From 7dc740d7ce59c04f967a2e5167cd2b285ec29a65 Mon Sep 17 00:00:00 2001 From: Salvatore Bonaccorso Date: Sat, 15 Feb 2020 09:37:02 +0100 Subject: Add CVE-2019-15594 It's not very clear if this is correctly tracked. The Gitlab page says it only affects the EE version, where the CVE description available as provided mismatches this. --- data/CVE/list | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) diff --git a/data/CVE/list b/data/CVE/list index 4f14e6362b..dfc76c29d0 100644 --- a/data/CVE/list +++ b/data/CVE/list @@ -31594,7 +31594,8 @@ CVE-2019-15596 (A path traversal in statics-server exists in all version that al CVE-2019-15595 (A privilege escalation exists in UniFi Video Controller =<3.10.6 th ...) NOT-FOR-US: UniFi Video Controller CVE-2019-15594 (GitLab 11.8 and later contains a security vulnerability that allows a ...) - TODO: check + - gitlab (Only affects Gitlab EE) + NOTE: https://about.gitlab.com/releases/2019/07/29/security-release-gitlab-12-dot-1-dot-2-released/ CVE-2019-15593 (GitLab 12.2.3 contains a security vulnerability that allows a user to ...) [experimental] - gitlab 12.0.8-1 - gitlab -- cgit v1.2.3