Debian Gitlab vulnerabilities

CVE-2021-39896 [LOW] CVE-2021-39896: gitlab - In all versions of GitLab CE/EE since version 8.0, when an admin uses the impers... In all versions of GitLab CE/EE since version 8.0, when an admin uses the impersonate feature twice and stops impersonating, the admin may be logged in as the second user they impersonated, which may lead to repudiation issues. Scope: local sid: resolved (fixed in 15.10.8+ds1-2)

CVE-2021-22232 [LOW] CVE-2021-22232: gitlab - HTML injection was possible via the full name field before versions 13.11.6, 13.... HTML injection was possible via the full name field before versions 13.11.6, 13.12.6, and 14.0.2 in GitLab CE Scope: local sid: resolved (fixed in 15.10.8+ds1-2)

CVE-2021-39886 [LOW] CVE-2021-39886: gitlab - Permissions rules were not applied while issues were moved between projects of t... Permissions rules were not applied while issues were moved between projects of the same group in GitLab versions starting with 10.6 and up to 14.1.7 allowing users to read confidential Epic references. Scope: local sid: resolved (fixed in 15.10.8+ds1-2)

CVE-2021-39899 [LOW] CVE-2021-39899: gitlab - In all versions of GitLab CE/EE, an attacker with physical access to a user’s ma... In all versions of GitLab CE/EE, an attacker with physical access to a user’s machine may brute force the user’s password via the change password function. There is a rate limit in place, but the attack may still be conducted by stealing the session id from the physical compromise of the account and splitting the attack over several IP addresses and passing in the com

CVE-2021-39931 [LOW] CVE-2021-39931: gitlab - An issue has been discovered in GitLab CE/EE affecting all versions starting fro... An issue has been discovered in GitLab CE/EE affecting all versions starting from 8.11 before 14.3.6, all versions starting from 14.4 before 14.4.4, all versions starting from 14.5 before 14.5.2. Under specific condition an unauthorised project member was allowed to delete a protected branches due to a business logic error. Scope: local sid: resolved (fixed in 15.10.8

CVE-2021-39879 [LOW] CVE-2021-39879: gitlab - Missing authentication in all versions of GitLab CE/EE since version 7.11.0 allo... Missing authentication in all versions of GitLab CE/EE since version 7.11.0 allows an attacker with access to a victim's session to disable two-factor authentication Scope: local sid: resolved (fixed in 15.10.8+ds1-2)

CVE-2021-39897 [LOW] CVE-2021-39897: gitlab - Improper access control in GitLab CE/EE version 10.5 and above allowed subgroup ... Improper access control in GitLab CE/EE version 10.5 and above allowed subgroup members with inherited access to a project from a parent group to still have access even after the subgroup is transferred Scope: local sid: resolved (fixed in 15.10.8+ds1-2)

CVE-2021-39883 [MEDIUM] CVE-2021-39883: gitlab - Improper authorization checks in all versions of GitLab EE starting from 13.11 b... Improper authorization checks in all versions of GitLab EE starting from 13.11 before 14.1.7, all versions starting from 14.2 before 14.2.5, and all versions starting from 14.3 before 14.3.1 allows subgroup members to see epics from all parent subgroups. Scope: local sid: resolved

CVE-2021-22259 [MEDIUM] CVE-2021-22259: gitlab - A potential DOS vulnerability was discovered in GitLab EE starting with version ... A potential DOS vulnerability was discovered in GitLab EE starting with version 12.6 due to lack of pagination in dependencies API. Scope: local sid: resolved

CVE-2020-10074 [CRITICAL] CVE-2020-10074: gitlab - GitLab 10.1 through 12.8.1 has Incorrect Access Control. A scenario was discover... GitLab 10.1 through 12.8.1 has Incorrect Access Control. A scenario was discovered in which a GitLab account could be taken over through an expired link. Scope: local sid: resolved (fixed in 12.6.8-3)

CVE-2020-10956 [CRITICAL] CVE-2020-10956: gitlab - GitLab 8.10 and later through 12.9 is vulnerable to an SSRF in a project import ... GitLab 8.10 and later through 12.9 is vulnerable to an SSRF in a project import note feature. Scope: local sid: resolved (fixed in 13.2.3-2)

CVE-2020-13292 [CRITICAL] CVE-2020-13292: gitlab - In GitLab before 13.0.12, 13.1.6 and 13.2.3, it is possible to bypass E-mail ver... In GitLab before 13.0.12, 13.1.6 and 13.2.3, it is possible to bypass E-mail verification which is required for OAuth Flow. Scope: local sid: resolved (fixed in 13.2.3-2)

CVE-2020-8113 [CRITICAL] CVE-2020-8113: gitlab - GitLab 10.7 and later through 12.7.2 has Incorrect Access Control. GitLab 10.7 and later through 12.7.2 has Incorrect Access Control. Scope: local sid: resolved (fixed in 12.6.8-3)

CVE-2020-10980 [CRITICAL] CVE-2020-10980: gitlab - GitLab EE/CE 8.0.rc1 to 12.9 is vulnerable to a blind SSRF in the FogBugz integr... GitLab EE/CE 8.0.rc1 to 12.9 is vulnerable to a blind SSRF in the FogBugz integration. Scope: local sid: resolved (fixed in 13.2.3-2)

CVE-2020-13274 [HIGH] CVE-2020-13274: gitlab - A security issue allowed achieving Denial of Service attacks through memory exha... A security issue allowed achieving Denial of Service attacks through memory exhaustion by uploading malicious artifacts in all previous GitLab versions through 13.0.1 Scope: local sid: resolved (fixed in 13.2.3-2)

CVE-2020-10089 [HIGH] CVE-2020-10089: gitlab - GitLab 8.11 through 12.8.1 allows a Denial of Service when using several feature... GitLab 8.11 through 12.8.1 allows a Denial of Service when using several features to recursively request eachother, Scope: local sid: resolved (fixed in 12.6.8-3)

CVE-2020-10087 [HIGH] CVE-2020-10087: gitlab - GitLab before 12.8.2 allows Information Disclosure. Badge images were not being ... GitLab before 12.8.2 allows Information Disclosure. Badge images were not being proxied, causing mixed content warnings as well as leaking the IP address of the user. Scope: local sid: resolved (fixed in 12.6.8-3)

CVE-2020-13356 [HIGH] CVE-2020-13356: gitlab - An issue has been discovered in GitLab CE/EE affecting all versions starting fro... An issue has been discovered in GitLab CE/EE affecting all versions starting from 8.8.9. A specially crafted request could bypass Multipart protection and read files in certain specific paths on the server. Affected versions are: >=8.8.9, =13.4, =13.5, <13.5.2. Scope: local sid: resolved (fixed in 13.3.9-1)

CVE-2020-13359 [HIGH] CVE-2020-13359: gitlab - The Terraform API in GitLab CE/EE 12.10+ exposed the object storage signed URL o... The Terraform API in GitLab CE/EE 12.10+ exposed the object storage signed URL on the delete operation allowing a malicious project maintainer to overwrite the Terraform state, bypassing audit and other business controls. Affected versions are >=12.10, =13.4, =13.5, <13.5.2. Scope: local sid: resolved (fixed in 13.3.9-1)

CVE-2020-13340 [HIGH] CVE-2020-13340: gitlab - An issue has been discovered in GitLab affecting all versions prior to 13.2.10, ... An issue has been discovered in GitLab affecting all versions prior to 13.2.10, 13.3.7 and 13.4.2: Stored XSS in CI Job Log Scope: local sid: resolved (fixed in 13.3.9-1)