AVG-1521 log
| Package | gitlab |
| Status | Fixed |
| Severity | Medium |
| Type | information disclosure |
| Affected | 13.8.1-1 |
| Fixed | 13.8.2-1 |
| Current | 18.5.0-1 [extra] |
| Ticket | None |
| Created | Mon Feb 1 22:21:23 2021 |
| Issue | Severity | Remote | Type | Description |
|---|---|---|---|---|
| CVE-2021-22172 | Medium | Yes | Information disclosure | Improper authorization in GitLab 12.8+ allows a guest user in a private project to view tag data that should be inaccessible on the releases page. The issue... |
| Date | Advisory | Package | Type |
|---|---|---|---|
| 06 Feb 2021 | ASA-202102-11 | gitlab | information disclosure |
| References |
|---|
https://about.gitlab.com/blog/2021/02/01/security-release-gitlab-13-8-2-released/ |
| Notes |
|---|
There are five more issues in this announcement for which a CVE has been requested, but has not been assigned yet. |