CVE-2025-2938Use After Free in Gitlab

CWE-840CWE-416Use After Free10 documents9 sources
Severity
8.8HIGHNVD
EPSS
0.0%
top 95.28%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
6
GitlabLinux KernelDebian Gitlab+3 more
Timeline
PublishedJun 26
Latest updateDec 16

Description

An issue has been discovered in GitLab CE/EE affecting all versions from 17.3 before 17.11.5, 18.0 before 18.0.3, and 18.1 before 18.1.1 that could have allowed authenticated users to gain elevated project privileges by requesting access to projects where role modifications during the approval process resulted in unintended permission grants.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HExploitability: 2.8 | Impact: 5.9

Affected Packages8 packages

CVEListV5gitlab/gitlab17.317.11.5+2
NVDgitlab/gitlab17.3.017.11.5+2
debiandebian/gitlab
gitlabgitlab/gitlab

🔴Vulnerability Details

3
OSV
sysfs: check visibility before changing group attribute ownership2025-12-16
GHSA
GHSA-xxvq-27rc-4q93: An issue has been discovered in GitLab CE/EE affecting all versions from 172025-06-26
OSV
CVE-2025-2938: An issue has been discovered in GitLab CE/EE affecting all versions from 172025-06-26

📋Vendor Advisories

4
Red Hat
kernel: sysfs: check visibility before changing group attribute ownership2025-12-16
GitLab
CVE-2025-2938: An issue has been discovered in GitLab CE/EE affecting all versions from 17.3 before 17.11.5, 18.0 before 18.0.3, and 18.1 before 18.1.1 that could ha2025-06-26
Debian
CVE-2025-2938: gitlab - An issue has been discovered in GitLab CE/EE affecting all versions from 17.3 be...2025
Microsoft
A flaw was found in the Linux kernel's implementation of Pressure Stall Information. While the feature is disabled by default it could allow an attacker to crash the system or have other memory-corrup2022-08-09

💬Community

1
Bugzilla
CVE-2025-40355 kernel: sysfs: check visibility before changing group attribute ownership2025-12-16