¡¾°²È«Â©¶´¡¿GitLabÔ¶³Ì´úÂëÖ´ÐЩ¶´

©¶´¸ÅÊö

©¶´±àºÅ£ºCVE-2022-2884

©¶´ÍþвµÈ¼¶£º¸ßΣ

©¶´ÏêÇé

GitLabÊÇÒ»¸öÓÃÓÚ²Ö¿â¹ÜÀíϵͳµÄ¿ªÔ´ÏîÄ¿£¬ÆäʹÓÃGit×÷Ϊ´úÂë¹ÜÀí¹¤¾ß£¬¿Éͨ¹ýWeb½çÃæ·ÃÎʹ«¿ª»ò˽ÈËÏîÄ¿¡£

8ÔÂ22ÈÕ£¬GitLab·¢²¼°²È«¹«¸æ£¬ÐÞ¸´ÁËGitLabÉçÇø°æ£¨CE£©ºÍÆóÒµ°æ£¨EE£©ÖеÄÒ»¸öÔ¶³Ì´úÂëÖ´ÐЩ¶´£¨CVE-2022-2884£©£¬¸Ã©¶´µÄCVSSÆÀ·ÖΪ9.9£¬Õâ¸ö°²È«Â©¶´ÊÇÒ»¸ö¿Éͨ¹ýGitHubµ¼ÈëAPI´¥·¢¾­¹ýÉí·ÝÑéÖ¤µÄÔ¶³Ì´úÂëÖ´ÐеݸÀý¡£³É¹¦ÀûÓøÃÑÏÖØ©¶´»áÈöñÒâÐÐΪÕßÔÚÄ¿±ê»úÆ÷ÉÏÔËÐжñÒâ´úÂ룬ֲÈë¶ñÒâÈí¼þºÍºóÃÅ£¬²¢ÍêÈ«¿ØÖÆÒ×Êܹ¥»÷µÄÉ豸¡£

Ó°Ï췶Χ

• 11.3.4 <= GitLab CE/EE < 15.1.5
• 15.2 <= GitLab CE/EE < 15.2.3
• 15.3 <= GitLab CE/EE < 15.3.1

ÐÞ¸´½¨Òé

ÁÙʱÐÞ¸´

ͨ¹ýÔÝʱ½ûÓÃGitHubµ¼ÈëÑ¡ÏîÀ´·À·¶Õâ¸ö©¶´¡£

µã»÷ ¡°Menu¡±->¡°Admin¡±

µã»÷¡°Settings¡±->¡°General¡±

Õ¹¿ª¡°Visibility and access controls¡±±êÇ©

ÔÚ¡°Import sources¡±Ï£¬½ûÓá°GitHub¡±Ñ¡Ïî

µã»÷¡°Save changes¡±¡£

×î¼Ñʵ¼ù

¿ÉÉý¼¶µ½GitLab 15.3.1¡¢15.2.3¡¢15.1.5»ò¸ü¸ß°æ±¾¡£

ÏÂÔØÁ´½Ó£ºhttps://about.gitlab.com/update/