Security Vulnerabilities: GitLab Developers Advise Prompt Update

The software development platform GitLab is vulnerable. Attackers can, among other things, execute DoS attacks.
Bleeping Computer

GitLab warns of critical pipeline execution vulnerability

GitLab has released critical updates to address multiple vulnerabilities, the most severe of them (CVE-2024-6678) allowing an attacker to trigger pipelines as arbitrary users under certain conditions.
Bleeping Computer

Critical GitLab vulnerability lets attackers take over accounts

GitLab has addressed a critical severity vulnerability that could allow remote attackers to take over user accounts using hardcoded passwords. The bug (discovered internally and tracked as ...
TechRadar

GitLab users told to install emergency security fix immediately

GitLab has released a fix for a newly discovered security flaw, and is urging its users to install immediately as it addresses a high-severity vulnerability that can cause all sorts of trouble. In a ...

Cybercrooks breach Red Hat's private GitLab repos - what we know about affected customers

Any theft of customer data is bad a look, but it's still unclear just how serious this incident is. Here's why.
The Register on MSN

Red Hat breach escalates as criminals collaborate on 'multi-terabyte' extortion plot

Bad guys promise not to attack customers if they get paid Red Hat's breach nightmare just got worse, as the Crimson Collective crew that claims to have ransacked its GitLab repos has joined forces ...
Linux Journal

Take Your Git In-House

If you're wary of the Microsoft takeover of GitHub, or if you've been looking for a way to ween yourself off free public repositories, or if you want to ramp up your DevOps efforts, now's a good time ...
CCM

Gitlab vs Github: 2023, differences, which is best?

GitLab provides a complete DevOps platform, offering continuous integration, continuous delivery (CI/CD), issue tracking, code review and more. There are both cloud-hosted (GitLab.com) and self-hosted ...