TEMP-0900522-27F98D

NameTEMP-0900522-27F98D
Descriptiongitlab: Persistent XSS - Selecting users as allowed merge request approvers
SourceAutomatically generated temporary name. Not for external reference.
Debian Bugs900522

Vulnerable and fixed packages

The table below lists information on source packages.

Source PackageReleaseVersionStatus
gitlab (PTS)sid/contrib13.4.7-2fixed

The information below is based on the following data on fixed versions.

PackageTypeReleaseFixed VersionUrgencyOriginDebian Bugs
gitlabsourceexperimental10.7.5+dfsg-1
gitlabsourcestretch(not affected)
gitlabsource(unstable)10.7.7+dfsg-2900522

Notes

[stretch] - gitlab <not-affected> (Introduced in 9.1)
https://about.gitlab.com/2018/05/29/security-release-gitlab-10-dot-8-dot-2-released/

Search for package or bug name: Reporting problems