Security Vulnerabilities
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 13.12 to 18.2.8, 18.3 to 18.3.4, and 18.4 to 18.4.2 that could make the GitLab instance unresponsive or severely degraded by sending crafted GraphQL queries requesting large repository blobs.
CVSS Score
7.5
EPSS Score
0.001
Published
2025-10-09
Memory corruption while processing an escape call.
CVSS Score
7.8
EPSS Score
0.0
Published
2025-10-09
Memory corruption while processing user buffers.
CVSS Score
7.8
EPSS Score
0.0
Published
2025-10-09
Memory corruption while allocating buffers in DSP service.
CVSS Score
7.8
EPSS Score
0.0
Published
2025-10-09
Memory corruption while invoking remote procedure IOCTL calls.
CVSS Score
7.8
EPSS Score
0.0
Published
2025-10-09
memory corruption while processing an image encoding completion event.
CVSS Score
7.8
EPSS Score
0.0
Published
2025-10-09
Transient DOS may occur when multi-profile concurrency arises with QHS enabled.
CVSS Score
7.1
EPSS Score
0.0
Published
2025-10-09
Memory corruption while processing control commands in the virtual memory management interface.
CVSS Score
7.8
EPSS Score
0.0
Published
2025-10-09
Memory corruption while processing a malformed license file during reboot.
CVSS Score
7.8
EPSS Score
0.0
Published
2025-10-09
Memory corruption while performing SCM call.
CVSS Score
8.8
EPSS Score
0.0
Published
2025-10-09