Security vulnerabilities Faced in GitLab runners in Community Edition for 16.9.0, 16.6.1 and 17.0.0 version

vijayrajvg · August 28, 2024, 1:10pm

Please find the list of CIB ID’s below:
CON-Image-CVE-2024-6387
CON-Image-CVE-2024-6387
CON-Image-CVE-2024-6387
CON-Image-CVE-2024-6387

dnsmichi · August 28, 2024, 1:25pm

16.9.0, 16.6.1 and 17.0.0 are not supported anymore, following the GitLab maintenance policy. GitLab release and maintenance policy | GitLab

Specifically for CVE-2024-6387, see this guidance:

Can you add a little more detail about your findings and/or questions? I’ve noticed you had shared another list in Security Vulnerabilities faced in GitLab Community edition for 16.1.0 and 16.0.5

Topic		Replies	Views
Security Vulnerabilities faced in GitLab Community edition for 16.1.0 and 16.0.5 DevSecOps	2	39	August 28, 2024
GitLab 14.1.0 version: Approach to fixing security vulnerabilities Community	2	394	January 6, 2023
CVE-2023-6371: Is the 16.7.7 affected? Upgrade docker	3	215	April 10, 2024
GitLab 15.7.3 version : security vulnerabilities fixing Community	2	392	February 8, 2023
FAQ: The RegreSSHion vulnerability and GitLab Community	0	64	July 9, 2024