Security Vulnerabilities faced in GitLab Community edition for 16.1.0 and 16.0.5

vijayrajvg · August 28, 2024, 8:24am

Please find the list of CIB ID’s below:
CON-Image-CVE-2023-4911
CON-Image-CVE-2024-6387
CON-Image-CVE-2022-24834
CON-Image-CVE-2024-0985
CON-Image-CVE-2023-39417
CON-Image-CVE-2023-4911
CON-Image-CVE-2024-6387
CON-Image-CVE-2022-24834
CON-Image-CVE-2024-0985
CON-Image-CVE-2023-39417
CON-Image-CVE-2023-5869
CON-Image-CVE-2021-3618
CON-Image-CVE-2023-5869
CON-Image-CVE-2021-42381
CON-Image-CVE-2021-3618
CON-Image-CVE-2021-42384
CON-Image-CVE-2021-42381
CON-Image-CVE-2021-42384
CON-Image-CVE-2022-48174
CON-Image-CVE-2022-48174
CON-Image-CVE-2018-1000500
CON-Image-CVE-2018-1000500
CON-Image-CVE-2021-42380
CON-Image-CVE-2021-42386
CON-Image-CVE-2021-42380
CON-Image-CVE-2023-39810
CON-Image-CVE-2023-39810
CON-Image-CVE-2021-42386
CON-Image-CVE-2021-42382
CON-Image-CVE-2021-42382
CON-Image-CVE-2022-28391
CON-Image-CVE-2022-28391
CON-Image-CVE-2021-42378
CON-Image-CVE-2021-42378
CON-Image-CVE-2021-42379
CON-Image-CVE-2021-42385
CON-Image-CVE-2021-42385
CON-Image-CVE-2021-42379
CON-Image-CVE-2024-6387
CON-Image-CVE-2022-24834
CON-Image-CVE-2023-4911
CON-Image-CVE-2023-39417
CON-Image-CVE-2024-0985
CON-Image-CVE-2024-6387
CON-Image-CVE-2023-4911
CON-Image-CVE-2022-24834
CON-Image-CVE-2023-39417
CON-Image-CVE-2024-0985
CON-Image-CVE-2024-6387
CON-Image-CVE-2022-24834
CON-Image-CVE-2023-39417
CON-Image-CVE-2023-4911
CON-Image-CVE-2024-0985
CON-Image-CVE-2023-5869
CON-Image-CVE-2021-42378
CON-Image-CVE-2021-42379
CON-Image-CVE-2021-42385
CON-Image-CVE-2021-42381
CON-Image-CVE-2023-5869
CON-Image-CVE-2021-42378
CON-Image-CVE-2021-42379
CON-Image-CVE-2021-42385
CON-Image-CVE-2021-42381
CON-Image-CVE-2023-5869
CON-Image-CVE-2021-42378
CON-Image-CVE-2021-42379
CON-Image-CVE-2021-42385
CON-Image-CVE-2021-42381
CON-Image-CVE-2021-42384
CON-Image-CVE-2021-42384
CON-Image-CVE-2021-42384
CON-Image-CVE-2018-1000500
CON-Image-CVE-2021-42380
CON-Image-CVE-2022-48174
CON-Image-CVE-2021-42386
CON-Image-CVE-2018-1000500
CON-Image-CVE-2022-48174
CON-Image-CVE-2021-42380
CON-Image-CVE-2021-42386
CON-Image-CVE-2022-48174
CON-Image-CVE-2018-1000500
CON-Image-CVE-2021-42380
CON-Image-CVE-2021-42386
CON-Image-CVE-2023-39810
CON-Image-CVE-2023-39810
CON-Image-CVE-2023-39810
CON-Image-CVE-2022-28391
CON-Image-CVE-2021-42382
CON-Image-CVE-2022-28391
CON-Image-CVE-2021-42382
CON-Image-CVE-2022-28391
CON-Image-CVE-2021-42382

iwalker · August 28, 2024, 9:59am

And what is the point of your post? Gitlab 16.1.0 is old, and you shouldn’t be using it anyway. Fixes are made and applied to the latest versions. Upgrade your system.

dnsmichi · August 28, 2024, 1:26pm

16.1.0 and 16.0.5 are not supported anymore, following the GitLab maintenance policy. GitLab release and maintenance policy | GitLab

Can you add a little more detail about your findings and/or questions? I’ve noticed you had shared another list in Security vulnerabilities Faced in GitLab runners in Community Edition for 16.9.0, 16.6.1 and 17.0.0 version

Topic		Replies	Views
Security vulnerabilities Faced in GitLab runners in Community Edition for 16.9.0, 16.6.1 and 17.0.0 version DevSecOps	1	52	August 28, 2024
GitLab 14.1.0 version: Approach to fixing security vulnerabilities Community	2	401	January 6, 2023
GitLab 15.8.1 (Helm Chart 6.8.1) version: Third party images vulnerabilities fixing Community	3	740	February 10, 2023
GitLab 15.7.3 version : security vulnerabilities fixing Community	2	395	February 8, 2023
Updates regarding Spring remote code execution vulnerabilities CVE-2022-22965 and CVE-2022-22963 Community	0	311	April 7, 2022

Security Vulnerabilities faced in GitLab Community edition for 16.1.0 and 16.0.5

Related topics