changelog v7.4.5 (#32110)

* changelog v7.4.5 * changelog v6.7.6 and v7.3.10
2025-02-25 18:55:37 -06:00 · 2021-03-18 18:37:48 +01:00 · 2021-03-18 18:37:48 +01:00 · eaa27c60ea
commit eaa27c60ea
parent 020108e32d
1 changed files with 34 additions and 0 deletions
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@ -63,6 +63,18 @@

 <!-- 7.5.0-beta1 END -->

+<!-- 7.4.5 START -->
+
+# 7.4.5 (2021-03-18)
+
+### Bug fixes
+
+* **Security**: Fix API permissions issues related to team-sync CVE-2021-28146, CVE-2021-28147. (Enterprise)
+* **Security**: Usage insights requires signed in users CVE-2021-28148. (Enterprise)
+* **Security**: Do not allow editors to incorrectly bypass permissions on the default data source. CVE-2021-27962. (Enterprise)
+
+<!-- 7.4.5 END -->
+
 <!-- 7.4.3 START -->

 # 7.4.3 (2021-02-24)
@ -320,6 +332,17 @@ This option to group query variable values into groups by tags has been an exper

 <!-- 7.4.0-beta1 END -->

+<!-- 7.3.10 START -->
+
+# 7.3.10 (2021-03-18)
+
+### Bug fixes
+
+* **Security**: Fix API permissions issues related to team-sync CVE-2021-28146, CVE-2021-28147. (Enterprise)
+* **Security**: Usage insights requires signed in users CVE-2021-28148. (Enterprise)
+
+<!-- 7.3.10 END -->
+
 <!-- 7.3.7 START -->

 # 7.3.7 (2021-01-14)
@ -1313,6 +1336,17 @@ We have also extended the time zone options so you can select any of the standar
 - **Rich history**: Fix create url and run query for various datasources. [#23627](https://github.com/grafana/grafana/pull/23627), [@ivanahuckova](https://github.com/ivanahuckova)
 - **Security**: Fix XSS vulnerability in table panel. [#23816](https://github.com/grafana/grafana/pull/23816), [@torkelo](https://github.com/torkelo)

+<!-- 6.7.6 START -->
+
+# 6.7.6 (2021-03-18)
+
+### Bug fixes
+
+* **Security**: Fix API permissions issues related to team-sync CVE-2021-28147. (Enterprise)
+* **Security**: Usage insights requires signed in users CVE-2021-28148. (Enterprise)
+
+<!-- 6.7.6 END -->
+
 <!-- 6.7.5 START -->

 # 6.7.5 (2020-12-17)