Manually add 10.2.4 changelog entries

author: Michael Kozono <mkozono@gmail.com> 2017-12-08 14:05:17 -0800
committer: Michael Kozono <mkozono@gmail.com> 2017-12-08 14:05:17 -0800
commit: 0f811675706ad79129eb8251983de073e190f55a (patch)
tree: 8c4a4db2c403084f5d0e203d6c295eb021640a55 /CHANGELOG.md
parent: f4fbe61a9e073d8e49b0e8104961b2556ce3ac05 (diff)
download: gitlab-ce-0f811675706ad79129eb8251983de073e190f55a.tar.gz
1 files changed, 11 insertions, 0 deletions
diff --git a/CHANGELOG.md b/CHANGELOG.md
index 6088a1b3515..78f8e457c70 100644
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@@ -2,6 +2,17 @@
 documentation](doc/development/changelog.md) for instructions on adding your own
 entry.
 
+## 10.2.4 (2017-12-08)
+
+### Security (4 changes)
+
+- Fix e-mail address disclosure through member search fields
+- Prevent creating issues through API when user does not have permissions
+- Prevent an information disclosure in the Groups API
+- Fix user without access to private Wiki being able to see it on the project page
+- Fix Cross-Site Scripting (XSS) vulnerability while editing a comment
+
+
 ## 10.2.3 (2017-11-30)
 
 ### Fixed (7 changes)
author	Michael Kozono <mkozono@gmail.com>	2017-12-08 14:05:17 -0800
committer	Michael Kozono <mkozono@gmail.com>	2017-12-08 14:05:17 -0800
commit	0f811675706ad79129eb8251983de073e190f55a (patch)
tree	8c4a4db2c403084f5d0e203d6c295eb021640a55 /CHANGELOG.md
parent	f4fbe61a9e073d8e49b0e8104961b2556ce3ac05 (diff)
download	gitlab-ce-0f811675706ad79129eb8251983de073e190f55a.tar.gz