From 3c1d8932f482bc40690bd34ed36a954d8e74fd52 Mon Sep 17 00:00:00 2001 From: Salvatore Bonaccorso Date: Sat, 15 Feb 2020 09:37:02 +0100 Subject: Add CVE-2019-15594 It's not very clear if this is correctly tracked. The Gitlab page says it only affects the EE version, where the CVE description available as provided mismatches this. --- data/CVE/list.2019 | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) diff --git a/data/CVE/list.2019 b/data/CVE/list.2019 index 9e04d3d5e7..1b06f42226 100644 --- a/data/CVE/list.2019 +++ b/data/CVE/list.2019 @@ -12108,7 +12108,8 @@ CVE-2019-15596 (A path traversal in statics-server exists in all version that al CVE-2019-15595 (A privilege escalation exists in UniFi Video Controller =<3.10.6 th ...) NOT-FOR-US: UniFi Video Controller CVE-2019-15594 (GitLab 11.8 and later contains a security vulnerability that allows a ...) - TODO: check + - gitlab (Only affects Gitlab EE) + NOTE: https://about.gitlab.com/releases/2019/07/29/security-release-gitlab-12-dot-1-dot-2-released/ CVE-2019-15593 (GitLab 12.2.3 contains a security vulnerability that allows a user to ...) [experimental] - gitlab 12.0.8-1 - gitlab -- cgit v1.2.3