Jul 3, 2014 - Jacob Vosmaer

GitLab not affected by Rails vulnerability CVE-2014-3483

Developers of Ruby on Rails released a security advisory for SQL injection vulnerability CVE-2014-3483. GitLab is not affected.

Yesterday the developers of Ruby on Rails released a security advisory for SQL injection vulnerability CVE-2014-3483. GitLab is not affected by this vulnerability.

Background

CVE-2014-3483 affects applications which use PostgreSQL bitstring or range types in their database schema. GitLab uses neither of these types in its database schema.

Please contact us at support@gitlab.com if you have any questions about this issue.

GitLab not affected by Rails vulnerability CVE-2014-3483 Click to tweet!

Try all GitLab features - free for 30 days

GitLab is more than just source code management or CI/CD. It is a full software development lifecycle & DevOps tool in a single application.

Try GitLab Free

Git is a trademark of Software Freedom Conservancy and our use of 'GitLab' is under license

View page source — Edit in Web IDE — please contribute.

GitLab not affected by Rails vulnerability CVE-2014-3483

Background

More Posts Like This:

We're working to empower Minorities in Tech with a new employee resource group

How diversity, inclusion, and belonging looks in the tech industry

Our journey to a more diverse and inclusive workplace

How GitLab boosts collaboration through visibility, accountability, and measurement

GitLab 8.7 Release Webcast Recording and Slides

Join us for a Tour of GitLab 8.5

Try all GitLab features - free for 30 days