diff options
author | GitLab Release Tools Bot <delivery-team+release-tools@gitlab.com> | 2019-11-26 16:12:07 +0000 |
---|---|---|
committer | GitLab Release Tools Bot <delivery-team+release-tools@gitlab.com> | 2019-11-26 16:12:07 +0000 |
commit | 3169ba6bbc99fd38b98d579265db9b221794306b (patch) | |
tree | 45d37c405be0062aa82013af6273cb3e871fd4ae /CHANGELOG.md | |
parent | 23d237110e6a646dec08e1f5b4696d2d9c51cfef (diff) | |
download | gitlab-ce-3169ba6bbc99fd38b98d579265db9b221794306b.tar.gz |
Update CHANGELOG.md for 12.5.1
[ci skip]
Diffstat (limited to 'CHANGELOG.md')
-rw-r--r-- | CHANGELOG.md | 14 |
1 files changed, 14 insertions, 0 deletions
diff --git a/CHANGELOG.md b/CHANGELOG.md index 9201e691c3f..5c51f879b4f 100644 --- a/CHANGELOG.md +++ b/CHANGELOG.md @@ -2,6 +2,20 @@ documentation](doc/development/changelog.md) for instructions on adding your own entry. +## 12.5.1 + +### Security (8 changes) + +- Check permissions before showing a forked project's source. +- Encrypt application setting tokens. +- Update Workhorse and Gitaly to fix a security issue. +- Hide commit counts from guest users in Cycle Analytics. +- Limit potential for DNS rebind SSRF in chat notifications. +- Ensure are cleaned by ImportExport::AttributeCleaner. +- Remove notes regarding Related Branches from Issue activity feeds for guest users. +- Escape namespace in label references to prevent XSS. + + ## 12.5.0 ### Security (15 changes) |