GitLab.high.CPU.usage
Description
Unauthenticated requests to the markdown preview API /api/v4/markdown and authenticated previewing of an issue with a specially-crafted description results in high CPU usage for 60 seconds (request timeout).
Affected Products
all versions before before 15.2.5
all versions starting from 15.3 before 15.3.4
all versions starting from 15.4 before 15.4.1
Impact
Denial of Service: Remote attackers can trigger high CPU usage.
Recommended Actions
Apply the most recent upgrade or patch from the vendor.
Version Updates
Date | Version | Detail |
---|---|---|
2023-01-03 | 0.00338 |