FreeBSD: VID-aaea7b7c-4887-11ee-b164-001b217b3468 (CVE-2023-0120): Gitlab -- Vulnerabilities

Gitlab reports: Privilege escalation of "external user" to internal access through group service account Maintainer can leak sentry token by changing the configured URL (fix bypass) Google Cloud Logging private key showed in plain text in GitLab UI leaking to other group owners Information disclosure via project import endpoint Developer can leak DAST scanners "Site Profile" request headers and auth password Project forking outside current group User is capable of creating Model experiment and updating existing run's status in public project ReDoS in bulk import API Pagination for Branches and Tags can be skipped leading to DoS Internal Open Redirection Due to Improper handling of "../" characters Subgroup Member With Reporter Role Can Edit Group Labels Banned user can delete package registries