VulnerableCode Package Details - pkg:alpm/archlinux/gitlab@13.10.2-1

Staging Environment: Content and features may be unstable or change without notice.

Search for packages

Package details: pkg:alpm/archlinux/gitlab@13.10.2-1

Essentials
History (2)

purl	pkg:alpm/archlinux/gitlab@13.10.2-1

Next non-vulnerable version	13.10.3-1
Latest non-vulnerable version	15.2.1-1
Risk	10.0

Vulnerabilities affecting this package (2)

Vulnerability	Summary	Fixed by
VCID-bdar-wgfe-qqgf Aliases: CVE-2021-28965 GHSA-8cr8-4vfw-mr7h	REXML round-trip instability The REXML gem before 3.2.5 in Ruby before 2.6.7, 2.7.x before 2.7.3, and 3.x before 3.0.1 does not properly address XML round-trip issues. An incorrect document can be produced after parsing and serializing.	13.10.3-1 Affected by 0 other vulnerabilities.
VCID-wm8m-8qsm-tfd2 Aliases: CVE-2021-22205	An issue has been discovered in GitLab CE/EE affecting all versions starting from 11.9. GitLab was not properly validating image files that were passed to a file parser which resulted in a remote command execution.	13.10.3-1 Affected by 0 other vulnerabilities.

Vulnerabilities fixed by this package (0)

Vulnerability	Summary	Aliases
This package is not known to fix vulnerabilities.

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-01T18:24:17.286052+00:00	Arch Linux Importer	Affected by	VCID-wm8m-8qsm-tfd2	https://security.archlinux.org/AVG-1822	38.0.0
2026-04-01T18:24:17.261275+00:00	Arch Linux Importer	Affected by	VCID-bdar-wgfe-qqgf	https://security.archlinux.org/AVG-1822	38.0.0