Welcome to mirror list, hosted at ThFree Co, Russian Federation.

gitlab.com/gitlab-org/gitlab-foss.git - Unnamed repository; edit this file 'description' to name the repository.
summaryrefslogtreecommitdiff
path: root/CHANGELOG.md
diff options
context:
space:
mode:
authorGitLab Release Tools Bot <delivery-team+release-tools@gitlab.com>2020-04-30 17:24:14 +0300
committerGitLab Release Tools Bot <delivery-team+release-tools@gitlab.com>2020-04-30 17:24:14 +0300
commitb44c16511571f1f6ee9f1c9bde468b6bbfffbc91 (patch)
tree92795a42e3e511b3e430ef4396a734b4e006f335 /CHANGELOG.md
parent62a87135ad5e07e766161abc701703aa353ae845 (diff)
Update CHANGELOG.md for 12.8.10
[ci skip]
Diffstat (limited to 'CHANGELOG.md')
-rw-r--r--CHANGELOG.md13
1 files changed, 13 insertions, 0 deletions
diff --git a/CHANGELOG.md b/CHANGELOG.md
index 9ae7ef425e7..c12ef304111 100644
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@@ -1010,6 +1010,19 @@ entry.
- Improvement in token reference.
+## 12.8.10 (2020-04-30)
+
+### Security (7 changes)
+
+- Ensure MR diff exists before codeowner check.
+- Prevent unauthorized access to default branch.
+- Do not return private project ID without permission.
+- Fix doorkeeper CVE-2020-10187.
+- Prevent ES credentials leak.
+- Return only safe urls for mirrors.
+- Validate workhorse 'rewritten_fields' and properly use them during multipart uploads.
+
+
## 12.8.9 (2020-04-14)
### Security (3 changes)
generated by cgit v1.2.3 (git 2.25.1) at 2024-08-14 01:21:46 +0300