Skip to content
Projects
Groups
Snippets
Help
Loading...
Help
Support
Keyboard shortcuts
?
Submit feedback
Contribute to GitLab
Sign in / Register
Toggle navigation
G
gitlab-ce
Project overview
Project overview
Details
Activity
Releases
Repository
Repository
Files
Commits
Branches
Tags
Contributors
Graph
Compare
Issues
0
Issues
0
List
Boards
Labels
Milestones
Merge Requests
1
Merge Requests
1
Analytics
Analytics
Repository
Value Stream
Wiki
Wiki
Snippets
Snippets
Members
Members
Collapse sidebar
Close sidebar
Activity
Graph
Create a new issue
Commits
Issue Boards
Open sidebar
nexedi
gitlab-ce
Commits
5fcc5f9b
Commit
5fcc5f9b
authored
Feb 01, 2021
by
GitLab Release Tools Bot
Browse files
Options
Browse Files
Download
Email Patches
Plain Diff
Update CHANGELOG.md for 13.8.2-ee
[ci skip]
parent
653f3ec5
Changes
6
Hide whitespace changes
Inline
Side-by-side
Showing
6 changed files
with
11 additions
and
25 deletions
+11
-25
CHANGELOG.md
CHANGELOG.md
+11
-0
changelogs/unreleased/security-filter-graphql-logs.yml
changelogs/unreleased/security-filter-graphql-logs.yml
+0
-5
changelogs/unreleased/security-guest-can-read-tag-from-releases.yml
.../unreleased/security-guest-can-read-tag-from-releases.yml
+0
-5
changelogs/unreleased/security-sanitize-target-branch.yml
changelogs/unreleased/security-sanitize-target-branch.yml
+0
-5
changelogs/unreleased/security-ssrf-outbound-request.yml
changelogs/unreleased/security-ssrf-outbound-request.yml
+0
-5
changelogs/unreleased/secutity-404-difference.yml
changelogs/unreleased/secutity-404-difference.yml
+0
-5
No files found.
CHANGELOG.md
View file @
5fcc5f9b
...
@@ -2,6 +2,17 @@
...
@@ -2,6 +2,17 @@
documentation
](
doc/development/changelog.md
)
for instructions on adding your own
documentation
](
doc/development/changelog.md
)
for instructions on adding your own
entry.
entry.
## 13.8.2 (2021-02-01)
### Security (5 changes)
-
Filter sensitive GraphQL variables from logs.
-
Avoid exposing release links when the user cannot read git-tag/repository.
-
Sanitize target branch on MR page.
-
Fix DNS rebinding protection bypass when allowing an IP address in Outbound Requests setting.
-
Add routes for unmatched url for not-get requests.
## 13.8.1 (2021-01-26)
## 13.8.1 (2021-01-26)
### Fixed (3 changes)
### Fixed (3 changes)
...
...
changelogs/unreleased/security-filter-graphql-logs.yml
deleted
100644 → 0
View file @
653f3ec5
---
title
:
Filter sensitive GraphQL variables from logs
merge_request
:
author
:
type
:
security
changelogs/unreleased/security-guest-can-read-tag-from-releases.yml
deleted
100644 → 0
View file @
653f3ec5
---
title
:
Avoid exposing release links when the user cannot read git-tag/repository
merge_request
:
author
:
type
:
security
changelogs/unreleased/security-sanitize-target-branch.yml
deleted
100644 → 0
View file @
653f3ec5
---
title
:
Sanitize target branch on MR page
merge_request
:
author
:
type
:
security
changelogs/unreleased/security-ssrf-outbound-request.yml
deleted
100644 → 0
View file @
653f3ec5
---
title
:
Fix DNS rebinding protection bypass when allowing an IP address in Outbound Requests setting
merge_request
:
author
:
type
:
security
changelogs/unreleased/secutity-404-difference.yml
deleted
100644 → 0
View file @
653f3ec5
---
title
:
Add routes for unmatched url for not-get requests
merge_request
:
author
:
type
:
security
Write
Preview
Markdown
is supported
0%
Try again
or
attach a new file
Attach a file
Cancel
You are about to add
0
people
to the discussion. Proceed with caution.
Finish editing this message first!
Cancel
Please
register
or
sign in
to comment