Log

AVG-2023 edited at 01 Jun 2021 19:33:45
Severity
- Unknown
+ High
CVE-2021-22181 edited at 01 Jun 2021 19:33:45
Severity
- Unknown
+ High
Remote
- Unknown
+ Remote
Type
- Unknown
+ Denial of service
Description
+ A denial of service vulnerability in GitLab CE/EE affecting all versions since 11.8 before 13.12.2, 13.11.5, and 13.10.5 allows an attacker to create a recursive pipeline relationship and exhaust resources.
References
+ https://about.gitlab.com/releases/2021/06/01/security-release-gitlab-13-12-2-released/#denial-of-service-through-recursive-triggered-pipelines
Notes
AVG-2023 created at 01 Jun 2021 19:32:42
Packages
+ gitlab
Issues
+ CVE-2021-22181
Status
+ Vulnerable
Severity
+ Unknown
Affected
+ 13.11.3-1
Fixed
Ticket
Advisory qualified
+ Yes
References
Notes
CVE-2021-22181 created at 01 Jun 2021 19:32:42
CVE-2020-20448 edited at 01 Jun 2021 17:31:57
References
https://trac.ffmpeg.org/ticket/7990
+ https://ffmpeg.org/pipermail/ffmpeg-devel/2021-May/280728.html
Notes
CVE-2020-20446 edited at 01 Jun 2021 17:29:48
References
https://trac.ffmpeg.org/ticket/7995
+ http://git.videolan.org/?p=ffmpeg.git;a=commitdiff;h=223b5e8ac9f6461bb13ed365419ec485c5b2b002
Notes
CVE-2020-20445 edited at 01 Jun 2021 17:29:32
References
https://trac.ffmpeg.org/ticket/7996
+ http://git.videolan.org/?p=ffmpeg.git;a=commitdiff;h=38d18fb57863bb9c54e68ae44aa780c5c282a184
CVE-2020-20453 edited at 01 Jun 2021 17:28:13
References
https://trac.ffmpeg.org/ticket/8003
+ http://git.videolan.org/?p=ffmpeg.git;a=commitdiff;h=a7a7f32c8ad0179a1a85d0a8cff35924e6d90be8
CVE-2020-22021 edited at 01 Jun 2021 17:24:17
References
https://trac.ffmpeg.org/ticket/8240
+ https://git.videolan.org/?p=ffmpeg.git;a=commitdiff;h=7971f62120a55c141ec437aa3f0bacc1c1a3526b
CVE-2020-22015 edited at 01 Jun 2021 17:22:43
References
https://trac.ffmpeg.org/ticket/8190
+ https://git.videolan.org/?p=ffmpeg.git;a=commitdiff;h=4c1afa292520329eecd1cc7631bc59a8cca95c46
ASA-202106-19 edited at 01 Jun 2021 17:00:53
Impact
+ A remote attacker could take over a logged out user session if they manage to obtain the old session token.
ASA-202106-19 created at 01 Jun 2021 16:59:51