CVE-2020-13360

An attacker can schedule a very large number of releases in the future causing a denial of service on a GitLab EE 12.10 instance when they’re all processed at once when the release date comes. This affects versions >=12.10, <13.3.9,>=13.3.9, <13.4.5,>=13.4.5, <13.5.2.

Leave a comment