GitLab not affected by Rails vulnerability CVE-2014-3483

Jacob Vosmaer
Jul 3, 2014

Yesterday the developers of Ruby on Rails released a security advisory for SQL injection vulnerability CVE-2014-3483. GitLab is not affected by this vulnerability.

Background

CVE-2014-3483 affects applications which use PostgreSQL bitstring or range types in their database schema. GitLab uses neither of these types in its database schema.

Please contact us at support@gitlab.com if you have any questions about this issue.


Install GitLab on your own server in 2 minutes

Browse all posts

For the latest and most detailed news follow @gitlab on Twitter. Future blog posts suggestions.