Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2021-39939

Опубликовано: 13 дек. 2021
Источник: debian

Описание

An uncontrolled resource consumption vulnerability in GitLab Runner affecting all versions starting from 13.7 before 14.3.6, all versions starting from 14.4 before 14.4.4, all versions starting from 14.5 before 14.5.2, allows an attacker triggering a job with a specially crafted docker image to exhaust resources on runner manager

Пакеты

ПакетСтатусВерсия исправленияРелизТип
gitlab-ci-multi-runnernot-affectedpackage

Примечания

  • https://gitlab.com/gitlab-org/gitlab-runner/-/issues/28630

  • https://about.gitlab.com/releases/2021/12/10/security-release-gitlab-runner-14-5-2-released/

Связанные уязвимости

ubuntu логотип

CVE-2021-39939

CVSS3: 6.5
ubuntu
около 4 лет назад

An uncontrolled resource consumption vulnerability in GitLab Runner affecting all versions starting from 13.7 before 14.3.6, all versions starting from 14.4 before 14.4.4, all versions starting from 14.5 before 14.5.2, allows an attacker triggering a job with a specially crafted docker image to exhaust resources on runner manager

nvd логотип

CVE-2021-39939

CVSS3: 6.5
nvd
около 4 лет назад

An uncontrolled resource consumption vulnerability in GitLab Runner affecting all versions starting from 13.7 before 14.3.6, all versions starting from 14.4 before 14.4.4, all versions starting from 14.5 before 14.5.2, allows an attacker triggering a job with a specially crafted docker image to exhaust resources on runner manager

github логотип

GHSA-9jvc-93xj-9mfg

github
около 4 лет назад

An uncontrolled resource consumption vulnerability in GitLab Runner affecting all versions starting from 13.7 before 14.3.6, all versions starting from 14.4 before 14.4.4, all versions starting from 14.5 before 14.5.2, allows an attacker triggering a job with a specially crafted docker image to exhaust resources on runner manager