GitLab wurde aktualisiert. Dank regelmäßiger Updates bleibt das THM GitLab sicher und Sie profitieren von den neuesten Funktionen. Vielen Dank für Ihre Geduld.

Commit 1125a889 authored by GitLab Release Tools Bot's avatar GitLab Release Tools Bot
Browse files

Update CHANGELOG.md for 12.2.6

[ci skip]
parent e6e7d935
......@@ -2,6 +2,22 @@
documentation](doc/development/changelog.md) for instructions on adding your own
entry.
## 12.2.6
### Security (10 changes)
- Add a policy check for system notes that may not be visible due to cross references to private items.
- Display only participants that user has permission to see on milestone page.
- Do not disclose project milestones on group milestones page when project milestones access is disabled in project settings.
- Fix new project path being disclosed through unsubscribe link of issue/merge requests.
- Prevent bypassing email verification using Salesforce.
- Do not show resource label events referencing not accessible labels.
- Cancel all running CI jobs triggered by the user who is just blocked.
- Fix Gitaly SearchBlobs flag RPC injection [Gitaly v1.59.3].
- Only render fixed number of mermaid blocks.
- Prevent GitLab accounts takeover if SAML is configured.
## 12.2.5
### Security (1 change)
......
---
title: Add a policy check for system notes that may not be visible due to cross references
to private items
merge_request:
author:
type: security
---
title: Display only participants that user has permission to see on milestone page
merge_request:
author:
type: security
---
title: Do not disclose project milestones on group milestones page when project milestones
access is disabled in project settings
merge_request:
author:
type: security
---
title: Fix new project path being disclosed through unsubscribe link of issue/merge
requests
merge_request:
author:
type: security
---
title: Prevent bypassing email verification using Salesforce
merge_request:
author:
type: security
---
title: Do not show resource label events referencing not accessible labels.
merge_request:
author:
type: security
---
title: Cancel all running CI jobs triggered by the user who is just blocked
merge_request:
author:
type: security
---
title: Fix Gitaly SearchBlobs flag RPC injection [Gitaly v1.59.3]
merge_request:
author:
type: security
---
title: Only render fixed number of mermaid blocks
merge_request:
author:
type: security
---
title: Prevent GitLab accounts takeover if SAML is configured
merge_request:
author:
type: security
Markdown is supported
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment