CVE-2024-1347
Publication date 25 April 2024
Last updated 24 July 2024
Ubuntu priority
An issue has been discovered in GitLab CE/EE affecting all versions before 16.9.6, all versions starting from 16.10 before 16.10.4, all versions starting from 16.11 before 16.11.1. Under certain conditions, an attacker through a crafted email address may be able to bypass domain based restrictions on an instance or a group.
Status
Package | Ubuntu Release | Status |
---|---|---|
gitlab | 24.04 LTS noble | Not in release |
22.04 LTS jammy | Not in release | |
20.04 LTS focal | Not in release | |
16.04 LTS xenial | Ignored | |
gitlab-agent | 24.04 LTS noble |
Needs evaluation
|
22.04 LTS jammy | Not in release | |
20.04 LTS focal | Not in release |