Security release 2017-08-10 patch
What
Picks https://dev.gitlab.org/gitlab/gitlabhq/merge_requests/2154 and https://dev.gitlab.org/gitlab/gitlabhq/commit/4efa558f2dc1fa333f3adbd6920db1a58c476482 into master
Why
- So master branch isn't vulnerable
- Blog post: https://about.gitlab.com/2017/08/10/gitlab-9-dot-4-dot-4-released/