CVE-2022-1431 log

Source
Severity Medium
Remote Unknown
Type Denial of service
Description
GitLab all versions starting from 12.10 before 14.8.6, all versions starting from 14.9 before 14.9.4, all versions starting from 14.10 before 14.10.1 was not correctly handling malicious requests to the PyPi API endpoint allowing the attacker to cause uncontrolled resource consumption.
Group Package Affected Fixed Severity Status Ticket
AVG-2696 gitlab 14.10-1 14.10.2-1 High Fixed