Commits · v14.4.4-ee · dDenys Mishunov / GitLab

Dec 03, 2021
- Update VERSION files · a1175384
  GitLab Release Tools Bot authored 3 years ago
  
  [merge-train skip]
  View commits for tag v14.4.4-ee v14.4.4-ee
  
  a1175384
- Update changelog for 14.4.4 · c47fc8f7
  GitLab Release Tools Bot authored 3 years ago
  
  [ci skip]
  c47fc8f7
- Update Gitaly version to 14.4.4 · 27952047
  GitLab Release Tools Bot authored 3 years ago
  
  [ci skip]
  27952047
- Merge branch 'security-bump--mermaid-14-4' into '14-4-stable-ee' · e09ad6a7
  Henri Philipps authored 3 years ago
  
  Update mermaid to v8.13.4 See merge request gitlab-org/security/gitlab!2019
  e09ad6a7
- Update mermaid to v8.13.4 · 41108098
  Dheeraj Joshi authored 3 years ago
  
  41108098
- Merge branch 'security-ajk-graphql-schema-max-errors-14-4' into '14-4-stable-ee' · 9c074182
  Henri Philipps authored 3 years ago
  
  Use the validate_max_errors schema setting See merge request gitlab-org/security/gitlab!1988
  9c074182
- Use the validate_max_errors schema setting · b8b29b1e
  Alexis Kalderimis authored 3 years ago
  
  b8b29b1e
- Merge branch 'security-537-14-4' into '14-4-stable-ee' · df53df3f
  GitLab Release Tools Bot authored 3 years ago
  
  Prevent create_note if you cannot read vulnerability See merge request gitlab-org/security/gitlab!1958
  df53df3f
- Prevent create_note if you cannot read vulnerability · 0f699c31
  Subashis Chakraborty authored 3 years ago and GitLab Release Tools Bot committed 3 years ago
  
  0f699c31
- Merge branch 'security-id-hide-default-branch-14-4' into '14-4-stable-ee' · 2e863019
  GitLab Release Tools Bot authored 3 years ago
  
  Remove default branch info from project view html See merge request gitlab-org/security/gitlab!2012
  2e863019
- Remove default branch info from project view html · c9b644bb
  Igor Drozdov authored 3 years ago and GitLab Release Tools Bot committed 3 years ago
  
  c9b644bb
- Merge branch 'security-241767-disable-deploy-key-wiki-access-14-4' into '14-4-stable-ee' · 7c290c18
  GitLab Release Tools Bot authored 3 years ago
  
  Prevent users from accessing a disabled wiki via deploy token See merge request gitlab-org/security/gitlab!1999
  7c290c18
- Prevent users from accessing a disabled wiki via deploy token · 5a2d36c9
  Gary Holtz authored 3 years ago and GitLab Release Tools Bot committed 3 years ago
  
  5a2d36c9
- Merge branch 'security-do-not-expose-name-if-project-bot-14-4' into '14-4-stable-ee' · 2cea4322
  GitLab Release Tools Bot authored 3 years ago
  
  Project access token names are returned for unauthenticated requesters See merge request gitlab-org/security/gitlab!1992
  2cea4322
- Project access token names are returned for unauthenticated requesters · 389985ca
  Serena Fang authored 3 years ago and GitLab Release Tools Bot committed 3 years ago
  
  389985ca
- Merge branch 'security-336802-memoization-index-14-4' into '14-4-stable-ee' · e65d3b34
  GitLab Release Tools Bot authored 3 years ago
  
  Use class name in memoization index See merge request gitlab-org/security/gitlab!1985
  e65d3b34
- Use class name in memoization index · bd8d8bf2
  Alexis Kalderimis authored 3 years ago and GitLab Release Tools Bot committed 3 years ago
  
  bd8d8bf2
- Merge branch 'security-ci-lint-external-14-4' into '14-4-stable-ee' · 617f9fea
  GitLab Release Tools Bot authored 3 years ago
  
  Apply restrictions to external users on lint API See merge request gitlab-org/security/gitlab!2004
  617f9fea
- Apply restrictions to external users on lint API · 530d1905
  Dominic Couture authored 3 years ago and GitLab Release Tools Bot committed 3 years ago
  
  530d1905
- Merge branch 'security-fix-front-matter-regex-543-14-4' into '14-4-stable-ee' · cca14372
  GitLab Release Tools Bot authored 3 years ago
  
  Prevent frontmatter regex from backtracking See merge request gitlab-org/security/gitlab!2009
  cca14372
- Prevent frontmatter regex from backtracking · 13995a6b
  Heinrich Lee Yu authored 3 years ago and GitLab Release Tools Bot committed 3 years ago
  
  13995a6b
- Merge branch 'security-217360-14-4' into '14-4-stable-ee' · 7d297333
  GitLab Release Tools Bot authored 3 years ago
  
  Prevent arbitrary data storage in diff positions See merge request gitlab-org/security/gitlab!2023
  7d297333
- Prevent arbitrary data storage in diff positions · e228ae2c
  Robert May authored 3 years ago and GitLab Release Tools Bot committed 3 years ago
  
  e228ae2c
- Merge branch 'security-id-scope-available-templates-to-current-user-14-4' into '14-4-stable-ee' · 9c4e5d17
  GitLab Release Tools Bot authored 3 years ago
  
  Scope available templates to current user See merge request gitlab-org/security/gitlab!1968
  9c4e5d17
- Scope available templates to current user · 9944ee3d
  Igor Drozdov authored 3 years ago and GitLab Release Tools Bot committed 3 years ago
  
  9944ee3d
- Merge branch 'security-external-status-checks-idor-14-4' into '14-4-stable-ee' · e318cbb5
  GitLab Release Tools Bot authored 3 years ago
  
  Resolve IDOR in External Status Checks See merge request gitlab-org/security/gitlab!1934
  e318cbb5
- Resolve IDOR in External Status Checks · 681af78e
  Max Woolf authored 3 years ago and GitLab Release Tools Bot committed 3 years ago
  
  681af78e
- Merge branch 'security-protected-branch-name-escaped-fix-14-4' into '14-4-stable-ee' · cb0f639e
  GitLab Release Tools Bot authored 3 years ago
  
  Unescape and sanitize protected branch name on create and update See merge request gitlab-org/security/gitlab!2016
  cb0f639e
- Unescape and sanitize protected branch name on create and update · ff98b8a2
  Patrick Bajao authored 3 years ago and GitLab Release Tools Bot committed 3 years ago
  
  ff98b8a2
- Merge branch 'security-fix-quick-actions-extractor-regex-539-14-4' into '14-4-stable-ee' · 7ac05b68
  GitLab Release Tools Bot authored 3 years ago
  
  Prevent quick actions regex from backtracking See merge request gitlab-org/security/gitlab!1971
  7ac05b68
- Prevent quick actions regex from backtracking · 332e2b9e
  Heinrich Lee Yu authored 3 years ago and GitLab Release Tools Bot committed 3 years ago
  
  332e2b9e
- Merge branch 'security-fix-525-14-4' into '14-4-stable-ee' · 4e13ca61
  GitLab Release Tools Bot authored 3 years ago
  
  Disallow demoted users from approving MRs See merge request gitlab-org/security/gitlab!1949
  4e13ca61
- Disallow demoted users from approving MRs · 6890d759
  David Kim authored 3 years ago and GitLab Release Tools Bot committed 3 years ago
  
  6890d759
- Merge branch 'security-fix-group-priv-escalation-14-4' into '14-4-stable-ee' · 7dee0620
  GitLab Release Tools Bot authored 3 years ago
  
  Use lowest privilege between user group and imported project See merge request gitlab-org/security/gitlab!1954
  7dee0620
- Use lowest privilege between user group and imported project · 4e038284
  Igor Frenkel authored 3 years ago and GitLab Release Tools Bot committed 3 years ago
  
  4e038284
- Merge branch 'security-slash-deploy-redos-14-4' into '14-4-stable-ee' · 8e3362cc
  GitLab Release Tools Bot authored 3 years ago
  
  Fix ReDoS issue in deploy slash command See merge request gitlab-org/security/gitlab!2026
  8e3362cc
- Fix ReDoS issue in deploy slash command · 316c9e1b
  Dominic Couture authored 3 years ago and GitLab Release Tools Bot committed 3 years ago
  
  316c9e1b
- Merge branch 'security-maven-version-redos-fix-2-14-4' into '14-4-stable-ee' · c248ade0
  GitLab Release Tools Bot authored 3 years ago
  
  Fixing ReDoS on @maven_version_regex See merge request gitlab-org/security/gitlab!1976
  c248ade0
- Fixing ReDoS on @maven_version_regex · 0a2ab4bc
  Vitor Meireles de Sousa authored 3 years ago and GitLab Release Tools Bot committed 3 years ago
  
  0a2ab4bc
- Merge branch 'security-stop-activejob-logging-14-4' into '14-4-stable-ee' · c8f5abb9
  GitLab Release Tools Bot authored 3 years ago
  
  Stop exposing reset password token and new user email token in logs See merge request gitlab-org/security/gitlab!1980
  c8f5abb9

Admin message

Admin message