Add CVE-2019-15594

It's not very clear if this is correctly tracked. The Gitlab page says it only affects the EE version, where the CVE description available as provided mismatches this.
author: Salvatore Bonaccorso <carnil@debian.org> 2020-02-15 09:37:02 +0100
committer: Salvatore Bonaccorso <carnil@debian.org> 2020-02-15 09:37:02 +0100
commit: 3c1d8932f482bc40690bd34ed36a954d8e74fd52 (patch)
tree: b456df406e805b9463fec92c0747330837c7f333 /data/CVE/list.2019
parent: 69a50dae0241b456d7e652df903c2bca4526190a (diff)
1 files changed, 2 insertions, 1 deletions
diff --git a/data/CVE/list.2019 b/data/CVE/list.2019
index 9e04d3d5e7..1b06f42226 100644
--- a/data/CVE/list.2019
+++ b/data/CVE/list.2019
@@ -12108,7 +12108,8 @@ CVE-2019-15596 (A path traversal in statics-server exists in all version that al
 CVE-2019-15595 (A privilege escalation exists in UniFi Video Controller =&lt;3.10.6 th ...)
 	NOT-FOR-US: UniFi Video Controller
 CVE-2019-15594 (GitLab 11.8 and later contains a security vulnerability that allows a  ...)
-	TODO: check
+	- gitlab <not-affected> (Only affects Gitlab EE)
+	NOTE: https://about.gitlab.com/releases/2019/07/29/security-release-gitlab-12-dot-1-dot-2-released/
 CVE-2019-15593 (GitLab 12.2.3 contains a security vulnerability that allows a user to  ...)
 	[experimental] - gitlab 12.0.8-1
 	- gitlab <unfixed>
author	Salvatore Bonaccorso <carnil@debian.org>	2020-02-15 09:37:02 +0100
committer	Salvatore Bonaccorso <carnil@debian.org>	2020-02-15 09:37:02 +0100
commit	3c1d8932f482bc40690bd34ed36a954d8e74fd52 (patch)
tree	b456df406e805b9463fec92c0747330837c7f333 /data/CVE/list.2019
parent	69a50dae0241b456d7e652df903c2bca4526190a (diff)