GitLab: Guest Access to Commit Info via Atom Endpoint

In GitLab CE/EE versions 17.0 before 17.1.7, 17.2 before 17.2.5, and 17.3 before 17.3.2, a medium severity vulnerability CVE-2024-6389 was detected. This vulnerability allows attackers with guest user access to view commit information through the release Atom endpoint, bypassing proper permission checks. To address this issue, it is recommended to update to versions 17.1.7, 17.2.5, or 17.3.2. For more details, visit https://avd.aquasec.com/nvd/2024/cve-2024-6389.