NuytsTech Security

CVE-2017-0882

by ·

Multiple versions of GitLab expose sensitive user credentials when assigning a user to an issue or merge request. A fix was included in versions 8.15.8, 8.16.7, and 8.17.4, which were released on March 20th 2017 at 23:59 UTC.

Date published : 2017-03-27

http://www.securityfocus.com/bid/97157

https://about.gitlab.com/2017/03/20/gitlab-8-dot-17-dot-4-security-release/

Tags: