GitLab not affected by Rails vulnerability CVE-2014-3483

Jul 3, 2014 · less than 1 minute · Leave a comment
Jacob Vosmaer GitLab profile

Yesterday the developers of Ruby on Rails released a security advisory for SQL injection vulnerability CVE-2014-3483. GitLab is not affected by this vulnerability.

Background

CVE-2014-3483 affects applications which use PostgreSQL bitstring or range types in their database schema. GitLab uses neither of these types in its database schema.

Please contact us at support.gitlab.comif you have any questions about this issue.

Git is a trademark of Software Freedom Conservancy and our use of 'GitLab' is under license