Update CHANGELOG.md for 10.3.4

[ci skip]

Update CHANGELOG.md for 10.3.4
[ci skip]
450cb59c · Oswaldo Ferreira · Stan Hu · 4493ec08 · 4493ec08 · 4493ec08
Commit 450cb59c authored Jan 10, 2018 by Oswaldo Ferreira Committed by Stan Hu Jan 16, 2018
7 changed files
--- a/changelogs/unreleased/api-no-service-pw-output.yml
+++ b/changelogs/unreleased/api-no-service-pw-output.yml
---
-title: Filter out sensitive fields from the project services API
-merge_request:
-author: Robert Schilling
-type: security
--- a/changelogs/unreleased/fix-import-rce.yml
+++ b/changelogs/unreleased/fix-import-rce.yml
---
-title: Fix RCE via project import mechanism
-merge_request:
-author:
-type: security
--- a/changelogs/unreleased/jej-fix-disabled-oauth-access.yml
+++ b/changelogs/unreleased/jej-fix-disabled-oauth-access.yml
---
-title: Prevent OAuth login POST requests when a provider has been disabled
-merge_request:
-author:
-type: security
--- a/changelogs/unreleased/milestones-finder-order-fix.yml
+++ b/changelogs/unreleased/milestones-finder-order-fix.yml
---
-title: Prevent a SQL injection in the MilestonesFinder
-merge_request:
-author:
-type: security
--- a/changelogs/unreleased/projectfix.yml
+++ b/changelogs/unreleased/projectfix.yml
---
-title: Check user authorization for source and target projects when creating a merge
-  request.
-merge_request:
-author:
-type: security
--- a/changelogs/unreleased/security-10-3.yml
+++ b/changelogs/unreleased/security-10-3.yml
---
-title: Fix path traversal in gitlab-ci.yml cache:key
-merge_request:
-author:
-type: security
--- a/changelogs/unreleased/sh-migrate-can-push-to-deploy-keys-projects.yml
+++ b/changelogs/unreleased/sh-migrate-can-push-to-deploy-keys-projects.yml
---
-title: Fix writable shared deploy keys
-merge_request:
-author:
-type: security