A regular expression denial of service issue in GitLab versions 8.13 to 14.2.5, 14.3.0 to 14.3.3 and 14.4.0 could cause excessive usage of resources when a specially crafted username was used when provisioning a new user
{
"versions": [
{
"introduced": "8.13.0"
},
{
"fixed": "14.2.6"
},
{
"introduced": "8.13.0"
},
{
"fixed": "14.2.6"
},
{
"introduced": "14.3.0"
},
{
"fixed": "14.3.4"
},
{
"introduced": "14.3.0"
},
{
"fixed": "14.3.4"
},
{
"introduced": "0"
},
{
"last_affected": "14.4.0"
},
{
"introduced": "0"
},
{
"last_affected": "14.4.0"
}
]
}