AVG-2619 log
| Package | gitlab-runner |
| Status | Fixed |
| Severity | Medium |
| Type | multiple issues |
| Affected | 14.5.0-1 |
| Fixed | 14.5.2-1 |
| Current | 18.5.0-1 [extra] |
| Ticket | None |
| Created | Sat Dec 11 09:44:02 2021 |
| Issue | Severity | Remote | Type | Description |
|---|---|---|---|---|
| CVE-2021-39947 | Medium | Yes | Denial of service | An uncontrolled resource consumption vulnerability in GitLab Runner before version 14.5.2 allows an attacker triggering a job with a specially crafted... |
| CVE-2021-39939 | Medium | Yes | Incorrect calculation | GitLab Runner before version 14.5.2 was susceptible to Golang security issue CVE-2021-44717: don’t close fd 0 on ForkExec error, which could result in... |