FreeBSD : Gitlab -- Multiple vulnerabilities (50e59056-87f2-11eb-b6a2-001b217b3468)

high Nessus Plugin ID 147900

Synopsis

The remote FreeBSD host is missing one or more security-related updates.

Description

Gigtlab reports :

Remote code execution via unsafe user-controlled markdown rendering options

Solution

Update the affected packages.

See Also

http://www.nessus.org/u?94bb1165

http://www.nessus.org/u?e345a079

Plugin Details

Severity: High

ID: 147900

File Name: freebsd_pkg_50e5905687f211ebb6a2001b217b3468.nasl

Version: 1.1

Type: local

Published: 3/19/2021

Updated: 3/19/2021

Supported Sensors: Nessus

Vulnerability Information

CPE: p-cpe:/a:freebsd:freebsd:gitlab-ce, cpe:/o:freebsd:freebsd

Required KB Items: Host/local_checks_enabled, Host/FreeBSD/release, Host/FreeBSD/pkg_info

Patch Publication Date: 3/18/2021

Vulnerability Publication Date: 3/17/2021