SecuritySpace - CVE-2022-1100

Vulnerability Search		Search 324607 CVE descriptions and 145615 test descriptions, access 10,000+ cross references.
	Tests CVE All

CVE ID: CVE-2022-1100

Description: A potential DOS vulnerability was discovered in GitLab CE/EE affecting all versions from 13.1 prior to 14.7.7, 14.8.0 prior to 14.8.5, and 14.9.0 prior to 14.9.2. The api to update an asset as a link from a release had a regex check which caused exponential number of backtracks for certain user supplied values resulting in high CPU usage.

Test IDs: 1.3.6.1.4.1.25623.1.0.147912

Cross References: Common Vulnerability Exposure (CVE) ID: CVE-2022-1100
https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-1100.json
https://gitlab.com/gitlab-org/gitlab/-/issues/273771
https://gitlab.com/gitlab-org/gitlab/-/issues/273771

CVE ID:	CVE-2022-1100
Description:	A potential DOS vulnerability was discovered in GitLab CE/EE affecting all versions from 13.1 prior to 14.7.7, 14.8.0 prior to 14.8.5, and 14.9.0 prior to 14.9.2. The api to update an asset as a link from a release had a regex check which caused exponential number of backtracks for certain user supplied values resulting in high CPU usage.
Test IDs:	1.3.6.1.4.1.25623.1.0.147912
Cross References:	Common Vulnerability Exposure (CVE) ID: CVE-2022-1100 https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-1100.json https://gitlab.com/gitlab-org/gitlab/-/issues/273771 https://gitlab.com/gitlab-org/gitlab/-/issues/273771