CVE-2020-13310

Summary

A vulnerability was discovered in GitLab runner versions before 13.1.3, 13.2.3 and 13.3.1. It was possible to make the gitlab-runner process crash by sending malformed queries, resulting in a denial of service.

Affected Software

VendorProductVersion RangeStatus
GitLabGitLab>=1.0, <13.1.3affected
GitLabGitLab>=13.2, <13.2.3affected
GitLabGitLab>=13.3, <13.3.1affected

Weaknesses

  • Improper handling of exceptional conditions in GitLab

ADP Enrichment

CVE Program Container

Additional References

References