heise online

High-risk security vulnerability in PostgreSQL: Gitlab has not (yet) patched it

A known vulnerability allows simple users to inject commands into PostgreSQL. There is an update. GitLab has not yet installed it. Although a major PostgreSQL security problem has been known since ...