AVG-2619 log

Package gitlab-runner
Status Fixed
Severity Medium
Type multiple issues
Affected 14.5.0-1
Fixed 14.5.2-1
Current 15.6.1-1 [community]
Ticket None
Created Sat Dec 11 09:44:02 2021
Issue Severity Remote Type Description
CVE-2021-39947 Medium Yes Denial of service
An uncontrolled resource consumption vulnerability in GitLab Runner before version 14.5.2 allows an attacker triggering a job with a specially crafted...
CVE-2021-39939 Medium Yes Incorrect calculation
GitLab Runner before version 14.5.2 was susceptible to Golang security issue CVE-2021-44717: don’t close fd 0 on ForkExec error, which could result in...