CVE-2019-10134: Improper Input Validation

June 26, 2019 (updated October 9, 2019)

The size of users’ private file uploads via email were not correctly checked, so their quota allowance could be exceeded.

References

bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-10134
moodle.org/mod/forum/discuss.php?d=386524
nvd.nist.gov/vuln/detail/CVE-2019-10134

Code Behaviors & Features

Detect and mitigate CVE-2019-10134 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →