Skip to content

10.8.5-ce.0
Compare
Choose a tag to compare
@pozgo pozgo released this 06 Aug 17:46
· 78 commits to master since this release
10.8.5-ce.0
0e2859f

10.8.5 (2018-06-21)

Security (5 changes)

  • Fix XSS vulnerability for table of content generation.
  • Update sanitize gem to 4.6.5 to fix HTML injection vulnerability.
  • HTML escape branch name in project graphs page.
  • HTML escape the name of the user in ProjectsHelper#link_to_member.
  • Don't show events from internal projects for anonymous users in public feed.
Assets 2
Loading