Merge branch 'docs-fix-missing-changelog-entries' into 'master'

Add missing CHANGELOG.md entries for security release on 2017-01-23 See merge request !13327

Merge branch 'docs-fix-missing-changelog-entries' into 'master'
Add missing CHANGELOG.md entries for security release on 2017-01-23 See merge request !13327
d1f27076 · Mike Greiling · edc81ea6 · 92cd5d0b · d1f27076
Commit d1f27076 authored Aug 04, 2017 by Mike Greiling
Hide whitespace changes
Inline Side-by-side

Showing with 24 additions and 2 deletions

CHANGELOG.md CHANGELOG.md +24 -2

No files found.
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@@ -1708,8 +1708,6 @@ entry.

 ## 8.16.7 (2017-02-27)

- No changes.
- No changes.
 - Fix MR changes tab size count when there are over 100 files in the diff.

 ## 8.16.6 (2017-02-17)
@@ -1923,6 +1921,14 @@ entry.
 - Prevent the GitHub importer from assigning labels and comments to merge requests or issues belonging to other projects.
 - Patch XSS vulnerability in RDOC support.

+## 8.15.5 (2017-01-20)
+
+- Ensure export files are removed after a namespace is deleted.
+- Don't allow project guests to subscribe to merge requests through the API. (Robert Schilling)
+- Prevent users from creating notes on resources they can't access.
+- Prevent users from deleting system deploy keys via the project deploy key API.
+- Upgrade omniauth gem to 1.3.2.
+
 ## 8.15.4 (2017-01-09)

 - Make successful pipeline emails off for watchers. !8176
@@ -2205,6 +2211,14 @@ entry.
 - Speed up group milestone index by passing group_id to IssuesFinder. !8363
 - Ensure issuable state changes only fire webhooks once.

+## 8.14.7 (2017-01-21)
+
+- Ensure export files are removed after a namespace is deleted.
+- Don't allow project guests to subscribe to merge requests through the API. (Robert Schilling)
+- Prevent users from creating notes on resources they can't access.
+- Prevent users from deleting system deploy keys via the project deploy key API.
+- Upgrade omniauth gem to 1.3.2.
+
 ## 8.14.6 (2017-01-10)

 - Update the gitlab-markup gem to the version 1.5.1. !8509
@@ -2487,6 +2501,14 @@ entry.
 - Fix "Without projects" filter. !6611 (Ben Bodenmiller)
 - Fix 404 when visit /projects page

+## 8.13.12 (2017-01-21)
+
+- Ensure export files are removed after a namespace is deleted.
+- Don't allow project guests to subscribe to merge requests through the API. (Robert Schilling)
+- Prevent users from creating notes on resources they can't access.
+- Prevent users from deleting system deploy keys via the project deploy key API.
+- Upgrade omniauth gem to 1.3.2.
+
 ## 8.13.11 (2017-01-10)

 - Update the gitlab-markup gem to the version 1.5.1. !8509