Bob Van Landuyt

**Name of the Vulnerable Software and Affected Versions** Gitlab versions 13.4.x through 13.4.7 Gitlab versions 13.5 through 13.5.5 Gitlab versions 13.6 through 13.6.2 **Description** A potential DOS issue was discovered in Gitlab. It can be triggered by using a specific query name for a project search, causing statement timeouts that could lead to a potential DOS if exploited. **Recommendations** For Gitlab versions 13.4.x through 13.4.7, update to a version that includes the fix for this issue. For Gitlab versions 13.5 through 13.5.5, update to a version that includes the fix for this issue. For Gitlab versions 13.6 through 13.6.2, update to a version that includes the fix for this issue. As a temporary workaround, consider restricting the use of specific query names in project searches to minimize the risk of exploitation.