<ul><li>GitLab issued updates for CE and EE to address multiple flaws, including a critical bug allowing CI/CD pipeline runs on unauthorized branches.</li><li>The critical bug, tracked as CVE-2024-9164, allows running pipelines on arbitrary branches and has been mitigated in the latest release.</li><li>GitLab also addressed four high-severity issues and two medium severity issues in the security updates.</li><li>In mid-September, GitLab released security patches for 17 vulnerabilities in GitLab CE and EE, including a critical pipeline execution flaw.</li></ul>

GitLab fixed a critical flaw that could allow arbitrary CI/CD pipeline execution

Discover more