Debian Gitlab vulnerabilities

CVE-2023-3900 [MEDIUM] CVE-2023-3900: gitlab - An issue has been discovered in GitLab CE/EE affecting all versions starting fro... An issue has been discovered in GitLab CE/EE affecting all versions starting from 16.1 before 16.1.3, all versions starting from 16.2 before 16.2.2. An invalid 'start_sha' value on merge requests page may lead to Denial of Service as Changes tab would not load. Scope: local sid: resolved (fixed in 16.4.4+ds2-2)

CVE-2023-2620 [MEDIUM] CVE-2023-2620: gitlab - An issue has been discovered in GitLab CE/EE affecting all versions starting fro... An issue has been discovered in GitLab CE/EE affecting all versions starting from 15.1 prior to 15.11.10, all versions from 16.0 prior to 16.0.6, all versions from 16.1 prior to 16.1.1. A maintainer could modify a webhook URL to leak masked webhook secrets by manipulating other masked portions. This addresses an incomplete fix for CVE-2023-0838. Scope: local sid: res

CVE-2023-1417 [MEDIUM] CVE-2023-1417: gitlab - An issue has been discovered in GitLab affecting all versions starting from 15.9... An issue has been discovered in GitLab affecting all versions starting from 15.9 before 15.9.4, all versions starting from 15.10 before 15.10.1. It was possible for an unauthorised user to add child epics linked to victim's epic in an unrelated group. Scope: local sid: resolved (fixed in 15.10.8+ds1-2)

CVE-2023-3909 [MEDIUM] CVE-2023-3909: gitlab - An issue has been discovered in GitLab CE/EE affecting all versions starting fro... An issue has been discovered in GitLab CE/EE affecting all versions starting from 12.3 before 16.3.6, all versions starting from 16.4 before 16.4.2, all versions starting from 16.5 before 16.5.1. A Regular Expression Denial of Service was possible by adding a large string in timeout input in gitlab-ci.yml file. Scope: local sid: resolved (fixed in 16.4.4+ds2-2)

CVE-2023-5198 [MEDIUM] CVE-2023-5198: gitlab - An issue has been discovered in GitLab affecting all versions prior to 16.2.7, a... An issue has been discovered in GitLab affecting all versions prior to 16.2.7, all versions starting from 16.3 before 16.3.5, and all versions starting from 16.4 before 16.4.1. It was possible for a removed project member to write to protected branches using deploy keys. Scope: local sid: resolved (fixed in 16.4.4+ds2-2)

CVE-2023-0121 [MEDIUM] CVE-2023-0121: gitlab - A denial of service issue was discovered in GitLab CE/EE affecting all versions ... A denial of service issue was discovered in GitLab CE/EE affecting all versions starting from 13.2.4 before 15.10.8, all versions starting from 15.11 before 15.11.7, all versions starting from 16.0 before 16.0.2 which allows an attacker to cause high resource consumption using malicious test report artifacts. Scope: local sid: resolved (fixed in 15.10.8+ds1-2)

CVE-2023-2164 [MEDIUM] CVE-2023-2164: gitlab - An issue has been discovered in GitLab affecting all versions starting from 15.9... An issue has been discovered in GitLab affecting all versions starting from 15.9 before 16.0.8, all versions starting from 16.1 before 16.1.3, all versions starting from 16.2 before 16.2.2. It was possible for an attacker to trigger a stored XSS vulnerability via user interaction with a crafted URL in the WebIDE beta. Scope: local sid: resolved (fixed in 16.0.8+ds1-1

CVE-2023-7045 [MEDIUM] CVE-2023-7045: gitlab - A CSRF vulnerability exists within GitLab CE/EE from versions 13.11 before 16.10... A CSRF vulnerability exists within GitLab CE/EE from versions 13.11 before 16.10.6, from 16.11 before 16.11.3, from 17.0 before 17.0.1. By leveraging this vulnerability, an attacker could exfiltrate anti-CSRF tokens via the Kubernetes Agent Server (KAS). Scope: local sid: resolved (fixed in 17.3.5-2)

CVE-2023-0483 [MEDIUM] CVE-2023-0483: gitlab - An issue has been discovered in GitLab affecting all versions starting from 12.1... An issue has been discovered in GitLab affecting all versions starting from 12.1 before 15.7.8, all versions starting from 15.8 before 15.8.4, all versions starting from 15.9 before 15.9.2. It was possible for a project maintainer to extract a Datadog integration API key by modifying the site. Scope: local sid: resolved (fixed in 15.10.8+ds1-2)

CVE-2023-0523 [MEDIUM] CVE-2023-0523: gitlab - An issue has been discovered in GitLab affecting all versions starting from 15.6... An issue has been discovered in GitLab affecting all versions starting from 15.6 before 15.8.5, 15.9 before 15.9.4, and 15.10 before 15.10.1. An XSS was possible via a malicious email address for certain instances. Scope: local sid: resolved (fixed in 15.10.8+ds1-2)

CVE-2023-4008 [MEDIUM] CVE-2023-4008: gitlab - An issue has been discovered in GitLab CE/EE affecting all versions starting fro... An issue has been discovered in GitLab CE/EE affecting all versions starting from 15.9 before 16.0.8, all versions starting from 16.1 before 16.1.3, all versions starting from 16.2 before 16.2.2. It was possible to takeover GitLab Pages with unique domain URLs if the random string added was known. Scope: local sid: resolved (fixed in 16.0.8+ds1-1)

CVE-2023-2069 [MEDIUM] CVE-2023-2069: gitlab - An issue has been discovered in GitLab affecting all versions starting from 10.0... An issue has been discovered in GitLab affecting all versions starting from 10.0 before 12.9.8, all versions starting from 12.10 before 12.10.7, all versions starting from 13.0 before 13.0.1. A user with the role of developer could use the import project feature to leak CI/CD variables. Scope: local sid: resolved (fixed in 15.10.8+ds1-2)

CVE-2023-5061 [MEDIUM] CVE-2023-5061: gitlab - An issue has been discovered in GitLab affecting all versions starting from 9.3 ... An issue has been discovered in GitLab affecting all versions starting from 9.3 before 16.4.4, all versions starting from 16.5 before 16.5.4, all versions starting from 16.6 before 16.6.2. In certain situations, it may have been possible for developers to override predefined CI variables via the REST API. Scope: local sid: resolved (fixed in 16.4.4+ds2-2)

CVE-2023-4532 [MEDIUM] CVE-2023-4532: gitlab - An issue has been discovered in GitLab affecting all versions starting from 16.2... An issue has been discovered in GitLab affecting all versions starting from 16.2 before 16.2.8, all versions starting from 16.3 before 16.3.5, all versions starting from 16.4 before 16.4.1. Users were capable of linking CI/CD jobs of private projects which they are not a member of. Scope: local sid: resolved (fixed in 16.4.4+ds2-2)

CVE-2023-2001 [MEDIUM] CVE-2023-2001: gitlab - An issue has been discovered in GitLab CE/EE affecting all versions before 15.10... An issue has been discovered in GitLab CE/EE affecting all versions before 15.10.8, all versions starting from 15.11 before 15.11.7, all versions starting from 16.0 before 16.0.2. An attacker was able to spoof protected tags, which could potentially lead a victim to download malicious code. Scope: local sid: resolved (fixed in 15.10.8+ds1-2)

CVE-2023-4647 [MEDIUM] CVE-2023-4647: gitlab - An issue has been discovered in GitLab affecting all versions starting from 15.2... An issue has been discovered in GitLab affecting all versions starting from 15.2 before 16.1.5, all versions starting from 16.2 before 16.2.5, all versions starting from 16.3 before 16.3.1 in which the projects API pagination can be skipped, potentially leading to DoS on certain instances. Scope: local sid: resolved (fixed in 16.4.4+ds2-2)

CVE-2023-3205 [MEDIUM] CVE-2023-3205: gitlab - An issue has been discovered in GitLab affecting all versions starting from 15.1... An issue has been discovered in GitLab affecting all versions starting from 15.11 before 16.1.5, all versions starting from 16.2 before 16.2.5, all versions starting from 16.3 before 16.3.1. An authenticated user could trigger a denial of service when importing or cloning malicious content. Scope: local sid: resolved (fixed in 16.4.4+ds2-2)

CVE-2023-0838 [MEDIUM] CVE-2023-0838: gitlab - An issue has been discovered in GitLab affecting versions starting from 15.1 bef... An issue has been discovered in GitLab affecting versions starting from 15.1 before 15.8.5, 15.9 before 15.9.4, and 15.10 before 15.10.1. A maintainer could modify a webhook URL to leak masked webhook secrets by adding a new parameter to the url. This addresses an incomplete fix for CVE-2022-4342. Scope: local sid: resolved (fixed in 15.10.8+ds1-2)

CVE-2023-3210 [MEDIUM] CVE-2023-3210: gitlab - An issue has been discovered in GitLab affecting all versions starting from 15.1... An issue has been discovered in GitLab affecting all versions starting from 15.11 before 16.1.5, all versions starting from 16.2 before 16.2.5, all versions starting from 16.3 before 16.3.1. An authenticated user could trigger a denial of service when importing or cloning malicious content. Scope: local sid: resolved (fixed in 16.4.4+ds2-2)

CVE-2023-3964 [MEDIUM] CVE-2023-3964: gitlab - An issue has been discovered in GitLab affecting all versions starting from 13.2... An issue has been discovered in GitLab affecting all versions starting from 13.2 before 16.4.3, all versions starting from 16.5 before 16.5.3, all versions starting from 16.6 before 16.6.1. It was possible for users to access composer packages on public projects that have package registry disabled in the project settings. Scope: local sid: resolved (fixed in 16.4.4+d