Search CVE reports
61 – 70 of 28648 results
Not in release
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 18.10 before 18.10.8, 18.11 before 18.11.5, and 19.0 before 19.0.2 that under certain conditions could have allowed an authenticated user to read arbitrary...
1 affected package
gitlab
| Package | 26.04 LTS |
|---|---|
| gitlab | Not in release |
Not in release
GitLab has remediated an issue in GitLab EE affecting all versions from 13.1.4 before 18.10.8, 18.11 before 18.11.5, and 19.0 before 19.0.2 that under certain conditions could have allowed an authenticated user to add unauthorized...
1 affected package
gitlab
| Package | 26.04 LTS |
|---|---|
| gitlab | Not in release |
Not in release
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 12.10 before 18.10.8, 18.11 before 18.11.5, and 19.0 before 19.0.2 that under certain conditions could have allowed an unauthenticated user to cause denial...
1 affected package
gitlab
| Package | 26.04 LTS |
|---|---|
| gitlab | Not in release |
Not in release
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 15.9 before 18.10.8, 18.11 before 18.11.5, and 19.0 before 19.0.2 that under certain conditions could have allowed an authenticated user...
1 affected package
gitlab
| Package | 26.04 LTS |
|---|---|
| gitlab | Not in release |
Not in release
GitLab has remediated an issue in GitLab EE affecting all versions from 15.5 before 18.10.8, 18.11 before 18.11.5, and 19.0 before 19.0.2 that under certain conditions could have allowed an authenticated user with group Owner role...
1 affected package
gitlab
| Package | 26.04 LTS |
|---|---|
| gitlab | Not in release |
Not in release
GitLab has remediated an issue in GitLab EE affecting all versions from 13.9 before 18.10.8, 18.11 before 18.11.5, and 19.0 before 19.0.2 that under certain conditions could have allowed an authenticated user with Security...
1 affected package
gitlab
| Package | 26.04 LTS |
|---|---|
| gitlab | Not in release |
Not in release
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 15.10 before 18.10.8, 18.11 before 18.11.5, and 19.0 before 19.0.2 that under certain conditions could have allowed an authenticated user...
1 affected package
gitlab
| Package | 26.04 LTS |
|---|---|
| gitlab | Not in release |
An integer underflow vulnerability was found in MIT krb5 in the berval2tl_data() function in plugins/kdb/ldap/libkdb_ldap/ldap_principal2.c. The function performs an unsigned subtraction (bv_len - 2) without a prior bounds check....
1 affected package
krb5
| Package | 26.04 LTS |
|---|---|
| krb5 | Needs evaluation |
Several Spring WS integration paths with Spring Security could surface detailed account state (for example locked or disabled user semantics) to remote SOAP clients through exception messages or callback outcomes, instead of...
1 affected package
spring
| Package | 26.04 LTS |
|---|---|
| spring | Needs evaluation |
Not in release
Wss4jSecurityInterceptor initialized its BSP (WS-I Basic Security Profile) compliance flag so that inbound validation disabled WSS4J BSP enforcement on RequestData. Services that validate WS-Security on the network could therefore...
1 affected package
its
| Package | 26.04 LTS |
|---|---|
| its | Not in release |