CVE-2022-0151

Name of the Vulnerable Software and Affected Versions GitLab versions 12.10 through 14.4.5 GitLab versions 14.5.0 through 14.5.3 GitLab versions 14.6.0 through 14.6.2

Description An issue has been discovered in GitLab where it was not correctly handling requests to delete existing packages, which could result in a Denial of Service under specific conditions.

Recommendations For versions 12.10 through 14.4.5, update to version 14.4.5 or later to resolve the issue. For versions 14.5.0 through 14.5.3, update to version 14.5.3 or later to resolve the issue. For versions 14.6.0 through 14.6.2, update to version 14.6.2 or later to resolve the issue. As a temporary workaround, consider restricting access to package deletion requests until a patch is available.