FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

Gitlab -- multiple vulnerabilities

Affected packages
13.3.0 <= gitlab-ce < 13.3.4
13.2.0 <= gitlab-ce < 13.2.8
0 <= gitlab-ce < 13.1.10


VuXML ID 1fb13175-ed52-11ea-8b93-001b217b3468
Discovery 2020-09-02
Entry 2020-09-02

Gitlab reports:

Vendor Cross-Account Assume-Role Attack

Stored XSS on the Vulnerability Page

Outdated Job Token Can Be Reused to Access Unauthorized Resources

File Disclosure Via Workhorse File Upload Bypass

Unauthorized Maintainer Can Edit Group Badge

Denial of Service Within Wiki Functionality

Vulnerable to Brute-force Attacks

Invalidated Session Allows Account Access With an Old Password

GitLab Omniauth Endpoint Renders User Controlled Messages

Blind SSRF Through Repository Mirroring

Information Disclosure Through Incorrect Group Permission Verifications

No Rate Limit on GitLab Webhook Feature

GitLab Session Revocation Feature Does Not Invalidate All Sessions

OAuth Authorization Scope for an External Application Can Be Changed Without User Consent

Unauthorized Maintainer Can Delete Repository

Improper Verification of Deploy-Key Leads to Access Restricted Repository

Disabled Repository Still Accessible With a Deploy-Token

Duplicated Secret Code Generated by 2 Factor Authentication Mechanism

Lack of Validation Within Project Invitation Flow

Current Sessions Not Invalidated Upon Enabling 2 Factor Authentication

Users Without 2 Factor Authentication Can Be Blocked Accessing GitLab

Lack of Upper Bound Check Leading to Possible Denial of Service

2 Factor Authentication for Groups Was Not Enforced Within API Endpoint

GitLab Runner Denial of Service via CI Jobs

Update jQuery Dependency


CVE Name CVE-2020-11022
CVE Name CVE-2020-13284
CVE Name CVE-2020-13287
CVE Name CVE-2020-13289
CVE Name CVE-2020-13297
CVE Name CVE-2020-13298
CVE Name CVE-2020-13299
CVE Name CVE-2020-13300
CVE Name CVE-2020-13301
CVE Name CVE-2020-13302
CVE Name CVE-2020-13303
CVE Name CVE-2020-13304
CVE Name CVE-2020-13305
CVE Name CVE-2020-13306
CVE Name CVE-2020-13307
CVE Name CVE-2020-13308
CVE Name CVE-2020-13309
CVE Name CVE-2020-13310
CVE Name CVE-2020-13311
CVE Name CVE-2020-13313
CVE Name CVE-2020-13314
CVE Name CVE-2020-13315
CVE Name CVE-2020-13316
CVE Name CVE-2020-13317
CVE Name CVE-2020-13318