in pipeline builds impacts GitLab CE

Business logic error issue in group memberships impacts GitLab EE

Missing authorization issue in quick actions impacts GitLab EE

Discovery 2025-10-22
Entry 2025-10-22
gitlab-ce
gitlab-ee

>= 18.5.0 lt 18.5.1

>= 18.4.0 lt 18.4.3

>= 10.6.0 lt 18.3.5

CVE-2025-11702
CVE-2025-10497
CVE-2025-11447
CVE-2025-11974
CVE-2025-11971
CVE-2025-6601
CVE-2025-11989
https://about.gitlab.com/releases/2025/10/22/patch-release-gitlab-18-5-1-released/

5a1d6309-c04a-11f0-85d8-2cf05da270f3

Gitlab -- vulnerabilities

Gitlab reports:

Cross-site scripting issue in k8s proxy impacts GitLab CE/EE

Incorrect Authorization issue in workflows impacts GitLab EE

Information Disclosure issue in GraphQL subscriptions impacts GitLab CE/EE

Information Disclosure issue in access control impacts GitLab CE/EE

Prompt Injection issue in GitLab Duo review impacts GitLab EE

Client Side Path Traversal issue in branch names impacts GitLab EE

Information Disclosure issue in packages API endpoint impacts GitLab CE/EE

Improper Access Control issue in GitLab Pages impacts GitLab CE/EE

Denial of service issue in markdown impacts GitLab CE/EE

Discovery 2025-11-12
Entry 2025-11-13
gitlab-ce
gitlab-ee

>= 18.5.0 lt 18.5.2

>= 18.4.0 lt 18.4.4

>= 13.2.0 lt 18.3.6

CVE-2025-11224
CVE-2025-11865
CVE-2025-2615
CVE-2025-7000
CVE-2025-6945
CVE-2025-11990
CVE-2025-6171
CVE-2025-7736
CVE-2025-12983
https://about.gitlab.com/releases/2025/11/12/patch-release-gitlab-18-5-2-released/