Skip to content

Commit 12578c3

Browse files
authored
Merge pull request #467 from lucamilanesio/patch-2
Update edition-69.md
2 parents 81b50f9 + e30bf74 commit 12578c3

File tree

1 file changed

+6
-5
lines changed

1 file changed

+6
-5
lines changed

rev_news/drafts/edition-69.md

Lines changed: 6 additions & 5 deletions
Original file line numberDiff line numberDiff line change
@@ -177,14 +177,10 @@ This edition covers what happened during the month of October 2020.
177177
+ Bitbucket Server [7.8](https://confluence.atlassian.com/bitbucketserver/bitbucket-server-release-notes-872139866.html)
178178
+ Gerrit Code Review [3.2.5.1](https://www.gerritcodereview.com/3.2.html#3251),
179179
[3.2.5](https://www.gerritcodereview.com/3.2.html#325),
180-
[3.2.4](https://www.gerritcodereview.com/3.2.html#324),
181180
[3.1.10](https://www.gerritcodereview.com/3.1.html#3110),
182-
[3.1.9](https://www.gerritcodereview.com/3.1.html#319),
183181
[3.0.15](https://www.gerritcodereview.com/3.0.html#3015),
184-
[3.0.14](https://www.gerritcodereview.com/3.0.html#3014),
185182
[2.16.25](https://www.gerritcodereview.com/2.16.html#21625),
186183
[2.15.21](https://www.gerritcodereview.com/2.15.html#21521),
187-
[2.15.20](https://www.gerritcodereview.com/2.15.html#21520),
188184
[2.14.22](https://www.gerritcodereview.com/2.14.html#21422)
189185
+ GitLab [13.6.1](https://about.gitlab.com/releases/2020/11/23/gitlab-13-6-1-released/),
190186
[13.6](https://about.gitlab.com/releases/2020/11/22/gitlab-13-6-released/),
@@ -243,7 +239,12 @@ podcast.
243239
See also [Gitless](https://gitless.com/), the experimental reworking of Git,
244240
based on [research on difficulties in Git](https://gitless.com/#research),
245241
mentioned in [Git Rev News #20](https://git.github.io/rev_news/2016/10/19/edition-20/).
246-
242+
* Gerrit Code Review fixes two important security vulnerabilities,
243+
[Issue 13621](https://bugs.chromium.org/p/gerrit/issues/detail?id=13621) and [Issue 13514](https://bugs.chromium.org/p/gerrit/issues/detail?id=13514).
244+
They have been found during the test migrations of the [OpenDev Code Review service](https://review.opendev.org/) to the latest version v3.2.
245+
The issue was particularly sensitive for all those setups hosted in Europe, because of
246+
the potential exposure to other people's personal information, such as e-mail and external ids,
247+
and was impacting only those very old setups that had recently migrated to v2.14 or later.
247248

248249
__Git tools and sites__
249250

0 commit comments

Comments
 (0)