GitLab EEºÍCE ÐÅϢй¶Îó²îΣº¦Í¨¸æ

Ðû²¼Ê±¼ä 2020-01-14

Îó²î±àºÅºÍ¼¶±ð


CVE±àºÅ£ºCVE-2020-6832£¬£¬£¬£¬£¬Î£ÏÕ¼¶±ð£ºÑÏÖØ£¬£¬£¬£¬£¬CVSS·ÖÖµ£º¹Ù·½Î´ÆÀ¶¨


Ó°Ïì°æ±¾


GitLab EE 8.9.0 ¼°Ö®ºó°æ±¾


Îó²î¸ÅÊö


GitLabÊÇÃÀ¹úGitLab¹«Ë¾µÄÒ»¿îʹÓÃRuby on Rails¿ª·¢µÄ¡¢×ÔÍйܵġ¢Git£¨°æ±¾¿ØÖÆϵͳ£©ÏîÄ¿¿ÍÕ»Ó¦ÓóÌÐò¡£¡£¡£¡£¡£¸Ã³ÌÐò¿ÉÓÃÓÚ²éÔÄÏîÄ¿µÄÎļþÄÚÈÝ¡¢Ìá½»ÀúÊ·¡¢BugÁбíµÈ¡£¡£¡£¡£¡£


GitLab¹Ù·½Ðû²¼ÁËÒ»ÔòÖ÷Òª°æ±¾¸üеÄÇ徲ͨ¸æ£¬£¬£¬£¬£¬ÐÞ¸´ÁËÒ»¸ö¿ÉÄܵ¼ÖÂ˽ÓÐÏîÄ¿ÐÅϢ鶵ÄÎó²î¡£¡£¡£¡£¡£ÔÚʹÓÃGitLabµÄÏîÄ¿µ¼È빦Чʱ£¬£¬£¬£¬£¬Ê¹ÓøÃÎó²î¿É´Ó˽ÓÐÏîÄ¿ÖлñÈ¡µ½Ãô¸ÐÐÅÏ¢¡£¡£¡£¡£¡£


Ïà¹ØÓû§¿Éͨ¹ý°æ±¾¼ì²âµÄÒªÁìÅжÏÄ¿½ñÓ¦ÓÃÊÇ·ñ±£´æΣº¦¡£¡£¡£¡£¡£Ê¹ÓÃÈçÏÂÏÂÁî¿ÉÉó²éÄ¿½ñGitLabµÄ°æ±¾£ºcat /opt/gitlab/embedded/service/gitlab-rails/VERSION£¬£¬£¬£¬£¬ÈôÄ¿½ñ°æ±¾ÔÚÊÜÓ°Ïì¹æÄ£ÄÚ£¬£¬£¬£¬£¬Ôò¿ÉÄܱ£´æÇ徲Σº¦¡£¡£¡£¡£¡£


Îó²îÑéÖ¤


ÔÝÎÞPOC/EXP¡£¡£¡£¡£¡£


ÐÞ¸´½¨Òé


ÏÖÔÚ¹Ù·½ÒÑÔÚ×îа汾ÖÐÐÞ¸´Á˸ÃÎó²î£¬£¬£¬£¬£¬Óû§¿Éͨ¹ý°æ±¾Éý¼¶¾ÙÐзÀ»¤¡£¡£¡£¡£¡£GitLabÏÂÔغÍ×°ÖÃÒªÁìÇë²Î¿¼Á´½Ó£ºhttps://about.gitlab.com/update/¡£¡£¡£¡£¡£


²Î¿¼Á´½Ó


https://about.gitlab.com/releases/2020/01/13/critical-security-release-gitlab-12-dot-6-dot-4-released/