AVG-2137 log

Package gitlab
Status Not affected
Severity Medium
Type information disclosure
Affected 14.0.1-1
Fixed 14.0.3-1
Current 17.7.0-1 [extra]
Ticket None
Created Wed Jul 7 07:42:59 2021
Issue Severity Remote Type Description
CVE-2021-22233 Medium Yes Information disclosure
An information disclosure vulnerability in GitLab EE versions 13.10 and later before 14.0.2 allowed a user to read project details.
References
https://about.gitlab.com/releases/2021/07/01/security-release-gitlab-14-0-2-released/
Notes
The issue only affects the commercial Enterprise Edition, not the Community Edition that Arch Linux packages.