Welcome to mirror list, hosted at ThFree Co, Russian Federation.

gitlab.com/gitlab-org/gitlab-foss.git - Unnamed repository; edit this file 'description' to name the repository.
summaryrefslogtreecommitdiff
path: root/CHANGELOG
diff options
context:
space:
mode:
authorRobert Speicher <robert@gitlab.com>2016-04-26 00:10:18 +0300
committerRémy Coutable <remy@rymai.me>2016-04-26 13:03:09 +0300
commitb4c785192e0214a8421716009a775f5602a17f12 (patch)
tree3299e74a188fd81a67674b6711b33057c2cb2ec9 /CHANGELOG
parent3e84dc5e1415ef6ebaf88ae6e61356cf7b8640da (diff)
Merge branch '15591-fix-project-leak-in-new-mr-view' into 'master'
Prevent information disclosure via new merge request page Closes https://gitlab.com/gitlab-org/gitlab-ce/issues/15591. See merge request !1963 Signed-off-by: Rémy Coutable <remy@rymai.me>
Diffstat (limited to 'CHANGELOG')
-rw-r--r--CHANGELOG1
1 files changed, 1 insertions, 0 deletions
diff --git a/CHANGELOG b/CHANGELOG
index ee850a1c92e..24924ea44a6 100644
--- a/CHANGELOG
+++ b/CHANGELOG
@@ -7,6 +7,7 @@ v 8.3.9
- Prevent privilege escalation via "impersonate" feature
- Prevent users from deleting Webhooks via API they do not own
- Prevent information disclosure via snippet API
+ - Prevent information disclosure via new merge request page
v 8.3.8
- Remove persistent XSS vulnerability in `commit_person_link` helper
generated by cgit v1.2.3 (git 2.25.1) at 2024-09-03 11:17:50 +0300