diff options
| author | Robert Speicher <rspeicher@gmail.com> | 2017-02-14 16:35:50 -0500 |
|---|---|---|
| committer | Robert Speicher <rspeicher@gmail.com> | 2017-02-14 16:35:50 -0500 |
| commit | 0733b142ac705a53de4f80e1b8c4929d30012905 (patch) | |
| tree | 1d2d52ca142b0ccda4d0614b52a46ad28c46ab7c /CHANGELOG.md | |
| parent | d06906e6245c4b6768fed30b793d30bb8fd581e0 (diff) | |
| download | gitlab-ce-0733b142ac705a53de4f80e1b8c4929d30012905.tar.gz | |
Update CHANGELOG.md for 8.15.6
[ci skip]
Diffstat (limited to 'CHANGELOG.md')
| -rw-r--r-- | CHANGELOG.md | 7 |
1 files changed, 7 insertions, 0 deletions
diff --git a/CHANGELOG.md b/CHANGELOG.md index a43afa03116..6f0492700c5 100644 --- a/CHANGELOG.md +++ b/CHANGELOG.md @@ -183,6 +183,13 @@ entry. - Add margin to markdown math blocks. - Add hover state to MR comment reply button. +## 8.15.6 (2017-02-14) + +- Patch Asciidocs rendering to block XSS. +- Fix XSS vulnerability in SVG attachments. +- Prevent the GitHub importer from assigning labels and comments to merge requests or issues belonging to other projects. +- Patch XSS vulnerability in RDOC support. + ## 8.15.4 (2017-01-09) - Make successful pipeline emails off for watchers. !8176 |