Security Advisory

CVE-2018-19572

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2019-07-10 15:32:11

Last updated 2024-08-05 11:37:11

Assigner mitre

State PUBLISHED

Description

GitLab CE 8.17 and later and EE 8.3 and later have a symlink time-of-check-to-time-of-use race condition that would allow unauthorized access to files in the GitLab Pages chroot environment. This is fixed in versions 11.5.1, 11.4.8, and 11.3.11.

← Browse all CVEs View on cve.org ↗