Add security patch releases to CHANGELOG

10061589 · Jacob Vosmaer · 83b0a24e · 10061589
Commit 10061589 authored Nov 18, 2013 by Jacob Vosmaer
Hide whitespace changes
Inline Side-by-side

Showing with 24 additions and 0 deletions

CHANGELOG CHANGELOG +24 -0

No files found.
--- a/CHANGELOG
+++ b/CHANGELOG
@@ -12,6 +12,22 @@ v 6.3.0
  - API: dropped default_branch attribute from project during creation
  - Project default_branch is not stored in db any more. It takes from repo now.

+v 6.2.4
+  - Security: Cast API private_token to string (CVE-2013-4580)
+  - Security: Require gitlab-shell 1.7.8 (CVE-2013-4581, CVE-2013-4582, CVE-2013-4583)
+  - Fix for Git SSH access for LDAP users
+
+v 6.2.3
+  - Security: More protection against CVE-2013-4489
+  - Security: Require gitlab-shell 1.7.4 (CVE-2013-4490, CVE-2013-4546)
+  - Fix sidekiq rake tasks
+
+v 6.2.2
+  - Security: Update gitlab_git (CVE-2013-4489)
+
+v 6.2.1
+  - Security: Fix issue with generated passwords for new users
+
 v 6.2.0
  - Public project pages are now visible to everyone (files, issues, wik, etc.)
    THIS MEANS YOUR ISSUES AND WIKI FOR PUBLIC PROJECTS ARE PUBLICLY VISIBLE AFTER THE UPGRADE
@@ -97,6 +113,14 @@ v 6.0.0
  - Improved MR comments logic
  - Render readme file for projects in public area

+v 5.4.2
+  - Security: Cast API private_token to string (CVE-2013-4580)
+  - Security: Require gitlab-shell 1.7.8 (CVE-2013-4581, CVE-2013-4582, CVE-2013-4583)
+
+v 5.4.1
+  - Security: Fixes for CVE-2013-4489
+  - Security: Require gitlab-shell 1.7.4 (CVE-2013-4490, CVE-2013-4546)
+
 v 5.4.0
  - Ability to edit own comments
  - Documentation improvements