Jul 3, 2014 - Jacob Vosmaer

GitLab not affected by Rails vulnerability CVE-2014-3483

Developers of Ruby on Rails released a security advisory for SQL injection vulnerability CVE-2014-3483. GitLab is not affected.

Back to company

Yesterday the developers of Ruby on Rails released a security advisory for SQL injection vulnerability CVE-2014-3483. GitLab is not affected by this vulnerability.

Background

CVE-2014-3483 affects applications which use PostgreSQL bitstring or range types in their database schema. GitLab uses neither of these types in its database schema.

Please contact us at support@gitlab.com if you have any questions about this issue.

More Posts Like This:

A deep dive into GitLab's UX design process

by Suri Patel

The UX team shares how they communicate, plan, share, and tackle improvements one iteration at a time.

Learn more

GitLab + STEM Gems: Giving girls role models in tech

by Stephanie Garza

Meet the GitLab team-members working to inspire the next generation to pursue careers in STEM.

Learn more

What our summit in South Africa taught me about cybersecurity

by Cindy Blake

Cybersecurity is a necessity, but it's often treated as an afterthought. What it has in common with modern photography could tell us how to make it less painful to achieve.

Learn more

Try all GitLab features - free for 30 days

GitLab is more than just source code management or CI/CD. It is a full software development lifecycle & DevOps tool in a single application.

Try GitLab for Free
Git is a trademark of Software Freedom Conservancy and our use of 'GitLab' is under license
View page source — Edit in Web IDE — please contribute. Creative Commons License

Try GitLab risk-free for 30 days.

No credit card required. Have questions? Contact us.

Get Your Free Trial Today
Gitlab x icon svg