Bleeping Computer

GitLab warns of critical arbitrary branch pipeline execution flaw

GitLab has released security updates to address multiple flaws in Community Edition (CE) and Enterprise Edition (EE), including a critical arbitrary branch pipeline execution flaw. The vulnerability, ...
CRN

Red Hat Says It’s Remediating GitLab Security ‘Incident’ At Consulting Arm

The IBM-owned company says it has ‘initiated necessary remediation steps’ after media outlets reported that a threat group claimed to compromise Red Hat code repositories. Red Hat disclosed that it ...
CRN

Red Hat: Customer Data Impacted In Breach Of Consulting Arm’s GitLab Instance

‘The compromised GitLab instance housed consulting engagement data,’ Red Hat says in an update about the incident. Red Hat confirmed Thursday that data belonging to some customers of its consulting ...
Dark Reading

Red Hat Investigates Widespread Breach of Private GitLab Repositories

Red Hat has confirmed a security incident that impacted its GitLab instance after a threat actor claimed to have breached tens of thousands of the Linux software-maker's private repositories. In an ...
Bleeping Computer

GitLab releases fix for critical SAML authentication bypass flaw

GitLab has released security updates to address a critical SAML authentication bypass vulnerability impacting self-managed installations of the GitLab Community Edition (CE) and Enterprise Edition (EE ...
ZDNet

GitLab awards researcher $20,000, patches remote code execution bug

Simple steps can make the difference between losing your online accounts or maintaining what is now a precious commodity: Your privacy. Read now GitLab has awarded a cybersecurity researcher $20,000 ...