Bleeping Computer

GitLab warns of critical pipeline execution vulnerability

GitLab has released critical updates to address multiple vulnerabilities, the most severe of them (CVE-2024-6678) allowing an attacker to trigger pipelines as arbitrary users under certain conditions.
Bleeping Computer

Critical GitLab vulnerability lets attackers take over accounts

GitLab has addressed a critical severity vulnerability that could allow remote attackers to take over user accounts using hardcoded passwords. The bug (discovered internally and tracked as ...
TechRadar

GitLab users warned of flaw that allows file overwrite — so update now

GitLab recently discovered a critical vulnerability in its Community Edition (CE) and Enterprise Edition (EE) instances, which could allow malicious actors to write arbitrary files while creating a ...
India TV

CERT-In identifies numerous bugs in Google Chrome and GitLab

The Indian Computer Emergency Response Team (commonly known by CERT-In), which comes under the Ministry of Electronics & Information Technology, has warned users about multiple vulnerabilities in ...
TechRadar

GitLab releases emergency security patch, tells users to update immediately

GitLab has published a fix for a critical security vulnerability found in two of its products, with users told to apply the patch immediately. GitLab is a DevOps software package allowing users to ...
Dark Reading

GitLab Warns of Max Severity Authentication Bypass Bug

Organizations with self-hosted GitLab instances configured for SAML-based authentication might want to update immediately to new versions of the DevOps platform that the company released this week.
IT News For Australia Business

GitLab races out vulnerability-fix release

GitLab last week issued an emergency patch covering 16 vulnerabilities, one of them given a critical risk rating, along with three rated high severity. To fix the vulnerabilities, the organisation ...