Add latest changes from gitlab-org/gitlab@master

author: GitLab Bot <gitlab-bot@gitlab.com> 2020-02-03 00:09:03 +0000
committer: GitLab Bot <gitlab-bot@gitlab.com> 2020-02-03 00:09:03 +0000
commit: a2a712139fc7fa58aa02b143f2767286d28ef28d (patch)
tree: b62661ce7c26bfa679bec8f360c99b8214ec4ae5 /changelogs/unreleased/rubyzip-qa-update.yml
parent: edfec24c1d7adefa03568c97b50f730a6196f9d2 (diff)
download: gitlab-ce-a2a712139fc7fa58aa02b143f2767286d28ef28d.tar.gz
1 files changed, 5 insertions, 0 deletions
diff --git a/changelogs/unreleased/rubyzip-qa-update.yml b/changelogs/unreleased/rubyzip-qa-update.yml
new file mode 100644
index 00000000000..f84776dc22a
--- /dev/null
+++ b/changelogs/unreleased/rubyzip-qa-update.yml
@@ -0,0 +1,5 @@
+---
+title: Update rubyzip gem in qa tests to 1.3.0 to fix CVE-2019-16892
+merge_request: 24119
+author:
+type: security
author	GitLab Bot <gitlab-bot@gitlab.com>	2020-02-03 00:09:03 +0000
committer	GitLab Bot <gitlab-bot@gitlab.com>	2020-02-03 00:09:03 +0000
commit	a2a712139fc7fa58aa02b143f2767286d28ef28d (patch)
tree	b62661ce7c26bfa679bec8f360c99b8214ec4ae5 /changelogs/unreleased/rubyzip-qa-update.yml
parent	edfec24c1d7adefa03568c97b50f730a6196f9d2 (diff)
download	gitlab-ce-a2a712139fc7fa58aa02b143f2767286d28ef28d.tar.gz