An issue was discovered in GitLab CE/EE affecting all versions from 11.8 before 17.4.6, 17.5 before 17.5.4, and 17.6 before 17.6.2. An attacker could potentially perform an open redirect against a given releases API endpoint.
{ "binaries": [ { "binary_name": "gitlab", "binary_version": "8.5.8+dfsg-5" } ] }