Security Advisory

GitLab Product Security Update Advisory (CVE-2025-12571)

  • Nov 28 2025
GitLab Product Security Update Advisory (CVE-2025-12571)

Overview

 

We have released security updates to fix vulnerabilities in GitLab products. Users of affected products are advised to update to the latest version.
 

 

Affected Products

 

CVE-2025-12571

 

GitLab CE/EE Versions: 17.10 and later but before 18.4.5
GitLab CE/EE Versions: 18.5 and above but below 18.5.3
GitLab CE/EE version: 18.6 or later but not earlier than 18.6.1

 

 

Resolved Vulnerabilities

 

Denial of Service Vulnerability in GitLab CE/EE JSON Input Validation (CVE-2025-12571)

 

 

Vulnerability Patches

Vulnerability Patches have been made available in the latest updates. Please follow the instructions on the Referenced Sites to update to the latest Vulnerability Patches version.

 

CVE-2025-12571

 

GitLab CE/EE version: 18.4.5
GitLab CE/EE version: 18.5.3
GitLab CE/EE version: 18.6.1

 

 

References

 

[1] GitLab Patch Release: 18.6.1, 18.5.3, 18.4.5
https://about.gitlab.com/releases/2025/11/26/patch-release-gitlab-18-6-1-released/

Tags:
Previous Post

Next Post