UBUNTU-CVE-2023-3917
- Source
- https://ubuntu.com/security/CVE-2023-3917
- Import Source
- https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2023/UBUNTU-CVE-2023-3917.json
- JSON Data
- https://api.osv.dev/v1/vulns/UBUNTU-CVE-2023-3917
- Related
- Published
- 2023-09-29T07:15:00Z
- Modified
- 2025-06-02T17:21:53Z
- Severity
-
- 4.3 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L CVSS Calculator
- 7.5 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVSS Calculator
- Summary
- [none]
- Details
-
Denial of Service in pipelines affecting all versions of Gitlab EE and CE prior to 16.2.8, 16.3 prior to 16.3.5, and 16.4 prior to 16.4.1 allows attacker to cause pipelines to fail.
- References
Affected packages
Ubuntu:Pro:16.04:LTS / gitlab
Package
- Name
- gitlab
- Purl
- pkg:deb/ubuntu/gitlab@8.5.8+dfsg-5?arch=source&distro=esm-apps/xenial
Ubuntu:24.10 / gitlab-agent
Package
- Name
- gitlab-agent
- Purl
- pkg:deb/ubuntu/gitlab-agent@16.1.3-2?arch=source&distro=oracular
Ubuntu:24.04:LTS / gitlab-agent
Package
- Name
- gitlab-agent
- Purl
- pkg:deb/ubuntu/gitlab-agent@16.1.3-2?arch=source&distro=noble