CVE-2020-26414 – An issue has been discovered in GitLab affecting all versions starting from 12.4. The rege …

Vuln ID: CVE-2020-26414

Published:  2021-01-15  16:15:12Z

Description: An issue has been discovered in GitLab affecting all versions starting from 12.4. The regex used for package names is written in a way that makes execution time have quadratic growth based on the length of the malicious input string.

Source: NVD.NIST.GOV

 


Date:

Categorie(s):

Tag(s):