Mozilla

Author	SHA1	Message	Date
mkanat%bugzilla.org	0aa5df3a3e	Bump the version number for 3.6.4. git-svn-id: svn://10.0.0.236/branches/BUGZILLA-3_6-BRANCH@261820 18797224-902f-48f8-a5cc-f745e15eee43	2011-01-24 23:45:11 +00:00
mkanat%bugzilla.org	cc59d868e7	Bug 619594: (CVE-2010-4568) [SECURITY] Improve the randomness of generate_random_password, to protect against an account compromise issue and other critical vulnerabilities. r=LpSolit, a=LpSolit git-svn-id: svn://10.0.0.236/branches/BUGZILLA-3_6-BRANCH@261817 18797224-902f-48f8-a5cc-f745e15eee43	2011-01-24 22:07:59 +00:00
mkanat%bugzilla.org	72a8e0036b	Bug 619588: (CVE-2010-4567) [SECURITY] Safety checks that disallow clicking for javascript: or data: URLs in the URL field can be evaded with prefixed whitespace and Bug 628034: (CVE-2011-0048) [SECURITY] For not-logged-in users, the URL field doesn't safeguard against javascript: or data: URLs r=dkl a=LpSolit git-svn-id: svn://10.0.0.236/branches/BUGZILLA-3_6-BRANCH@261813 18797224-902f-48f8-a5cc-f745e15eee43	2011-01-24 18:53:58 +00:00
mkanat%bugzilla.org	3894d17d04	Bug 591165: (CVE-2010-4411) [SECURITY] Bump minimum required version of CGI.pm to v3.51 in order to address header injection vulnerability. [r=mkanat a=mkanat] git-svn-id: svn://10.0.0.236/branches/BUGZILLA-3_6-BRANCH@261784 18797224-902f-48f8-a5cc-f745e15eee43	2011-01-21 21:22:55 +00:00
mkanat%bugzilla.org	383bca84ad	Bug 588013: Fix typo r/a=mkanat git-svn-id: svn://10.0.0.236/branches/BUGZILLA-3_6-BRANCH@261692 18797224-902f-48f8-a5cc-f745e15eee43	2010-12-27 22:05:20 +00:00
mkanat%bugzilla.org	dae96dea7a	Bug 611974: collectstats.pl --regenerate fails with PostgreSQL 8.4.x (sql_from_days() doesn't accept integers as argument) r/a=LpSolit git-svn-id: svn://10.0.0.236/branches/BUGZILLA-3_6-BRANCH@261564 18797224-902f-48f8-a5cc-f745e15eee43	2010-11-14 19:23:27 +00:00
mkanat%bugzilla.org	1eea0565f5	Bug 611623: The alias is not filtered in QuickSearch when passed to show_bug.cgi r=glob a=LpSolit git-svn-id: svn://10.0.0.236/branches/BUGZILLA-3_6-BRANCH@261561 18797224-902f-48f8-a5cc-f745e15eee43	2010-11-13 00:20:10 +00:00
mkanat%bugzilla.org	b382f2321b	Bug 591165: (CVE-2010-2761) [SECURITY] Bump minimum required version of CGI.pm to v3.50 in order to address header injection vulnerability. [r=mkanat a=mkanat] git-svn-id: svn://10.0.0.236/branches/BUGZILLA-3_6-BRANCH@261557 18797224-902f-48f8-a5cc-f745e15eee43	2010-11-11 02:20:43 +00:00
mkanat%bugzilla.org	4502635fa9	Bug 611129: Quicksearch fails in 3.6.3 if List::MoreUtils is not installed r/a=mkanat git-svn-id: svn://10.0.0.236/branches/BUGZILLA-3_6-BRANCH@261547 18797224-902f-48f8-a5cc-f745e15eee43	2010-11-10 23:46:49 +00:00
mkanat%bugzilla.org	2324bbecc4	Bug 596611: Add a hook to email_in.pl r/a=mkanat git-svn-id: svn://10.0.0.236/branches/BUGZILLA-3_6-BRANCH@261527 18797224-902f-48f8-a5cc-f745e15eee43	2010-11-04 17:23:45 +00:00
mkanat%bugzilla.org	5c5dcff6b1	Bug 474766: The [details] string is duplicated when replying to a comment containing a link to an attachment r/a=mkanat git-svn-id: svn://10.0.0.236/branches/BUGZILLA-3_6-BRANCH@261524 18797224-902f-48f8-a5cc-f745e15eee43	2010-11-04 17:09:26 +00:00
mkanat%bugzilla.org	e2d2059f0b	Bump the version number post-release. git-svn-id: svn://10.0.0.236/branches/BUGZILLA-3_6-BRANCH@261518 18797224-902f-48f8-a5cc-f745e15eee43	2010-11-03 01:50:41 +00:00
mkanat%bugzilla.org	8e6cfd6750	Bump the version number for 3.6.3. git-svn-id: svn://10.0.0.236/branches/BUGZILLA-3_6-BRANCH@261511 18797224-902f-48f8-a5cc-f745e15eee43	2010-11-03 00:46:04 +00:00
mkanat%bugzilla.org	f8bb64c9e4	Bug 600464: (CVE-2010-3172) [SECURITY] Content/Header injection due to non-random multipart/x-mixed-replace boundary r=mkanat a=LpSolit git-svn-id: svn://10.0.0.236/branches/BUGZILLA-3_6-BRANCH@261506 18797224-902f-48f8-a5cc-f745e15eee43	2010-11-02 23:37:45 +00:00
mkanat%bugzilla.org	8fa11a377c	Bug 419014: (CVE-2010-3764) [SECURITY] Old charts are not project specific, and product names are viewable in graphs/ r=wurblzap a=LpSolit git-svn-id: svn://10.0.0.236/branches/BUGZILLA-3_6-BRANCH@261505 18797224-902f-48f8-a5cc-f745e15eee43	2010-11-02 23:23:21 +00:00
mkanat%bugzilla.org	b3f1fb0e3b	Bug 607966: Use of qw(...) as parentheses is deprecated since Perl 5.13.5 r=gerv a=LpSolit git-svn-id: svn://10.0.0.236/branches/BUGZILLA-3_6-BRANCH@261490 18797224-902f-48f8-a5cc-f745e15eee43	2010-10-28 15:35:02 +00:00
mkanat%bugzilla.org	49d68e27fd	Bug 607083: Improve the error message that install-module.pl prints when you specify an invalid CPAN module. r=mkanat, a=mkanat (module owner) git-svn-id: svn://10.0.0.236/branches/BUGZILLA-3_6-BRANCH@261462 18797224-902f-48f8-a5cc-f745e15eee43	2010-10-26 21:21:24 +00:00
mkanat%bugzilla.org	b7d54710a7	Bug 413648: Attachment mime type handling should strip leading and trailing spaces a=LpSolit git-svn-id: svn://10.0.0.236/branches/BUGZILLA-3_6-BRANCH@261444 18797224-902f-48f8-a5cc-f745e15eee43	2010-10-22 13:05:03 +00:00
mkanat%bugzilla.org	8ab6d52c1a	Bug 605425: Non-english templates are no longer precompiled by checksetup r/a=mkanat git-svn-id: svn://10.0.0.236/branches/BUGZILLA-3_6-BRANCH@261436 18797224-902f-48f8-a5cc-f745e15eee43	2010-10-20 23:17:10 +00:00
mkanat%bugzilla.org	cbebd9c86b	Bug 553266: config.cgi?ctype=rdf spends most of its time loading flagtypes from the database (partial backport) a=LpSolit (module owner) git-svn-id: svn://10.0.0.236/branches/BUGZILLA-3_6-BRANCH@261431 18797224-902f-48f8-a5cc-f745e15eee43	2010-10-20 00:50:28 +00:00
mkanat%bugzilla.org	c205068eae	Bug 604522: t/012throwables.t doesn't catch new user errors correctly r/a=mkanat git-svn-id: svn://10.0.0.236/branches/BUGZILLA-3_6-BRANCH@261404 18797224-902f-48f8-a5cc-f745e15eee43	2010-10-15 00:21:59 +00:00
mkanat%bugzilla.org	4c82713caa	Bug 575947: Users with passwords length less than 6 characters can't login after migration from 3.4.x or older to 3.6 or newer r/a=mkanat git-svn-id: svn://10.0.0.236/branches/BUGZILLA-3_6-BRANCH@261395 18797224-902f-48f8-a5cc-f745e15eee43	2010-10-14 00:53:22 +00:00
mkanat%bugzilla.org	bf3e9ad8e3	Bug 585028: Advanced Shortcut for Priority (P1-5 as search word) broken r/a=mkanat git-svn-id: svn://10.0.0.236/branches/BUGZILLA-3_6-BRANCH@261260 18797224-902f-48f8-a5cc-f745e15eee43	2010-09-21 18:02:13 +00:00
mkanat%bugzilla.org	3612b9c71c	Bug 593170: Disallow urls like "show_bug.cgi?id=2323" (with no domain) in the See Also field. r=timello, a=mkanat git-svn-id: svn://10.0.0.236/branches/BUGZILLA-3_6-BRANCH@261246 18797224-902f-48f8-a5cc-f745e15eee43	2010-09-18 23:57:24 +00:00
mkanat%bugzilla.org	cc6846e611	Bug 584414: Searching for bugs with "at least X votes" was broken in 3.6 only. r=LpSolit, a=LpSolit git-svn-id: svn://10.0.0.236/branches/BUGZILLA-3_6-BRANCH@261185 18797224-902f-48f8-a5cc-f745e15eee43	2010-09-08 01:50:13 +00:00
mkanat%bugzilla.org	de0a513ef2	Bug 590144: The deadline is not kept in saved searches when set to 'Now' r=ghendricks a=LpSolit git-svn-id: svn://10.0.0.236/branches/BUGZILLA-3_6-BRANCH@261176 18797224-902f-48f8-a5cc-f745e15eee43	2010-09-02 19:03:01 +00:00
mkanat%bugzilla.org	688b314dce	Bug 587793: Add a new "object_end_of_create" hook so that extensions can operate on any new objects r=mkanat, a=mkanat git-svn-id: svn://10.0.0.236/branches/BUGZILLA-3_6-BRANCH@261163 18797224-902f-48f8-a5cc-f745e15eee43	2010-09-01 23:06:21 +00:00
mkanat%bugzilla.org	ec6047feb1	Bump version number post-release. git-svn-id: svn://10.0.0.236/branches/BUGZILLA-3_6-BRANCH@260993 18797224-902f-48f8-a5cc-f745e15eee43	2010-08-06 02:35:39 +00:00
mkanat%bugzilla.org	2f1efa7fb7	Bump the version number for 3.6.2. git-svn-id: svn://10.0.0.236/branches/BUGZILLA-3_6-BRANCH@260986 18797224-902f-48f8-a5cc-f745e15eee43	2010-08-06 01:18:03 +00:00
mkanat%bugzilla.org	5aaa0447f6	Bug 583690: (CVE-2010-2759) [SECURITY][PostgreSQL] Bugzilla crashes when viewing a bug if a comment contains 'bug <num>' or 'attachment <num>' where <num> is greater than the max allowed integer r=mkanat a=LpSolit git-svn-id: svn://10.0.0.236/branches/BUGZILLA-3_6-BRANCH@260976 18797224-902f-48f8-a5cc-f745e15eee43	2010-08-04 22:22:01 +00:00
mkanat%bugzilla.org	592edff1b0	Bug 450013: (CVE-2010-2757) [SECURITY] Can sudo a user without sending email r=glob a=LpSolit git-svn-id: svn://10.0.0.236/branches/BUGZILLA-3_6-BRANCH@260974 18797224-902f-48f8-a5cc-f745e15eee43	2010-08-04 21:52:54 +00:00
mkanat%bugzilla.org	bf0c31e108	Bug 417048: (CVE-2010-2756) [SECURITY] Boolean charts let me query for users being in any given group r=mkanat a=LpSolit git-svn-id: svn://10.0.0.236/branches/BUGZILLA-3_6-BRANCH@260972 18797224-902f-48f8-a5cc-f745e15eee43	2010-08-04 21:35:40 +00:00
mkanat%bugzilla.org	225e8d8010	Bug 584036: _sync_fulltext() not called when (un)setting an existing comment as private r/a=mkanat git-svn-id: svn://10.0.0.236/branches/BUGZILLA-3_6-BRANCH@260965 18797224-902f-48f8-a5cc-f745e15eee43	2010-08-04 00:49:23 +00:00
mkanat%bugzilla.org	c1ddbf5775	Bug 553884: Quicksearch incorrectly treats "-" in quotes as negation r/a=mkanat git-svn-id: svn://10.0.0.236/branches/BUGZILLA-3_6-BRANCH@260940 18797224-902f-48f8-a5cc-f745e15eee43	2010-08-02 02:19:36 +00:00
mkanat%bugzilla.org	29453346f8	Bug 583622: email_in.pl doesn't let me set timetracking fields r/a=mkanat git-svn-id: svn://10.0.0.236/branches/BUGZILLA-3_6-BRANCH@260939 18797224-902f-48f8-a5cc-f745e15eee43	2010-08-02 01:49:26 +00:00
mkanat%bugzilla.org	bf2c5e4c20	Bug 578494: We can't use "shellwords" to split words for sql_fulltext on Pg, because it doesn't work with unbalanced single quotes. So we just do a hack to make Quicksearch work right, for Pg. r=LpSolit, a=mkanat git-svn-id: svn://10.0.0.236/branches/BUGZILLA-3_6-BRANCH@260938 18797224-902f-48f8-a5cc-f745e15eee43	2010-08-02 01:34:28 +00:00
mkanat%bugzilla.org	7802ffde77	Bug 581622: When a quicksearch includes the "content" field, it is limited to 200 bugs r/a=mkanat git-svn-id: svn://10.0.0.236/branches/BUGZILLA-3_6-BRANCH@260934 18797224-902f-48f8-a5cc-f745e15eee43	2010-08-01 23:37:32 +00:00
mkanat%bugzilla.org	66c7375b06	Bugzilla/Hook.pm: Remove an internal POD link to object_validators, which exists only on 4.0 or above. git-svn-id: svn://10.0.0.236/branches/BUGZILLA-3_6-BRANCH@260896 18797224-902f-48f8-a5cc-f745e15eee43	2010-07-26 21:46:42 +00:00
mkanat%bugzilla.org	f6563d71cc	Bug 581311: Bring the documentation of various hooks in Bugzilla::Hook up to date r=mkanat, a=mkanat (module owner) git-svn-id: svn://10.0.0.236/branches/BUGZILLA-3_6-BRANCH@260861 18797224-902f-48f8-a5cc-f745e15eee43	2010-07-23 11:52:16 +00:00
mkanat%bugzilla.org	e6358fc49c	Bug 578240 - Re-add "owner" as a quicksearch alias for searching for "assigned_to" [r=mkanat a=mkanat] git-svn-id: svn://10.0.0.236/branches/BUGZILLA-3_6-BRANCH@260852 18797224-902f-48f8-a5cc-f745e15eee43	2010-07-23 02:09:13 +00:00
mkanat%bugzilla.org	e210bf6fda	Bug 578494: When doing a QuickSearch on a phrase, pass the phrase quoted to the fulltext engine, so that it knows it's a phrase. r=LpSolit, a=mkanat git-svn-id: svn://10.0.0.236/branches/BUGZILLA-3_6-BRANCH@260851 18797224-902f-48f8-a5cc-f745e15eee43	2010-07-23 02:07:49 +00:00
mkanat%bugzilla.org	d2021d32ef	Bug 577054: Field::Choice was denying the deletion of any value if the field had any value-controlling values. r=LpSolit, a=LpSolit git-svn-id: svn://10.0.0.236/branches/BUGZILLA-3_6-BRANCH@260850 18797224-902f-48f8-a5cc-f745e15eee43	2010-07-23 01:50:54 +00:00
mkanat%bugzilla.org	0cca13a59e	Bug 521416: Some web servers fail to set the QUERY_STRING parameter r/a=mkanat git-svn-id: svn://10.0.0.236/branches/BUGZILLA-3_6-BRANCH@260786 18797224-902f-48f8-a5cc-f745e15eee43	2010-07-15 17:34:25 +00:00
mkanat%bugzilla.org	799788fc61	The changes to accept positional parameters in XML-RPC meant that sometimes $params wouldn't just be undef, but actually missing, so validate() was getting @keys where $params should have been. git-svn-id: svn://10.0.0.236/branches/BUGZILLA-3_6-BRANCH@260766 18797224-902f-48f8-a5cc-f745e15eee43	2010-07-14 04:04:43 +00:00
mkanat%bugzilla.org	ce5a923745	Bug 577765: Allow XML-RPC to accept multiple positional parameters r=ghendricks, a=mkanat git-svn-id: svn://10.0.0.236/branches/BUGZILLA-3_6-BRANCH@260753 18797224-902f-48f8-a5cc-f745e15eee43	2010-07-13 23:11:03 +00:00
mkanat%bugzilla.org	31035ecb29	Bug 576060: Make bzr not be readable by the webserver r=reed, a=mkanat git-svn-id: svn://10.0.0.236/branches/BUGZILLA-3_6-BRANCH@260752 18797224-902f-48f8-a5cc-f745e15eee43	2010-07-13 23:09:27 +00:00
mkanat%bugzilla.org	16af1c431f	Bug 577754: Make updating bugs_fulltext during checksetup.pl WAY faster for MySQL. r=mkanat, a=mkanat (module owner) git-svn-id: svn://10.0.0.236/branches/BUGZILLA-3_6-BRANCH@260707 18797224-902f-48f8-a5cc-f745e15eee43	2010-07-10 05:36:00 +00:00
mkanat%bugzilla.org	00ca076dbe	Bug 451219: Allow altering from one SERIAL type to another on PostgreSQL, for people upgrading Testopia from 1.3 to 2.0+. r=mkanat, a=mkanat (module owner) git-svn-id: svn://10.0.0.236/branches/BUGZILLA-3_6-BRANCH@260703 18797224-902f-48f8-a5cc-f745e15eee43	2010-07-10 04:23:40 +00:00
mkanat%bugzilla.org	e9e2f8e908	Bug 577577: Make bz_drop_fk be tolerant of SQL failure r=mkanat, a=mkanat (module owner) git-svn-id: svn://10.0.0.236/branches/BUGZILLA-3_6-BRANCH@260688 18797224-902f-48f8-a5cc-f745e15eee43	2010-07-08 23:50:06 +00:00
mkanat%bugzilla.org	ae02bd3cf9	Bug 577415: Allow positional parameters for XML-RPC, because Testopia uses them. r=ghendricks, a=mkanat git-svn-id: svn://10.0.0.236/branches/BUGZILLA-3_6-BRANCH@260682 18797224-902f-48f8-a5cc-f745e15eee43	2010-07-08 20:35:21 +00:00

1 2 3 4 5 ...

2043 Commits