Hi all, GitLab recently announced that several security flaws were recently fixed on their platform, including two critical flaws:
https://about.gitlab.com/releases/2024/01/11/critical-security-release-gitlab-16-7-2-released/ The Wireshark repositories are hosted on GitLab's SaaS platform (gitlab.com), and the issues have been fixed there. One of the vulnerabilities allowed an attacker to take over your account. According to the announcement, GitLab hasn't detected anyone leveraging this vulnerability on their systems, but they do recommend that you enable 2FA on your GitLab account if possible. ___________________________________________________________________________ Sent via: Wireshark-dev mailing list <wireshark-dev@wireshark.org> Archives: https://www.wireshark.org/lists/wireshark-dev Unsubscribe: https://www.wireshark.org/mailman/options/wireshark-dev mailto:wireshark-dev-requ...@wireshark.org?subject=unsubscribe
