CVE-2018-19585

Опубликовано: 17 мая 2019

Источник: debian

EPSS Средний

Описание

GitLab CE/EE versions 8.18 up to 11.x before 11.3.11, 11.4.x before 11.4.8, and 11.5.x before 11.5.1 have CRLF Injection in Project Mirroring when using the Git protocol.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
gitlab	fixed	11.3.11+dfsg-1		package

Примечания

https://about.gitlab.com/2018/11/28/security-release-gitlab-11-dot-5-dot-1-released/

EPSS

Процентиль: 94%

0.13618

Средний

Связанные уязвимости

CVE-2018-19585

CVSS3: 7.5

ubuntu

около 6 лет назад

GitLab CE/EE versions 8.18 up to 11.x before 11.3.11, 11.4.x before 11.4.8, and 11.5.x before 11.5.1 have CRLF Injection in Project Mirroring when using the Git protocol.

CVE-2018-19585

CVSS3: 7.5

nvd

около 6 лет назад

GitLab CE/EE versions 8.18 up to 11.x before 11.3.11, 11.4.x before 11.4.8, and 11.5.x before 11.5.1 have CRLF Injection in Project Mirroring when using the Git protocol.

GHSA-49rg-2gmx-qjmr

github

около 3 лет назад

GitLab CE/EE versions 8.18 up to 11.x before 11.3.11, 11.4.x before 11.4.8, and 11.5.x before 11.5.1 have CRLF Injection in Project Mirroring when using the Git protocol.

EPSS

Процентиль: 94%

0.13618

Средний