GitLab CE - 16.4.2
Security
(2023-10-30)
Fixed (4 changes)
- Fix pipeline schedules view when owner is nil
- Update dependency prometheus-client-mmap to '>= 0.28.1'
- Fix failing migration when commit_message_negative_regex is missing
- Backport fix flaky epic tests GitLab Enterprise Edition
Security (9 changes)
- Fix infinite loop when finding component project (merge request)
- Update gitlab-chronic-duration to 0.12 (merge request)
- Guard gitlab_version_check helper (merge request)
- Add the environment action to the CI JWT token fields (merge request)
- Remove FIFO files from tarball extract (merge request)
- Backport add abuse detection for pipes (merge request)
- Prevent unprivileged user assignment in templated projects (merge request)
- Fixes Service Desk email template issue description privileges (merge request)
- Update mermaid version for DOS fixes (merge request)
Other (1 change)
- Create Geo event when project is created GitLab Enterprise Edition
Security
Security wording was detected, but no CVEs were found.
Details
date
Oct. 30, 2023, midnight
name
16.4.2
type
Patch
👇
Register or login to:
- 🔍View and search all GitLab CE releases.
- 🛠️Create and share lists to track your tools.
- 🚨Setup notifications for major, security, feature or patch updates.
- 🚀Much more coming soon!