Bommels05/Mozilla
Bommels05/Mozilla
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
214,886 Commits 3,986 Branches 0 Tags
Commit Graph

7808 Commits

Author SHA1 Message Date
bzrmirror%bugzilla.org
47cbb4fa49 Bumped version to 4.0.16 
git-svn-id: svn://10.0.0.236/branches/BUGZILLA-4_0-BRANCH@265792 18797224-902f-48f8-a5cc-f745e15eee43
 2015-01-21 21:30:42 +00:00
bzrmirror%bugzilla.org
d858d86220 Bug 1090275: WebServices modules should maintain a whitelist of methods that are allowed instead of allowing access to any function imported into its namespace 
r=dylan,a=glob


git-svn-id: svn://10.0.0.236/branches/BUGZILLA-4_0-BRANCH@265791 18797224-902f-48f8-a5cc-f745e15eee43
 2015-01-21 21:00:45 +00:00
bzrmirror%bugzilla.org
b25e44f000 Bug 1079065: [SECURITY] Always use the 3 arguments form for open() to prevent shell code injection 
r=dylan,a=simon


git-svn-id: svn://10.0.0.236/branches/BUGZILLA-4_0-BRANCH@265790 18797224-902f-48f8-a5cc-f745e15eee43
 2015-01-21 20:46:00 +00:00
bzrmirror%bugzilla.org
20714a9e71 Fix typo 
git-svn-id: svn://10.0.0.236/branches/BUGZILLA-4_0-BRANCH@265789 18797224-902f-48f8-a5cc-f745e15eee43
 2015-01-19 21:30:46 +00:00
bzrmirror%bugzilla.org
af291776dd Bug 1118988: Release notes for 4.0.16 
r=LpSolit,a=glob


git-svn-id: svn://10.0.0.236/branches/BUGZILLA-4_0-BRANCH@265788 18797224-902f-48f8-a5cc-f745e15eee43
 2015-01-19 20:45:44 +00:00
bzrmirror%bugzilla.org
5c0b2edb93 Bug 1085182: Bugzilla::Bug->check must check that a bug ID is defined when it gets a hashref 
r=dkl a=glob


git-svn-id: svn://10.0.0.236/branches/BUGZILLA-4_0-BRANCH@265782 18797224-902f-48f8-a5cc-f745e15eee43
 2015-01-05 18:45:44 +00:00
bzrmirror%bugzilla.org
cb39c353d9 Bug 1097798: Do not display the resolution in the dependency tree for open bugs, nor the target milestone if usetargetmilestone is off 
r=dkl a=glob


git-svn-id: svn://10.0.0.236/branches/BUGZILLA-4_0-BRANCH@265678 18797224-902f-48f8-a5cc-f745e15eee43
 2014-11-19 17:31:45 +00:00
bzrmirror%bugzilla.org
1f7525b5ff Bug 1082887: comments made when setting a flag from the attachment details page are not included in the "flag updated" email 
r=dkl,a=glob


git-svn-id: svn://10.0.0.236/branches/BUGZILLA-4_0-BRANCH@265621 18797224-902f-48f8-a5cc-f745e15eee43
 2014-10-16 07:46:34 +00:00
bzrmirror%bugzilla.org
5d0966631b Bump version post-release 
git-svn-id: svn://10.0.0.236/branches/BUGZILLA-4_0-BRANCH@265610 18797224-902f-48f8-a5cc-f745e15eee43
 2014-10-06 18:46:24 +00:00
bzrmirror%bugzilla.org
fe0c9d81ad Bump version to 4.0.15 
git-svn-id: svn://10.0.0.236/branches/BUGZILLA-4_0-BRANCH@265607 18797224-902f-48f8-a5cc-f745e15eee43
 2014-10-06 15:30:46 +00:00
bzrmirror%bugzilla.org
597e26f3e9 Bug 1054702: CSV export vulnerable to formulae injection 
r=glob,a=glob


git-svn-id: svn://10.0.0.236/branches/BUGZILLA-4_0-BRANCH@265605 18797224-902f-48f8-a5cc-f745e15eee43
 2014-10-06 15:01:28 +00:00
bzrmirror%bugzilla.org
802209aef9 Bug 1064140: [SECURITY] Private comments can be shown to flagmail recipients who aren't in the insider group 
r=glob,a=glob


git-svn-id: svn://10.0.0.236/branches/BUGZILLA-4_0-BRANCH@265603 18797224-902f-48f8-a5cc-f745e15eee43
 2014-10-06 14:48:02 +00:00
bzrmirror%bugzilla.org
150ce60639 Bug 1074980: Forbid the { foo => $cgi->param() } syntax to prevent data override 
r=dkl,a=sgreen


git-svn-id: svn://10.0.0.236/branches/BUGZILLA-4_0-BRANCH@265602 18797224-902f-48f8-a5cc-f745e15eee43
 2014-10-06 14:47:23 +00:00
bzrmirror%bugzilla.org
3e500ddd23 Bug 1075578: [SECURITY] Improper filtering of CGI arguments 
r=dkl,a=sgreen


git-svn-id: svn://10.0.0.236/branches/BUGZILLA-4_0-BRANCH@265600 18797224-902f-48f8-a5cc-f745e15eee43
 2014-10-06 14:31:49 +00:00
bzrmirror%bugzilla.org
1b01513c24 Bug 1072494: Release notes for 4.0.15 
r=LpSolit,a=sgreen


git-svn-id: svn://10.0.0.236/branches/BUGZILLA-4_0-BRANCH@265599 18797224-902f-48f8-a5cc-f745e15eee43
 2014-10-06 14:30:57 +00:00
bzrmirror%bugzilla.org
4b79017161 Bump version post-release 
git-svn-id: svn://10.0.0.236/branches/BUGZILLA-4_0-BRANCH@265477 18797224-902f-48f8-a5cc-f745e15eee43
 2014-07-24 21:46:37 +00:00
bzrmirror%bugzilla.org
c5ff5462cf Bump version to 4.0.14 (corrected) 
git-svn-id: svn://10.0.0.236/branches/BUGZILLA-4_0-BRANCH@265473 18797224-902f-48f8-a5cc-f745e15eee43
 2014-07-24 17:31:23 +00:00
bzrmirror%bugzilla.org
13bf215d31 Bug 1036213 - (CVE-2014-1546) add '/**/' before jsonrpc.cgi callback to avoid swf content type sniff vulnerability 
r=glob,a=sgreen


git-svn-id: svn://10.0.0.236/branches/BUGZILLA-4_0-BRANCH@265472 18797224-902f-48f8-a5cc-f745e15eee43
 2014-07-24 17:30:45 +00:00
bzrmirror%bugzilla.org
386c4c75e3 Bump version to 4.0.14 
git-svn-id: svn://10.0.0.236/branches/BUGZILLA-4_0-BRANCH@265471 18797224-902f-48f8-a5cc-f745e15eee43
 2014-07-24 17:01:23 +00:00
bzrmirror%bugzilla.org
5a727910e4 Bug 1042091 - Release notes for 4.0.14 
r=glob


git-svn-id: svn://10.0.0.236/branches/BUGZILLA-4_0-BRANCH@265470 18797224-902f-48f8-a5cc-f745e15eee43
 2014-07-24 17:00:44 +00:00
bzrmirror%bugzilla.org
9428ac45ec Bug 1011250 - Updates IRC notification text to include commit message and also send to #bugzilla 
git-svn-id: svn://10.0.0.236/branches/BUGZILLA-4_0-BRANCH@265405 18797224-902f-48f8-a5cc-f745e15eee43
 2014-05-15 22:01:23 +00:00
bzrmirror%bugzilla.org
42b3130650 Bug 983275 - Switch Bugzilla's CI testing from Tinderbox to travis-ci 
- Only run webservices for Pg and Mysql with Perl 5.12 due to interaction bug
in 5.10


git-svn-id: svn://10.0.0.236/branches/BUGZILLA-4_0-BRANCH@265404 18797224-902f-48f8-a5cc-f745e15eee43
 2014-05-15 03:00:40 +00:00
bzrmirror%bugzilla.org
929cbfe8af Bug 983275 - Switch Bugzilla's CI testing from Tinderbox to travis-ci 
- Only run webservices for Pg with Perl 5.12 due to interaction bug in
5.10


git-svn-id: svn://10.0.0.236/branches/BUGZILLA-4_0-BRANCH@265403 18797224-902f-48f8-a5cc-f745e15eee43
 2014-05-14 21:00:41 +00:00
bzrmirror%bugzilla.org
752e894dbb Bug 983275 - Switch Bugzilla's CI testing from Tinderbox to travis-ci 
- Added the PostgreSQL webservices/selenium tests


git-svn-id: svn://10.0.0.236/branches/BUGZILLA-4_0-BRANCH@265393 18797224-902f-48f8-a5cc-f745e15eee43
 2014-05-08 21:00:39 +00:00
bzrmirror%bugzilla.org
85c20b06ae Bug 983275 - Switch Bugzilla's CI testing from Tinderbox to travis-ci 
- Updated notification settings


git-svn-id: svn://10.0.0.236/branches/BUGZILLA-4_0-BRANCH@265392 18797224-902f-48f8-a5cc-f745e15eee43
 2014-05-07 16:32:02 +00:00
bzrmirror%bugzilla.org
7bc31c2e8f Bug 983275 - Switch Bugzilla's CI testing from Tinderbox to travis-ci 
git-svn-id: svn://10.0.0.236/branches/BUGZILLA-4_0-BRANCH@265391 18797224-902f-48f8-a5cc-f745e15eee43
 2014-05-07 16:31:25 +00:00
bzrmirror%bugzilla.org
b791ba92f0 Bug 995209 - Create a Build.PL script using Module::Build for testing/installing/packaging of Bugzilla code 
- Fixed incorrect package name Apache-SizeLimit


git-svn-id: svn://10.0.0.236/branches/BUGZILLA-4_0-BRANCH@265385 18797224-902f-48f8-a5cc-f745e15eee43
 2014-05-02 20:45:39 +00:00
bzrmirror%bugzilla.org
32d79a9d4f Bug 983275 - Switch Bugzilla's CI testing from Tinderbox to travis-ci 
git-svn-id: svn://10.0.0.236/branches/BUGZILLA-4_0-BRANCH@265382 18797224-902f-48f8-a5cc-f745e15eee43
 2014-05-02 16:15:40 +00:00
bzrmirror%bugzilla.org
5e8bca5378 Bug 995209 - Create a Build.PL script using Module::Build for testing/installing/packaging of Bugzilla code 
r=glob,a=justdave


git-svn-id: svn://10.0.0.236/branches/BUGZILLA-4_0-BRANCH@265375 18797224-902f-48f8-a5cc-f745e15eee43
 2014-05-01 21:15:41 +00:00
bzrmirror%bugzilla.org
bbf036b736 Bumped version post-release 
git-svn-id: svn://10.0.0.236/branches/BUGZILLA-4_0-BRANCH@265353 18797224-902f-48f8-a5cc-f745e15eee43
 2014-04-21 21:16:24 +00:00
bzrmirror%bugzilla.org
db1539167c Bump version to 4.0.13 
git-svn-id: svn://10.0.0.236/branches/BUGZILLA-4_0-BRANCH@265349 18797224-902f-48f8-a5cc-f745e15eee43
 2014-04-18 22:16:37 +00:00
bzrmirror%bugzilla.org
92205206f0 Bug 998484: Release notes for Bugzilla 4.0.13 
r=dkl a=justdave


git-svn-id: svn://10.0.0.236/branches/BUGZILLA-4_0-BRANCH@265347 18797224-902f-48f8-a5cc-f745e15eee43
 2014-04-18 22:01:25 +00:00
bzrmirror%bugzilla.org
b7342cb5f3 Bug 998323 - URLs pasted in comments are no longer displayed 
r=LpSolit,a=justdave


git-svn-id: svn://10.0.0.236/branches/BUGZILLA-4_0-BRANCH@265344 18797224-902f-48f8-a5cc-f745e15eee43
 2014-04-18 21:15:39 +00:00
bzrmirror%bugzilla.org
08a529eda4 Bumped version post-release 
git-svn-id: svn://10.0.0.236/branches/BUGZILLA-4_0-BRANCH@265339 18797224-902f-48f8-a5cc-f745e15eee43
 2014-04-17 21:31:33 +00:00
bzrmirror%bugzilla.org
b309930596 Bumped version to 4.0.12 
git-svn-id: svn://10.0.0.236/branches/BUGZILLA-4_0-BRANCH@265337 18797224-902f-48f8-a5cc-f745e15eee43
 2014-04-17 17:46:24 +00:00
bzrmirror%bugzilla.org
1fa2629eb3 Bug 968576: [SECURITY] Dangerous control characters allowed in Bugzilla text 
r=glob a=justdave


git-svn-id: svn://10.0.0.236/branches/BUGZILLA-4_0-BRANCH@265335 18797224-902f-48f8-a5cc-f745e15eee43
 2014-04-17 17:01:18 +00:00
bzrmirror%bugzilla.org
02d012ed6a Fix POD to make tests happy 
git-svn-id: svn://10.0.0.236/branches/BUGZILLA-4_0-BRANCH@265334 18797224-902f-48f8-a5cc-f745e15eee43
 2014-04-17 17:00:41 +00:00
bzrmirror%bugzilla.org
5c58aa22ee Bug 996169: Release notes for Bugzilla 4.0.12 
r=dkl a=justdave


git-svn-id: svn://10.0.0.236/branches/BUGZILLA-4_0-BRANCH@265323 18797224-902f-48f8-a5cc-f745e15eee43
 2014-04-15 22:01:23 +00:00
bzrmirror%bugzilla.org
797b0b43f5 Copied over .bzrignore to .gitignore 
git-svn-id: svn://10.0.0.236/branches/BUGZILLA-4_0-BRANCH@265286 18797224-902f-48f8-a5cc-f745e15eee43
 2014-03-14 18:30:45 +00:00
bzrmirror%bugzilla.org
00cfaadeb6 Added .gitrev. 
git-svn-id: svn://10.0.0.236/branches/BUGZILLA-4_0-BRANCH@265281 18797224-902f-48f8-a5cc-f745e15eee43
 2014-03-11 20:00:48 +00:00
bzrmirror%bugzilla.org
3c049c8b28 Bug 942599: Documentation about possible_duplicates() lists 'products' as argument instead of 'product' 
r=dkl a=justdave


git-svn-id: svn://10.0.0.236/branches/BUGZILLA-4_0-BRANCH@265135 18797224-902f-48f8-a5cc-f745e15eee43
 2013-12-05 22:46:42 +00:00
bzrmirror%bugzilla.org
be81ebe143 Bump version post-release 
git-svn-id: svn://10.0.0.236/branches/BUGZILLA-4_0-BRANCH@265068 18797224-902f-48f8-a5cc-f745e15eee43
 2013-10-17 15:21:03 +00:00
bzrmirror%bugzilla.org
70d1c471c4 Bump version to 4.0.11 
git-svn-id: svn://10.0.0.236/branches/BUGZILLA-4_0-BRANCH@265063 18797224-902f-48f8-a5cc-f745e15eee43
 2013-10-16 20:47:53 +00:00
bzrmirror%bugzilla.org
3a52cc32a7 Bug 924802: (CVE-2013-1742) [SECURITY] (XSS) "id" and "sortkey" are not sanitized when editing flag types if categoryAction-foo is set 
r=dkl a=glob


git-svn-id: svn://10.0.0.236/branches/BUGZILLA-4_0-BRANCH@265061 18797224-902f-48f8-a5cc-f745e15eee43
 2013-10-16 17:33:13 +00:00
bzrmirror%bugzilla.org
b8daed2326 Bug 913904: (CVE-2013-1734) [SECURITY] CSRF when updating attachments 
r=dkl a=sgreen


git-svn-id: svn://10.0.0.236/branches/BUGZILLA-4_0-BRANCH@265060 18797224-902f-48f8-a5cc-f745e15eee43
 2013-10-16 17:29:09 +00:00
bzrmirror%bugzilla.org
a837536af3 Bug 906745 - In MySQL, tokens are not case-sensitive, reducing total entropy and allowing easier brute force 
r=LpSolit,a=sgreen


git-svn-id: svn://10.0.0.236/branches/BUGZILLA-4_0-BRANCH@265058 18797224-902f-48f8-a5cc-f745e15eee43
 2013-10-16 17:03:59 +00:00
bzrmirror%bugzilla.org
ced7a0a876 Bug 907438 - In MySQL, login cookie checking is not case-sensitive, reducing total entropy and allowing easier brute force 
r=LpSolit,a=sgreen


git-svn-id: svn://10.0.0.236/branches/BUGZILLA-4_0-BRANCH@265057 18797224-902f-48f8-a5cc-f745e15eee43
 2013-10-16 17:01:24 +00:00
bzrmirror%bugzilla.org
8dc631e917 Bug 906745 - In MySQL, tokens are not case-sensitive, reducing total entropy and allowing easier brute force 
r=LpSolit,a=glob


git-svn-id: svn://10.0.0.236/branches/BUGZILLA-4_0-BRANCH@265056 18797224-902f-48f8-a5cc-f745e15eee43
 2013-10-16 16:57:35 +00:00
bzrmirror%bugzilla.org
92af6088cd Bug 912639: Release notes for Bugzilla 4.0.11 
r=dkl a=LpSolit


git-svn-id: svn://10.0.0.236/branches/BUGZILLA-4_0-BRANCH@265051 18797224-902f-48f8-a5cc-f745e15eee43
 2013-10-11 22:15:49 +00:00
mkanat%bugzilla.org
f59e01f234 Bug 902515: Internet Explorer 11 receives multipart/x-mixed-replace content from buglist.cgi 
r=dkl a=sgreen


git-svn-id: svn://10.0.0.236/branches/BUGZILLA-4_0-BRANCH@264927 18797224-902f-48f8-a5cc-f745e15eee43
 2013-08-09 09:47:58 +00:00