Merge branch 'cve_changelog' of /home/git/repositories/gitlab/gitlabhq

6d125d47 · Dmitriy Zaporozhets · b59ba979 · 10061589 · 6d125d47
Commit 6d125d47 authored Nov 18, 2013 by Dmitriy Zaporozhets
Show whitespace changes
Inline Side-by-side

Showing with 24 additions and 0 deletions

CHANGELOG CHANGELOG +24 -0

No files found.
--- a/CHANGELOG
+++ b/CHANGELOG
@@ -19,6 +19,22 @@ v 6.3.0
  - API: create/update repo files
  - Admin can transfer project to any namespace

+v 6.2.4
+  - Security: Cast API private_token to string (CVE-2013-4580)
+  - Security: Require gitlab-shell 1.7.8 (CVE-2013-4581, CVE-2013-4582, CVE-2013-4583)
+  - Fix for Git SSH access for LDAP users
+
+v 6.2.3
+  - Security: More protection against CVE-2013-4489
+  - Security: Require gitlab-shell 1.7.4 (CVE-2013-4490, CVE-2013-4546)
+  - Fix sidekiq rake tasks
+
+v 6.2.2
+  - Security: Update gitlab_git (CVE-2013-4489)
+
+v 6.2.1
+  - Security: Fix issue with generated passwords for new users
+
 v 6.2.0
  - Public project pages are now visible to everyone (files, issues, wik, etc.)
    THIS MEANS YOUR ISSUES AND WIKI FOR PUBLIC PROJECTS ARE PUBLICLY VISIBLE AFTER THE UPGRADE
@@ -104,6 +120,14 @@ v 6.0.0
  - Improved MR comments logic
  - Render readme file for projects in public area

+v 5.4.2
+  - Security: Cast API private_token to string (CVE-2013-4580)
+  - Security: Require gitlab-shell 1.7.8 (CVE-2013-4581, CVE-2013-4582, CVE-2013-4583)
+
+v 5.4.1
+  - Security: Fixes for CVE-2013-4489
+  - Security: Require gitlab-shell 1.7.4 (CVE-2013-4490, CVE-2013-4546)
+
 v 5.4.0
  - Ability to edit own comments
  - Documentation improvements