diff options
author | Luke Bennett <lukeeeebennettplus@gmail.com> | 2018-02-05 13:37:16 +0000 |
---|---|---|
committer | Luke Bennett <lukeeeebennettplus@gmail.com> | 2018-02-05 13:37:16 +0000 |
commit | 00b28eed84c9d4484a023702bf2d334bd5a92e12 (patch) | |
tree | a9fc8d7bb0e5fc245f7378bbb04881c61d4340d2 | |
parent | bedfc7b103c25cd6b9aada350142549160e41a5e (diff) | |
download | gitlab-ce-00b28eed84c9d4484a023702bf2d334bd5a92e12.tar.gz |
Update CHANGELOG.md for 10.4.3
[ci skip]
-rw-r--r-- | CHANGELOG.md | 10 |
1 files changed, 10 insertions, 0 deletions
diff --git a/CHANGELOG.md b/CHANGELOG.md index 5fc97c06f7c..3794ebc7d25 100644 --- a/CHANGELOG.md +++ b/CHANGELOG.md @@ -2,6 +2,16 @@ documentation](doc/development/changelog.md) for instructions on adding your own entry. +## 10.4.3 (2018-02-05) + +### Security (4 changes) + +- Fix namespace access issue for GitHub, BitBucket, and GitLab.com project importers. +- Fix stored XSS in code blocks that ignore highlighting. +- Fix wilcard protected tags protecting all branches. +- Restrict Todo API mark_as_done endpoint to the user's todos only. + + ## 10.4.2 (2018-01-30) ### Fixed (6 changes) |