diff options
| author | mfechner <mfechner@FreeBSD.org> | 2018-12-07 03:30:18 +0800 |
|---|---|---|
| committer | mfechner <mfechner@FreeBSD.org> | 2018-12-07 03:30:18 +0800 |
| commit | 68fe2b1f7f5f64edf6b48bb244f8694a51af0b8a (patch) | |
| tree | 0ac88ba02b1404ee82e90dca3b2519ce8c2bba35 | |
| parent | 831c39b9de768b82a339fe3dc7d7a9b256d17c43 (diff) | |
| download | freebsd-ports-gnome-68fe2b1f7f5f64edf6b48bb244f8694a51af0b8a.tar.gz freebsd-ports-gnome-68fe2b1f7f5f64edf6b48bb244f8694a51af0b8a.tar.zst freebsd-ports-gnome-68fe2b1f7f5f64edf6b48bb244f8694a51af0b8a.zip | |
Document security vulnerability for gitlab-ce < 11.5.3.
Approved by: mentors (implicit)
| -rw-r--r-- | security/vuxml/vuln.xml | 28 |
1 files changed, 28 insertions, 0 deletions
diff --git a/security/vuxml/vuln.xml b/security/vuxml/vuln.xml index cd1c8bb59fa6..29dc9f86574b 100644 --- a/security/vuxml/vuln.xml +++ b/security/vuxml/vuln.xml @@ -58,6 +58,34 @@ Notes: * Do not forget port variants (linux-f10-libxml2, libxml2, etc.) --> <vuxml xmlns="http://www.vuxml.org/apps/vuxml-1"> + <vuln vid="9d3428d4-f98c-11e8-a148-001b217b3468"> + <topic>Gitlab -- Multiple vulnerabilities</topic> + <affects> + <package> + <name>gitlab-ce</name> + <range><ge>11.5.0</ge><lt>11.5.3</lt></range> + <range><ge>11.4.0</ge><lt>11.4.10</lt></range> + <range><ge>8.11.0</ge><lt>11.3.12</lt></range> + </package> + </affects> + <description> + <body xmlns="http://www.w3.org/1999/xhtml"> + <p>Gitlab reports:</p> + <blockquote cite="https://about.gitlab.com/2018/12/06/critical-security-release-gitlab-11-dot-5-dot-3-released"> + <p>Directory Traversal in Templates API</p> + </blockquote> + </body> + </description> + <references> + <url>https://about.gitlab.com/2018/12/06/critical-security-release-gitlab-11-dot-5-dot-3-released/</url> + <cvename>CVE-2018-19856</cvename> + </references> + <dates> + <discovery>2018-12-06</discovery> + <entry>2018-12-06</entry> + </dates> + </vuln> + <vuln vid="49cbe200-f92a-11e8-a89d-d43d7ef03aa6"> <topic>Flash Player -- multiple vulnerabilities</topic> <affects> |