Debian Gitlab vulnerabilities

CVE-2018-3710 [HIGH] CVE-2018-3710: gitlab - Gitlab Community and Enterprise Editions version 10.3.3 is vulnerable to an Inse... Gitlab Community and Enterprise Editions version 10.3.3 is vulnerable to an Insecure Temporary File in the project import component resulting remote code execution. Scope: local sid: resolved (fixed in 10.5.5+dfsg-1)

CVE-2018-5158 [HIGH] CVE-2018-5158: firefox - The PDF viewer does not sufficiently sanitize PostScript calculator functions, a... The PDF viewer does not sufficiently sanitize PostScript calculator functions, allowing malicious JavaScript to be injected through a crafted PDF file. This JavaScript can then be run with the permissions of the PDF viewer by its worker. This vulnerability affects Firefox ESR < 52.8 and Firefox < 60. Scope: local sid: resolved (fixed in 60.0-1)

CVE-2018-20494 [HIGH] CVE-2018-20494: gitlab - An issue was discovered in GitLab Community and Enterprise Edition before 11.4.1... An issue was discovered in GitLab Community and Enterprise Edition before 11.4.13, 11.5.x before 11.5.6, and 11.6.x before 11.6.1. It has Incorrect Access Control. Scope: local sid: resolved (fixed in 11.5.6+dfsg-1)

CVE-2018-15472 [HIGH] CVE-2018-15472: gitlab - An issue was discovered in GitLab Community and Enterprise Edition before 11.1.7... An issue was discovered in GitLab Community and Enterprise Edition before 11.1.7, 11.2.x before 11.2.4, and 11.3.x before 11.3.1. The diff formatter using rouge can block for a long time in Sidekiq jobs without any timeout. Scope: local sid: resolved (fixed in 11.1.8+dfsg-2)

CVE-2018-18646 [HIGH] CVE-2018-18646: gitlab - An issue was discovered in GitLab Community and Enterprise Edition before 11.2.7... An issue was discovered in GitLab Community and Enterprise Edition before 11.2.7, 11.3.x before 11.3.8, and 11.4.x before 11.4.3. It allows SSRF. Scope: local sid: resolved (fixed in 11.2.8+dfsg-2)

CVE-2018-17455 [HIGH] CVE-2018-17455: gitlab - An issue was discovered in GitLab Enterprise Edition before 11.1.7, 11.2.x befor... An issue was discovered in GitLab Enterprise Edition before 11.1.7, 11.2.x before 11.2.4, and 11.3.x before 11.3.1. Attackers could obtain sensitive information about group names, avatars, LDAP settings, and descriptions via an insecure direct object reference to the "merge request approvals" feature. Scope: local sid: resolved (fixed in 11.1.8+dfsg-2)

CVE-2018-19359 [HIGH] CVE-2018-19359: gitlab - GitLab Community and Enterprise Edition 8.9 and later and before 11.5.0-rc12, 11... GitLab Community and Enterprise Edition 8.9 and later and before 11.5.0-rc12, 11.4.6, and 11.3.10 has Incorrect Access Control. Scope: local sid: resolved (fixed in 11.3.10+dfsg-2)

CVE-2018-19571 [HIGH] CVE-2018-19571: gitlab - GitLab CE/EE, versions 8.18 up to 11.x before 11.3.11, 11.4 before 11.4.8, and 1... GitLab CE/EE, versions 8.18 up to 11.x before 11.3.11, 11.4 before 11.4.8, and 11.5 before 11.5.1, are vulnerable to an SSRF vulnerability in webhooks. Scope: local sid: resolved (fixed in 11.3.11+dfsg-1)

CVE-2018-19856 [HIGH] CVE-2018-19856: gitlab - GitLab CE/EE before 11.3.12, 11.4.x before 11.4.10, and 11.5.x before 11.5.3 all... GitLab CE/EE before 11.3.12, 11.4.x before 11.4.10, and 11.5.x before 11.5.3 allows Directory Traversal in Templates API. Scope: local sid: resolved (fixed in 11.5.4+dfsg-1)

CVE-2018-17449 [HIGH] CVE-2018-17449: gitlab - An issue was discovered in GitLab Community and Enterprise Edition before 11.1.7... An issue was discovered in GitLab Community and Enterprise Edition before 11.1.7, 11.2.x before 11.2.4, and 11.3.x before 11.3.1. Remote attackers could obtain sensitive information about issues, comments, and project titles via events API insecure direct object reference. Scope: local sid: resolved (fixed in 11.1.8+dfsg-2)

CVE-2018-19585 [HIGH] CVE-2018-19585: gitlab - GitLab CE/EE versions 8.18 up to 11.x before 11.3.11, 11.4.x before 11.4.8, and ... GitLab CE/EE versions 8.18 up to 11.x before 11.3.11, 11.4.x before 11.4.8, and 11.5.x before 11.5.1 have CRLF Injection in Project Mirroring when using the Git protocol. Scope: local sid: resolved (fixed in 11.3.11+dfsg-1)

CVE-2018-17939 [HIGH] CVE-2018-17939: gitlab - An issue was discovered in GitLab Community and Enterprise Edition 11.1.x before... An issue was discovered in GitLab Community and Enterprise Edition 11.1.x before 11.1.8, 11.2.x before 11.2.5, and 11.3.x before 11.3.2. There is Information Exposure via the merge request JSON endpoint. Scope: local sid: resolved (fixed in 11.1.8+dfsg-2)

CVE-2018-20229 [HIGH] CVE-2018-20229: gitlab - GitLab Community and Enterprise Edition before 11.3.14, 11.4.x before 11.4.12, a... GitLab Community and Enterprise Edition before 11.3.14, 11.4.x before 11.4.12, and 11.5.x before 11.5.5 allows Directory Traversal. Scope: local sid: resolved (fixed in 11.5.5+dfsg-1)

CVE-2018-20500 [HIGH] CVE-2018-20500: gitlab - An insecure permissions issue was discovered in GitLab Community and Enterprise ... An insecure permissions issue was discovered in GitLab Community and Enterprise Edition 9.4 and later but before 11.4.13, 11.5.x before 11.5.6, and 11.6.x before 11.6.1. The runner registration token in the CI/CD settings could not be reset. This was a security risk if one of the maintainers leaves the group and they know the token. Scope: local sid: resolved (fixed

CVE-2018-19495 [MEDIUM] CVE-2018-19495: gitlab - An issue was discovered in GitLab Community and Enterprise Edition before 11.3.1... An issue was discovered in GitLab Community and Enterprise Edition before 11.3.11, 11.4.x before 11.4.8, and 11.5.x before 11.5.1. There is an SSRF vulnerability in the Prometheus integration. Scope: local sid: resolved (fixed in 11.3.11+dfsg-1)

CVE-2018-19494 [MEDIUM] CVE-2018-19494: gitlab - An issue was discovered in GitLab Community and Enterprise Edition 11.x before 1... An issue was discovered in GitLab Community and Enterprise Edition 11.x before 11.3.11, 11.4.x before 11.4.8, and 11.5.x before 11.5.1. There is an incorrect access vulnerability that allows an unauthorized user to view private group names. Scope: local sid: resolved (fixed in 11.3.11+dfsg-1)

CVE-2018-20493 [MEDIUM] CVE-2018-20493: gitlab - An issue was discovered in GitLab Community and Enterprise Edition before 11.4.1... An issue was discovered in GitLab Community and Enterprise Edition before 11.4.13, 11.5.x before 11.5.6, and 11.6.x before 11.6.1. It has Incorrect Access Control. Scope: local sid: resolved (fixed in 11.5.6+dfsg-1)

CVE-2018-19583 [MEDIUM] CVE-2018-19583: gitlab - GitLab CE/EE, versions 8.0 up to 11.x before 11.3.11, 11.4 before 11.4.8, and 11... GitLab CE/EE, versions 8.0 up to 11.x before 11.3.11, 11.4 before 11.4.8, and 11.5 before 11.5.1, would log access tokens in the Workhorse logs, permitting administrators with access to the logs to see another user's token. Scope: local sid: resolved (fixed in 11.3.11+dfsg-1)

CVE-2018-17976 [MEDIUM] CVE-2018-17976: gitlab - An issue was discovered in GitLab Community Edition 11.x before 11.1.8, 11.2.x b... An issue was discovered in GitLab Community Edition 11.x before 11.1.8, 11.2.x before 11.2.5, and 11.3.x before 11.3.2. There is Information Exposure via Epic change descriptions. Scope: local sid: resolved (fixed in 11.1.8+dfsg-2)

CVE-2018-19574 [MEDIUM] CVE-2018-19574: gitlab - GitLab CE/EE, versions 7.6 up to 11.x before 11.3.11, 11.4 before 11.4.8, and 11... GitLab CE/EE, versions 7.6 up to 11.x before 11.3.11, 11.4 before 11.4.8, and 11.5 before 11.5.1, are vulnerable to an XSS vulnerability in the OAuth authorization page. Scope: local sid: resolved (fixed in 11.3.11+dfsg-1)