Today we are releasing versions 17.11.2, 17.10.6, 17.9.8 for GitLab Community Edition (CE) and Enterprise Edition (EE).

These versions contain important security fixes and we strongly recommend that all GitLab installations be upgraded to one of these versions immediately. You can see details in this patch release blog post.

Please forward this alert to appropriate people at your organization and have them subscribe to Security Notices. You can also receive security blog updates by subscribing to our patch release RSS feed or our RSS feed for all GitLab releases.

GitLab releases fixes for vulnerabilities in dedicated patch releases. There are two types of patch releases: scheduled releases, and ad-hoc critical patches for high-severity vulnerabilities. Scheduled releases are released twice a month on the second and fourth Wednesdays. For more information, you can visit our security FAQ.

You can see all of GitLab release blog posts here.

Sincerely,
GitLab Security Team