app · 641541de66f5d2db12193315ebabb382e933d854 · Forest Godfrey / gitlab-ce

authored Jan 08, 2018

Merge branch '41293-fix-command-injection-vulnerability-on-system_hook_push-queue-through-web-hook-10-2' into 'security-10-2'

[10.2] Don't allow line breaks on HTTP headers

See merge request gitlab/gitlabhq!2287

(cherry picked from commit 1e19734413d46346dd46177d056d9c7165602197)

b7664b12 Don't allow line breaks on HTTP headers

641541de

Name	Last commit	Last update
..
assets		Loading commit data...
controllers		Loading commit data...
finders		Loading commit data...
helpers		Loading commit data...
mailers		Loading commit data...
models		Loading commit data...
policies		Loading commit data...
presenters		Loading commit data...
serializers		Loading commit data...
services		Loading commit data...
uploaders		Loading commit data...
validators		Loading commit data...
views		Loading commit data...
workers		Loading commit data...