GitLab warns of high-severity 2FA bypass, denial-of-service flaws

GitLab has patched a high-severity two-factor authentication bypass impacting community and enterprise editions of its ...
Bleeping Computer

GitLab warns of critical pipeline execution vulnerability

GitLab has released critical updates to address multiple vulnerabilities, the most severe of them (CVE-2024-6678) allowing an attacker to trigger pipelines as arbitrary users under certain conditions.
TechRadar

GitLab has patched a host of worrying security issues

GitLab releases patch for nine flaws, including two critical severity ones The critical flaws allowed threat actors to bypass authentication and could lead to data exfiltration Patch is available now, ...
InfoQ

GitLab Protocol Fuzzer CE Now Open-Source

Unlock the full InfoQ experience by logging in! Stay updated with your favorite authors and topics, engage with content, and download exclusive resources. Vivek Yadav, an engineering manager from ...
IT News For Australia Business

GitLab fixes account takeover vulnerability

GitLab has patched a critical and trivial-to-exploit account takeover bug. The attack vector for CVE-2023-7028 is the password reset function. “User account password reset emails could be delivered to ...
Geeky Gadgets

Using a Raspberry Pi private GitLab server

Following on from their previous project which detailed how to install GitLab on the Raspberry Pi 4, Hackster.io member Mikrocontroller Projekte has published a new project providing more details ...
CCM

Gitlab vs Github: 2023, differences, which is best?

GitLab provides a complete DevOps platform, offering continuous integration, continuous delivery (CI/CD), issue tracking, code review and more. There are both cloud-hosted (GitLab.com) and self-hosted ...