{"id":2837,"date":"2023-05-11T16:35:07","date_gmt":"2023-05-11T08:35:07","guid":{"rendered":"http:\/\/www.gzwangan.com\/?p=2837"},"modified":"2023-05-11T16:50:49","modified_gmt":"2023-05-11T08:50:49","slug":"gitlab%e4%bb%a3%e7%a0%81%e6%89%a7%e8%a1%8c%e6%bc%8f%e6%b4%9e","status":"publish","type":"post","link":"http:\/\/www.gzwangan.com\/?p=2837","title":{"rendered":"GitLab\u4ee3\u7801\u6267\u884c\u6f0f\u6d1e"},"content":{"rendered":"\t\t
\n\t\t\t\t\t\t
\n\t\t\t\t\t\t
\n\t\t\t\t\t
\n\t\t\t
\n\t\t\t\t\t\t\t<\/div>\n\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t<\/section>\n\t\t\t\t
\n\t\t\t\t\t\t
\n\t\t\t\t\t
\n\t\t\t
\n\t\t\t\t\t\t
\n\t\t\t\t
\n\t\t\t

GitLab\u4ee3\u7801\u6267\u884c\u6f0f\u6d1e<\/h2>\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t<\/section>\n\t\t\t\t
\n\t\t\t\t\t\t
\n\t\t\t\t\t
\n\t\t\t
\n\t\t\t\t\t\t
\n\t\t\t\t
\n\t\t\t\t\t\t\t

\u6f0f\u6d1e\u7f16\u53f7<\/p>\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t<\/div>\n\t\t\t\t

\n\t\t\t
\n\t\t\t\t\t\t
\n\t\t\t\t
\n\t\t\t\t\t\t\t

CVE-2023-2478<\/p>\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t<\/section>\n\t\t\t\t

\n\t\t\t\t\t\t
\n\t\t\t\t\t
\n\t\t\t
\n\t\t\t\t\t\t
\n\t\t\t\t
\n\t\t\t\t\t\t\t

\u6f0f\u6d1e\u7c7b\u578b<\/p>\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t<\/div>\n\t\t\t\t

\n\t\t\t
\n\t\t\t\t\t\t
\n\t\t\t\t
\n\t\t\t\t\t\t\t

\u8fdc\u7a0b\u4ee3\u7801\u6267\u884c(RCE)<\/p>\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t<\/section>\n\t\t\t\t

\n\t\t\t\t\t\t
\n\t\t\t\t\t
\n\t\t\t
\n\t\t\t\t\t\t
\n\t\t\t\t
\n\t\t\t\t\t\t\t

\u6f0f\u6d1e\u7b49\u7ea7<\/p>\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t<\/div>\n\t\t\t\t

\n\t\t\t
\n\t\t\t\t\t\t
\n\t\t\t\t
\n\t\t\t\t\t\t\t

\u4e25\u91cd<\/p>\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t<\/section>\n\t\t\t\t

\n\t\t\t\t\t\t
\n\t\t\t\t\t
\n\t\t\t
\n\t\t\t\t\t\t
\n\t\t\t\t
\n\t\t\t\t\t\t\t

\u53d1\u5e03\u65f6\u95f4<\/p>\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t<\/div>\n\t\t\t\t

\n\t\t\t
\n\t\t\t\t\t\t
\n\t\t\t\t
\n\t\t\t\t\t\t\t

2023-05-08<\/p>\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t<\/section>\n\t\t\t\t

\n\t\t\t\t\t\t
\n\t\t\t\t\t
\n\t\t\t
\n\t\t\t\t\t\t
\n\t\t\t\t
\n\t\t\t\t\t\t\t

\u6f0f\u6d1e\u63cf\u8ff0<\/h4>

GitLab\u662f\u4e00\u4e2a\u7528\u4e8e\u4ed3\u5e93\u7ba1\u7406\u7cfb\u7edf\u7684\u5f00\u6e90\u9879\u76ee\uff0c\u5176\u4f7f\u7528Git\u4f5c\u4e3a\u4ee3\u7801\u7ba1\u7406\u5de5\u5177\uff0c\u53ef\u901a\u8fc7Web\u754c\u9762\u8bbf\u95ee\u516c\u5f00\u6216\u79c1\u4eba\u9879\u76ee\u3002<\/p>

2023\u5e745\u67086\u65e5\uff0cGitLab\u5b98\u65b9\u53d1\u5e03\u66f4\u65b0\u516c\u544a\uff0c\u4fee\u590d\u4e86GitLab \u793e\u533a\u7248 \uff08CE\uff09\u548c\u4f01\u4e1a\u7248\uff08EE\uff09\u4e2d\u7684\u4e00\u4e2a\u4ee3\u7801\u6267\u884c\u6f0f\u6d1e\uff0c\u6f0f\u6d1e\u7f16\u53f7\uff1aCVE-2023-2478\uff0c\u6f0f\u6d1e\u5371\u5bb3\u7b49\u7ea7\uff1a\u4e25\u91cd\u3002<\/p>

GitLab CE\/EE\u591a\u4e2a\u53d7\u5f71\u54cd\u7248\u672c\u4e2d\uff0c\u67d0\u4e9b\u60c5\u51b5\u4e0b\u5b9e\u4f8b\u4e0a\u7ecf\u8fc7\u8eab\u4efd\u9a8c\u8bc1\u7684\u4efb\u4f55GitLab \u7528\u6237\u90fd\u53ef\u4ee5\u5229\u7528\u8be5\u6f0f\u6d1e\uff0c\u4f7f\u7528GraphQL\u7aef\u70b9\u5c06\u6076\u610f\u8fd0\u884c\u7a0b\u5e8f\u9644\u52a0\u5230\u5b9e\u4f8b\u4e0a\u7684\u4efb\u610f\u9879\u76ee\uff0c\u6210\u529f\u5229\u7528\u53ef\u80fd\u5bfc\u81f4\u654f\u611f\u4fe1\u606f\u6cc4\u9732\u6216\u4ee3\u7801\u6267\u884c\u7b49\u3002<\/p>\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t<\/section>\n\t\t\t\t

\n\t\t\t\t\t\t
\n\t\t\t\t\t
\n\t\t\t
\n\t\t\t\t\t\t
\n\t\t\t\t
\n\t\t\t\t\t\t\t

\u5f71\u54cd\u7248\u672c<\/h4>

15.4<=GitLab CE<15.9.7<\/p><\/div>

15.10<=GitLab CE<15.10.6<\/p><\/div>

15.11<=GitLab CE<15.11.2<\/p><\/div>

15.4<=GitLab EE<15.9.7<\/p><\/div>

15.10<=GitLab EE<15.10.6<\/p><\/div>

15.11<=GitLab EE<15.11.2<\/p><\/div>\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t<\/section>\n\t\t\t\t

\n\t\t\t\t\t\t
\n\t\t\t\t\t
\n\t\t\t
\n\t\t\t\t\t\t
\n\t\t\t\t
\n\t\t\t\t\t\t\t

\u4fee\u590d\u5efa\u8bae<\/h4>

\u76ee\u524d\u8be5\u6f0f\u6d1e\u5df2\u7ecf\u4fee\u590d\uff0c\u53d7\u5f71\u54cd\u7528\u6237\u53ef\u5347\u7ea7\u5230\u4ee5\u4e0b\u7248\u672c\uff1a
GitLab CE\/EE\u7248\u672c\uff1a>= 15.9.7
GitLab CE\/EE\u7248\u672c\uff1a>= 15.10.6
GitLab CE\/EE\u7248\u672c\uff1a>= 15.11.2
\u4e0b\u8f7d\u94fe\u63a5\uff1a
https:\/\/about.gitlab.com\/update\/<\/a><\/p>\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t<\/section>\n\t\t\t\t<\/div>\n\t\t","protected":false},"excerpt":{"rendered":"

GitLab\u4ee3\u7801\u6267\u884c\u6f0f\u6d1e \u6f0f\u6d1e\u7f16\u53f7 CVE-2023-2478 \u6f0f\u6d1e\u7c7b\u578b \u8fdc\u7a0b\u4ee3\u7801\u6267\u884c(RCE) \u6f0f\u6d1e\u7b49\u7ea7 \u4e25… \u7ee7\u7eed\u9605\u8bfbGitLab\u4ee3\u7801\u6267\u884c\u6f0f\u6d1e<\/span><\/a><\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"closed","sticky":false,"template":"elementor_header_footer","format":"standard","meta":{"footnotes":""},"categories":[5],"tags":[],"class_list":["post-2837","post","type-post","status-publish","format-standard","hentry","category-security","entry"],"_links":{"self":[{"href":"http:\/\/www.gzwangan.com\/index.php?rest_route=\/wp\/v2\/posts\/2837","targetHints":{"allow":["GET"]}}],"collection":[{"href":"http:\/\/www.gzwangan.com\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"http:\/\/www.gzwangan.com\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"http:\/\/www.gzwangan.com\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"http:\/\/www.gzwangan.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=2837"}],"version-history":[{"count":5,"href":"http:\/\/www.gzwangan.com\/index.php?rest_route=\/wp\/v2\/posts\/2837\/revisions"}],"predecessor-version":[{"id":2842,"href":"http:\/\/www.gzwangan.com\/index.php?rest_route=\/wp\/v2\/posts\/2837\/revisions\/2842"}],"wp:attachment":[{"href":"http:\/\/www.gzwangan.com\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=2837"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"http:\/\/www.gzwangan.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=2837"},{"taxonomy":"post_tag","embeddable":true,"href":"http:\/\/www.gzwangan.com\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=2837"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}