diff options
| author | Robert Speicher <rspeicher@gmail.com> | 2020-04-15 03:36:05 +0300 |
|---|---|---|
| committer | Robert Speicher <rspeicher@gmail.com> | 2020-04-15 03:36:05 +0300 |
| commit | c2041156b8b3063d6cf29b324416e8469e588923 (patch) | |
| tree | e3f3b9dc4222a7bbcffe9f17140a33e37e97cbeb | |
| parent | 30a8d158a29cc09ece1a71771a28f7bc1483506b (diff) | |
| parent | 456d06d398c949b180b2b4d4edeb633875a8f8c9 (diff) | |
Merge branch 'master' of dev.gitlab.org:gitlab/gitlabhq
| -rw-r--r-- | CHANGELOG.md | 27 |
1 files changed, 27 insertions, 0 deletions
diff --git a/CHANGELOG.md b/CHANGELOG.md index d11761e0607..22c2ab6bf55 100644 --- a/CHANGELOG.md +++ b/CHANGELOG.md @@ -2,6 +2,15 @@ documentation](doc/development/changelog.md) for instructions on adding your own entry. +## 12.9.3 (2020-04-14) + +### Security (3 changes) + +- Refresh ProjectAuthorization during Group deletion. +- Prevent filename bypass on artifact upload. +- Update rack and related gems to 2.0.9 to fix security issue. + + ## 12.9.2 (2020-03-31) ### Fixed (5 changes) @@ -499,6 +508,15 @@ entry. - Improvement in token reference. +## 12.8.9 (2020-04-14) + +### Security (3 changes) + +- Refresh ProjectAuthorization during Group deletion. +- Prevent filename bypass on artifact upload. +- Update rack and related gems to 2.0.9 to fix security issue. + + ## 12.8.7 (2020-03-16) ### Fixed (1 change, 1 of them is from the community) @@ -1089,6 +1107,15 @@ entry. - Add clarifying content to account fields. +## 12.7.9 (2020-04-14) + +### Security (3 changes) + +- Refresh ProjectAuthorization during Group deletion. +- Prevent filename bypass on artifact upload. +- Update rack and related gems to 2.0.9 to fix security issue. + + ## 12.7.5 ### Fixed (4 changes, 1 of them is from the community) |