Merge pull request #32378 from github/repo-sync

Repo sync
2025-12-30 03:01:36 -05:00 · 2024-04-03 22:34:15 -04:00
parent a608b1bcc8 887839335c
commit e151f29ea3
6 changed files with 3 additions and 17 deletions
--- a/data/release-notes/enterprise-server/3-10/8.yml
+++ b/data/release-notes/enterprise-server/3-10/8.yml
@@ -8,9 +8,9 @@ intro: |
 sections:
  security_fixes:
    - |
-      **HIGH**: On an instance with GitHub Connect enabled and non-default settings for GitHub Connect configured, an attacker could use an enterprise GitHub Actions download token to fetch private repository data. This token is only accessible to users on the GitHub Enterprise Server instance. To fix this vulnerability, the Actions download token will now be a permissionless token. GitHub has requested CVE ID [CVE-2024-1908](https://www.cve.org/cverecord?id=CVE-2024-1908) for this vulnerability, which was reported via the [GitHub Bug Bounty program](https://bounty.github.com/). 
+      **HIGH**: On an instance with GitHub Connect enabled and non-default settings for GitHub Connect configured, an attacker could use an enterprise GitHub Actions download token to fetch private repository data. This token is only accessible to users on the GitHub Enterprise Server instance. To fix this vulnerability, the Actions download token will now be a permissionless token. GitHub has requested CVE ID [CVE-2024-1908](https://www.cve.org/cverecord?id=CVE-2024-1908) for this vulnerability, which was reported via the [GitHub Bug Bounty program](https://bounty.github.com/).
    - |
-      Packages have been updated to the latest security versions. 
+      Packages have been updated to the latest security versions.
  bugs:
    - |
      Redundant messages caused increased log volumes in `/var/log/syslog`.
@@ -49,5 +49,3 @@ sections:
      {% data reusables.release-notes.2023-12-backup-utils-exit-early-redis %}
    - |
      {% data reusables.release-notes.2024-01-haproxy-upgrade-causing-increased-errors %}
-    - |
-      {% data reusables.release-notes.2024-02-pages-deployment-error %}
--- a/data/release-notes/enterprise-server/3-10/9.yml
+++ b/data/release-notes/enterprise-server/3-10/9.yml
@@ -102,5 +102,3 @@ sections:
      {% data reusables.release-notes.2023-12-backup-utils-exit-early-redis %}
    - |
      {% data reusables.release-notes.2024-01-haproxy-upgrade-causing-increased-errors %}
-    - |
-      {% data reusables.release-notes.2024-02-pages-deployment-error %}
--- a/data/release-notes/enterprise-server/3-11/7.yml
+++ b/data/release-notes/enterprise-server/3-11/7.yml
@@ -92,7 +92,3 @@ sections:
      {% data reusables.release-notes.2024-01-haproxy-upgrade-causing-increased-errors %}
    - |
      Pre-receive hooks which utilize `git rev-list` fail with an `fatal: Invalid revision range` error message.
-    - |
-      {% data reusables.release-notes.2024-02-pages-deployment-error %}
-    - |
-      {% data reusables.release-notes.2024-02-pages-deployment-error %}
--- a/data/release-notes/enterprise-server/3-12/1.yml
+++ b/data/release-notes/enterprise-server/3-12/1.yml
@@ -114,5 +114,3 @@ sections:
      {% data reusables.release-notes.2023-11-cluster-ha-failover-git-push-failure %}
    - |
      {% data reusables.release-notes.2023-12-backup-utils-exit-early-redis %}
-    - |
-      {% data reusables.release-notes.2024-02-pages-deployment-error %}
--- a/data/release-notes/enterprise-server/3-9/11.yml
+++ b/data/release-notes/enterprise-server/3-9/11.yml
@@ -10,7 +10,7 @@ sections:
    - |
      **HIGH**: On an instance with GitHub Connect enabled and non-default settings for GitHub Connect configured, an attacker could use an enterprise GitHub Actions download token to fetch private repository data. This token is only accessible to users on the GitHub Enterprise Server instance. To fix this vulnerability, the Actions download token will now be a permissionless token. GitHub has requested CVE ID [CVE-2024-1908](https://www.cve.org/cverecord?id=CVE-2024-1908) for this vulnerability, which was reported via the [GitHub Bug Bounty program](https://bounty.github.com/).
    - |
-      Packages have been updated to the latest security versions. 
+      Packages have been updated to the latest security versions.
  bugs:
    - |
      Redundant messages caused increased log volumes in `/var/log/syslog`.
@@ -49,5 +49,3 @@ sections:
      {% data reusables.release-notes.2023-12-backup-utils-exit-early-redis %}
    - |
      {% data reusables.release-notes.2024-01-haproxy-upgrade-causing-increased-errors %}
-    - |
-      {% data reusables.release-notes.2024-02-pages-deployment-error %}
--- a/data/release-notes/enterprise-server/3-9/12.yml
+++ b/data/release-notes/enterprise-server/3-9/12.yml
@@ -98,5 +98,3 @@ sections:
      {% data reusables.release-notes.2023-12-backup-utils-exit-early-redis %}
    - |
      {% data reusables.release-notes.2024-01-haproxy-upgrade-causing-increased-errors %}
-    - |
-      {% data reusables.release-notes.2024-02-pages-deployment-error %}