gitlab-rails-ee-17.2
Chainguard
Status
Impact
Remediating this CVE requires upgrading json-jwt (gem) to version >=1.15.3.1. Due to the dependent nature of the gems used in GitLab, bumping this may cause compatibility issues with other gems. Pending a fix from upstream. Re: https://docs.gitlab.com/ee/development/rails_update.html
Status