diff options
author | Salvatore Bonaccorso <carnil@debian.org> | 2018-05-31 21:38:45 +0200 |
---|---|---|
committer | Salvatore Bonaccorso <carnil@debian.org> | 2018-05-31 21:39:56 +0200 |
commit | 87adf9ac4cac15b9ab8db6eda5f394d25e91b7f6 (patch) | |
tree | 2c0cac4e55e9083cbc2ea9b5e328630e3fe4ce4a /data | |
parent | 350666f92a7dfb672681a0938f9ecacaf65e195b (diff) |
Add bug reference for gitlab issues, #900522
Diffstat (limited to 'data')
-rw-r--r-- | data/CVE/list | 14 |
1 files changed, 7 insertions, 7 deletions
diff --git a/data/CVE/list b/data/CVE/list index 058eae03b2..164ff5f0ac 100644 --- a/data/CVE/list +++ b/data/CVE/list @@ -91,30 +91,30 @@ CVE-2018-11542 CVE-2018-11541 RESERVED CVE-2018-XXXX [gitlab: Removing public deploy keys regression] - - gitlab <unfixed> + - gitlab <unfixed> (bug #900522) [stretch] - gitlab <not-affected> (Introduced in 10.1.6) NOTE: https://about.gitlab.com/2018/05/29/security-release-gitlab-10-dot-8-dot-2-released/ CVE-2018-XXXX [gitlab: Users can update their password without entering current password] - - gitlab <unfixed> + - gitlab <unfixed> (bug #900522) NOTE: https://about.gitlab.com/2018/05/29/security-release-gitlab-10-dot-8-dot-2-released/ CVE-2018-XXXX [gitlab: Persistent XSS - Selecting users as allowed merge request approvers] - - gitlab <unfixed> + - gitlab <unfixed> (bug #900522) [stretch] - gitlab <not-affected> (Introduced in 9.1) NOTE: https://about.gitlab.com/2018/05/29/security-release-gitlab-10-dot-8-dot-2-released/ CVE-2018-XXXX [gitlab: Persistent XSS - Multiple locations of user selection drop downs] - - gitlab <unfixed> + - gitlab <unfixed> (bug #900522) [stretch] - gitlab <not-affected> (Introduced in 9.1) NOTE: https://about.gitlab.com/2018/05/29/security-release-gitlab-10-dot-8-dot-2-released/ CVE-2018-XXXX [gitlab: include directive in .gitlab-ci.yml allows SSRF requests] - - gitlab <unfixed> + - gitlab <unfixed> (bug #900522) [stretch] - gitlab <not-affected> (Introduced in 10.5) NOTE: https://about.gitlab.com/2018/05/29/security-release-gitlab-10-dot-8-dot-2-released/ CVE-2018-XXXX [gitlab: Permissions issue in Merge Requests Create Service] - - gitlab <unfixed> + - gitlab <unfixed> (bug #900522) [stretch] - gitlab <not-affected> (Introduced in 10.6) NOTE: https://about.gitlab.com/2018/05/29/security-release-gitlab-10-dot-8-dot-2-released/ CVE-2018-XXXX [gitlab: Arbitrary assignment of project fields using Import project] - - gitlab <unfixed> + - gitlab <unfixed> (bug #900522) [stretch] - gitlab <not-affected> (Introduced in 10.4) NOTE: https://about.gitlab.com/2018/05/29/security-release-gitlab-10-dot-8-dot-2-released/ CVE-2018-11540 |