jprdonnelly/docs
1
0
Fork 0
mirror of synced 2026-01-05 12:07:35 -05:00
Code Issues Projects Releases Wiki Activity

Add security-4703 release notes to GHES versions (#25803)

Browse Source
This commit is contained in:
Alex Cyphus
2022-03-03 13:28:18 -06:00
committed by GitHub
parent 79c48070c4
commit 9d4e8d8292
3 changed files with 6 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
data/release-notes/enterprise-server/3-1/18.yml
View File

@@ -1,5 +1,7 @@
date: '2022-03-01'
sections:
security_fixes:
- "HIGH: An integer overflow vulnerability was identified in GitHub's markdown parser that could potentially lead to information leaks and RCE. This vulnerability was reported through the GitHub Bug Bounty program by Felix Wilhelm of Google's Project Zero and has been assigned CVE-2022-24724."
bugs:
- Upgrades could sometimes fail if a high-availability replica's clock was out of sync with the primary.
- OAuth Applications created after September 1st, 2020 were not able to use the [Check an Authorization](https://docs.github.com/en/enterprise-server@3.1/rest/reference/apps#check-an-authorization) API endpoint.

2
data/release-notes/enterprise-server/3-2/10.yml
View File

@@ -1,5 +1,7 @@
date: '2022-03-01'
sections:
security_fixes:
- "HIGH: An integer overflow vulnerability was identified in GitHub's markdown parser that could potentially lead to information leaks and RCE. This vulnerability was reported through the GitHub Bug Bounty program by Felix Wilhelm of Google's Project Zero and has been assigned CVE-2022-24724."
bugs:
- Upgrades could sometimes fail if a high-availability replica's clock was out of sync with the primary.
- OAuth Applications created after September 1st, 2020 were not able to use the [Check an Authorization](https://docs.github.com/en/enterprise-server@3.2/rest/reference/apps#check-an-authorization) API endpoint.

2
data/release-notes/enterprise-server/3-3/5.yml
View File

@@ -1,5 +1,7 @@
date: '2022-03-01'
sections:
security_fixes:
- "HIGH: An integer overflow vulnerability was identified in GitHub's markdown parser that could potentially lead to information leaks and RCE. This vulnerability was reported through the GitHub Bug Bounty program by Felix Wilhelm of Google's Project Zero and has been assigned CVE-2022-24724."
bugs:
- Upgrades could sometimes fail if a high-availability replica's clock was out of sync with the primary.
- OAuth Applications created after September 1st, 2020 were not able to use the [Check an Authorization](https://docs.github.com/en/enterprise-server@3.3/rest/reference/apps#check-an-authorization) API endpoint.