GitLab Product Security Update Advisory (CVE-2025-0314)

Jan 31 2025

Overview

We have released security updates to fix vulnerabilities in GitLab products. Users of affected products are advised to update to the latest version.

Affected Products

CVE-2025-0314

GitLab CE/EE Versions: 17.2 ~ 17.6.4
GitLab CE/EE Versions: 17.7 ~ 17.7.3
GitLab CE/EE Versions: 17.8 ~ 17.8.1

Resolved Vulnerabilities

Insufficient validation of user input data during Asciidoctor rendering (CVE-2025-0314)

Vulnerability Patches

Vulnerability patches have been made available in the latest updates. Please follow the instructions on the Referenced Sites to update to the latest Vulnerability Patches version.

CVE-2025-0314

GitLab CE/EE version: 17.6.4 or at least
GitLab CE/EE version: 17.7.3 or at least
GitLab CE/EE version: 17.8.1 or at least

References

[1] GitLab 17.2 < 17.6.4 / 17.7 < 17.7.3 / 17.8 < 17.8.1 (CVE-2025-0314)
https://www.tenable.com/plugins/nessus/214564

GitLab Product Security Update Advisory (CVE-2025-0314)

ManageEngine (Applications Manager) Product January 2025 Security Update Advisory

Dell Product Security Update Advisory (CVE-2025-23374)

Tags:

ManageEngine (Applications Manager) Product January 2025 Security Update Advisory

Dell Product Security Update Advisory (CVE-2025-23374)