Hashkitten

**Name of the Vulnerable Software and Affected Versions** GitLab CE/EE versions 12.9 through 14.3.5 GitLab CE/EE versions 14.4 through 14.4.3 GitLab CE/EE versions 14.5 through 14.5.1 **Description** An issue has been discovered in GitLab CE/EE where a regular expression related to quick actions features was susceptible to catastrophic backtracking, which could cause a Denial of Service (DOS) attack. **Recommendations** For versions 12.9 through 14.3.5, update to version 14.3.6 or later. For versions 14.4 through 14.4.3, update to version 14.4.4 or later. For versions 14.5 through 14.5.1, update to version 14.5.2 or later.

**Name of the Vulnerable Software and Affected Versions** GitLab CE/EE versions 12.10 through 14.3.6 GitLab CE/EE versions 14.4 through 14.4.4 GitLab CE/EE versions 14.5 through 14.5.2 **Description** A regular expression used for handling user input, such as notes and comments, was susceptible to catastrophic backtracking, which could cause a denial-of-service (DOS) attack. **Recommendations** For versions 12.10 through 14.3.6, update to version 14.3.6 or later. For versions 14.4 through 14.4.4, update to version 14.4.4 or later. For versions 14.5 through 14.5.2, update to version 14.5.2 or later.