##// END OF EJS Templates
docs: added release notes for 4.9.1
marcink -
r2197:4edcf89e stable
parent child Browse files
Show More
@@ -0,0 +1,54 b''
1 |RCE| 4.9.1 |RNS|
2 -----------------
3
4 Release Date
5 ^^^^^^^^^^^^
6
7 - 2017-10-26
8
9
10 New Features
11 ^^^^^^^^^^^^
12
13
14
15 General
16 ^^^^^^^
17
18
19
20 Security
21 ^^^^^^^^
22
23 - security(critical): repo-forks: fix issue when forging fork_repo_id parameter
24 could allow reading other people forks.
25 - security(high): auth: don't expose full set of permissions into channelstream
26 payload. Forged requests could return list of private repositories in the system.
27 - security(medium): general-security: limit the maximum password input length
28 to 72 characters.
29 - security(medium): select2: always escape .text attributes to prevent XSS
30 via branches or tags names.
31
32
33
34 Performance
35 ^^^^^^^^^^^
36
37 - git: improve performance and reduce memory usage on large clones.
38
39
40
41 Fixes
42 ^^^^^
43
44
45 - user-groups: fix potential problem with ldap group sync in external auth plugins.
46
47
48
49 Upgrade notes
50 ^^^^^^^^^^^^^
51
52 - This release changes the maximum allowed input password to 72 characters. This
53 prevent resource consumption attack. If you need longer password than 72
54 characters please contact our team.
@@ -1,99 +1,100 b''
1 1 .. _rhodecode-release-notes-ref:
2 2
3 3 Release Notes
4 4 =============
5 5
6 6 |RCE| 4.x Versions
7 7 ------------------
8 8
9 9 .. toctree::
10 10 :maxdepth: 1
11 11
12 release-notes-4.9.1.rst
12 13 release-notes-4.9.0.rst
13 14 release-notes-4.8.0.rst
14 15 release-notes-4.7.2.rst
15 16 release-notes-4.7.1.rst
16 17 release-notes-4.7.0.rst
17 18 release-notes-4.6.1.rst
18 19 release-notes-4.6.0.rst
19 20 release-notes-4.5.2.rst
20 21 release-notes-4.5.1.rst
21 22 release-notes-4.5.0.rst
22 23 release-notes-4.4.2.rst
23 24 release-notes-4.4.1.rst
24 25 release-notes-4.4.0.rst
25 26 release-notes-4.3.1.rst
26 27 release-notes-4.3.0.rst
27 28 release-notes-4.2.1.rst
28 29 release-notes-4.2.0.rst
29 30 release-notes-4.1.2.rst
30 31 release-notes-4.1.1.rst
31 32 release-notes-4.1.0.rst
32 33 release-notes-4.0.1.rst
33 34 release-notes-4.0.0.rst
34 35
35 36 |RCE| 3.x Versions
36 37 ------------------
37 38
38 39 .. toctree::
39 40 :maxdepth: 1
40 41
41 42 release-notes-3.8.4.rst
42 43 release-notes-3.8.3.rst
43 44 release-notes-3.8.2.rst
44 45 release-notes-3.8.1.rst
45 46 release-notes-3.8.0.rst
46 47 release-notes-3.7.1.rst
47 48 release-notes-3.7.0.rst
48 49 release-notes-3.6.1.rst
49 50 release-notes-3.6.0.rst
50 51 release-notes-3.5.2.rst
51 52 release-notes-3.5.1.rst
52 53 release-notes-3.5.0.rst
53 54 release-notes-3.4.1.rst
54 55 release-notes-3.4.0.rst
55 56 release-notes-3.3.4.rst
56 57 release-notes-3.3.3.rst
57 58 release-notes-3.3.2.rst
58 59 release-notes-3.3.1.rst
59 60 release-notes-3.3.0.rst
60 61 release-notes-3.2.3.rst
61 62 release-notes-3.2.2.rst
62 63 release-notes-3.2.1.rst
63 64 release-notes-3.2.0.rst
64 65 release-notes-3.1.1.rst
65 66 release-notes-3.1.0.rst
66 67 release-notes-3.0.2.rst
67 68 release-notes-3.0.1.rst
68 69 release-notes-3.0.0.rst
69 70
70 71 |RCE| 2.x Versions
71 72 ------------------
72 73
73 74 .. toctree::
74 75 :maxdepth: 1
75 76
76 77 release-notes-2.2.8.rst
77 78 release-notes-2.2.7.rst
78 79 release-notes-2.2.6.rst
79 80 release-notes-2.2.5.rst
80 81 release-notes-2.2.4.rst
81 82 release-notes-2.2.3.rst
82 83 release-notes-2.2.2.rst
83 84 release-notes-2.2.1.rst
84 85 release-notes-2.2.0.rst
85 86 release-notes-2.1.0.rst
86 87 release-notes-2.0.2.rst
87 88 release-notes-2.0.1.rst
88 89 release-notes-2.0.0.rst
89 90
90 91 |RCE| 1.x Versions
91 92 ------------------
92 93
93 94 .. toctree::
94 95 :maxdepth: 1
95 96
96 97 release-notes-1.7.2.rst
97 98 release-notes-1.7.1.rst
98 99 release-notes-1.7.0.rst
99 100 release-notes-1.6.0.rst
General Comments 0
You need to be logged in to leave comments. Login now