The SSH key upload feature (lib/gitlab_keys.rb) in gitlab-shell before 1.7.3, as used in GitLab 5.0 before 5.4.1 and 6.x before 6.2.3, allows remote authenticated users to execute arbitrary commands via shell metacharacters in the public key.
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Gitlab | Gitlab | 5.0.0 (including) | 5.0.0 (including) |
| Gitlab | Gitlab | 5.0.1 (including) | 5.0.1 (including) |
| Gitlab | Gitlab | 5.1.0 (including) | 5.1.0 (including) |
| Gitlab | Gitlab | 5.2.0 (including) | 5.2.0 (including) |
| Gitlab | Gitlab | 5.3.0 (including) | 5.3.0 (including) |
| Gitlab | Gitlab | 5.4.0 (including) | 5.4.0 (including) |
| Gitlab | Gitlab | 6.0.0 (including) | 6.0.0 (including) |
| Gitlab | Gitlab | 6.1.0 (including) | 6.1.0 (including) |
| Gitlab | Gitlab | 6.2.0 (including) | 6.2.0 (including) |
| Gitlab | Gitlab | 6.2.1 (including) | 6.2.1 (including) |
| Gitlab | Gitlab | 6.2.2 (including) | 6.2.2 (including) |
| Gitlab-shell | Gitlab | * | 1.7.2 (including) |
| Gitlab-shell | Gitlab | 1.0.4 (including) | 1.0.4 (including) |
| Gitlab-shell | Gitlab | 1.1.0 (including) | 1.1.0 (including) |
| Gitlab-shell | Gitlab | 1.2.0 (including) | 1.2.0 (including) |
| Gitlab-shell | Gitlab | 1.3.0 (including) | 1.3.0 (including) |
| Gitlab-shell | Gitlab | 1.4.0 (including) | 1.4.0 (including) |
| Gitlab-shell | Gitlab | 1.5.0 (including) | 1.5.0 (including) |
| Gitlab-shell | Gitlab | 1.6.0 (including) | 1.6.0 (including) |
| Gitlab-shell | Gitlab | 1.7.0 (including) | 1.7.0 (including) |
| Gitlab-shell | Gitlab | 1.7.1 (including) | 1.7.1 (including) |