CVE-2018-19496 (retired)

Priority
Description
An issue was discovered in GitLab Community and Enterprise Edition 10.x and
11.x before 11.3.11, 11.4.x before 11.4.8, and 11.5.x before 11.5.1. There
is an incorrect access control vulnerability that permits a user with
insufficient privileges to promote a project milestone to a group
milestone.
Package
Upstream:needs-triage
Ubuntu 12.04 ESM (Precise Pangolin):DNE
Ubuntu 16.04 LTS (Xenial Xerus):not-affected
Ubuntu 18.04 LTS (Bionic Beaver):DNE
Ubuntu 18.10 (Cosmic Cuttlefish):DNE
Ubuntu 19.04 (Disco Dingo):DNE
More Information

Updated: 2019-07-10 17:15:14 UTC (commit 817006b308769d9aa349b1e22b0cd317f9377d0d)