Izibuyekezo zokulungisa zeplathifomu yokuhlela ukuthuthukiswa kokuhlanganyela zishicilelwe - i-GitLab 15.11.2, 15.10.6 kanye ne-15.9.7, eqeda ubungozi obubalulekile (CVE-2023-2478), okuvumela noma yimuphi umsebenzisi ogunyaziwe ukuthi anamathisele isibambi sakhe somgijimi. ngokusebenzisa i-GraphQL API (uhlelo lokusebenza lokusebenzisa imisebenzi lapho uhlanganisa ikhodi yephrojekthi ohlelweni lokuhlanganisa oluqhubekayo) kunoma iyiphi iphrojekthi kuseva efanayo. Imininingwane yokusebenza ayikanikezwa. Ulwazi olumayelana nokuba sengozini luhanjiswe kwa-GitLab njengengxenye yohlelo lwenzuzo yokuba sengozini lwe-HackerOne.
Source: opennet.ru