Bommels05/Mozilla
Bommels05/Mozilla
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
214,774 Commits 3,986 Branches 0 Tags
Commit Graph

2295 Commits

Author SHA1 Message Date
mkanat%bugzilla.org
d568f97c43 Bug 725663 - (CVE-2012-0453) [SECURITY] CSRF vulnerability in the XML-RPC API when using mod_perl 
r/a=LpSolit


git-svn-id: svn://10.0.0.236/branches/BUGZILLA-4_0-BRANCH@263465 18797224-902f-48f8-a5cc-f745e15eee43
 2012-02-22 15:32:12 +00:00
mkanat%bugzilla.org
26e2568713 Bug 727240: The POD for Bug.attachments is wrong about the format of the returned data 
r=dkl a=LpSolit


git-svn-id: svn://10.0.0.236/branches/BUGZILLA-4_0-BRANCH@263407 18797224-902f-48f8-a5cc-f745e15eee43
 2012-02-14 22:24:30 +00:00
mkanat%bugzilla.org
6885029fd3 Bump the version number post-release 
git-svn-id: svn://10.0.0.236/branches/BUGZILLA-4_0-BRANCH@263354 18797224-902f-48f8-a5cc-f745e15eee43
 2012-02-01 00:04:54 +00:00
mkanat%bugzilla.org
36ebe12ba3 Bumped to version 4.0.4 
git-svn-id: svn://10.0.0.236/branches/BUGZILLA-4_0-BRANCH@263344 18797224-902f-48f8-a5cc-f745e15eee43
 2012-01-31 16:47:04 +00:00
mkanat%bugzilla.org
d21ff6ea40 Bug 718319: (CVE-2012-0440) [SECURITY] JSON-RPC permits to bypass token checks and can lead to CSRF (no victim's action required) 
r=mkanat a=LpSolit


git-svn-id: svn://10.0.0.236/branches/BUGZILLA-4_0-BRANCH@263341 18797224-902f-48f8-a5cc-f745e15eee43
 2012-01-31 16:16:56 +00:00
mkanat%bugzilla.org
ebeabba5e8 Bug 714472: (CVE-2012-0448) [SECURITY] utf8 homoglyphs are allowed in email addresses, which could allow an attacker to be CC'ed to private bugs by accident 
r=glob a=LpSolit


git-svn-id: svn://10.0.0.236/branches/BUGZILLA-4_0-BRANCH@263337 18797224-902f-48f8-a5cc-f745e15eee43
 2012-01-31 15:48:18 +00:00
mkanat%bugzilla.org
fcedb45128 Bug 706753: Bugzilla will not work with newest version of JSON::RPC 1.01 due to non-backward compatibility 
r=dkl r=mkanat a=LpSolit


git-svn-id: svn://10.0.0.236/branches/BUGZILLA-4_0-BRANCH@263226 18797224-902f-48f8-a5cc-f745e15eee43
 2012-01-05 01:02:37 +00:00
mkanat%bugzilla.org
c6ee7aa266 Bump the version number post-release 
git-svn-id: svn://10.0.0.236/branches/BUGZILLA-4_0-BRANCH@263216 18797224-902f-48f8-a5cc-f745e15eee43
 2011-12-29 18:03:54 +00:00
mkanat%bugzilla.org
b109733298 Bump version for 4.0.3 
git-svn-id: svn://10.0.0.236/branches/BUGZILLA-4_0-BRANCH@263207 18797224-902f-48f8-a5cc-f745e15eee43
 2011-12-28 23:16:24 +00:00
mkanat%bugzilla.org
118c8d3319 Bug 711714: (CVE-2011-3667) [SECURITY] The User.offer_account_by_email WebService method lets you create new user accounts independently of the value of Bugzilla::Auth::Verify::*::user_can_create_account 
r=dkl a=LpSolit


git-svn-id: svn://10.0.0.236/branches/BUGZILLA-4_0-BRANCH@263205 18797224-902f-48f8-a5cc-f745e15eee43
 2011-12-28 22:21:31 +00:00
mkanat%bugzilla.org
f3cb64b4d1 Bug 697699 - (CVE-2011-3657) [SECURITY] XSS when viewing new charts or tabular and graphical reports in debug mode 
r=gerv, a=LpSolit


git-svn-id: svn://10.0.0.236/branches/BUGZILLA-4_0-BRANCH@263202 18797224-902f-48f8-a5cc-f745e15eee43
 2011-12-28 22:03:37 +00:00
mkanat%bugzilla.org
5700ff9ce4 Bug 644281: When the sort order of a buglist is modified, the "Show next bug in my list" user pref still uses the original sort order to decide which bug to display next 
r=glob a=LpSolit


git-svn-id: svn://10.0.0.236/branches/BUGZILLA-4_0-BRANCH@263147 18797224-902f-48f8-a5cc-f745e15eee43
 2011-12-08 23:32:33 +00:00
mkanat%bugzilla.org
de0268f582 Bug 657290: Bug.add_attachment() stores truncated timestamps in the DB (seconds are missing) 
r=dkl a=mkanat


git-svn-id: svn://10.0.0.236/branches/BUGZILLA-4_0-BRANCH@263137 18797224-902f-48f8-a5cc-f745e15eee43
 2011-12-06 12:05:31 +00:00
mkanat%bugzilla.org
6df13f362e Bug 550299: User fields are left blank in buglists and whines when local user accounts are used (i.e. they have no @company.com suffix) 
r=mkanat a=LpSolit


git-svn-id: svn://10.0.0.236/branches/BUGZILLA-4_0-BRANCH@263136 18797224-902f-48f8-a5cc-f745e15eee43
 2011-12-06 12:04:13 +00:00
mkanat%bugzilla.org
0b85a2884f Bug 692354: Incorrect parameter type in WebServices documentation for Bug.add_comment 
r/a=mkanat


git-svn-id: svn://10.0.0.236/branches/BUGZILLA-4_0-BRANCH@263135 18797224-902f-48f8-a5cc-f745e15eee43
 2011-12-05 21:35:28 +00:00
mkanat%bugzilla.org
2e4cca9c0c Bug 707594: Fix broken account lockout notifications 
r=LpSolit, a=LpSolit


git-svn-id: svn://10.0.0.236/branches/BUGZILLA-4_0-BRANCH@263130 18797224-902f-48f8-a5cc-f745e15eee43
 2011-12-05 16:48:52 +00:00
mkanat%bugzilla.org
c6d56a2e9e Bug 701350: Oracle crashes if the 'maxattachmentsize' parameter is set to a too small value 
r/a=mkanat


git-svn-id: svn://10.0.0.236/branches/BUGZILLA-4_0-BRANCH@263129 18797224-902f-48f8-a5cc-f745e15eee43
 2011-12-05 16:17:32 +00:00
mkanat%bugzilla.org
2f50aaf522 Bug 685552 - Email auto-completion causes server to thrash 
r/a=mkanat


git-svn-id: svn://10.0.0.236/branches/BUGZILLA-4_0-BRANCH@263012 18797224-902f-48f8-a5cc-f745e15eee43
 2011-10-24 22:19:56 +00:00
mkanat%bugzilla.org
1144f41a1a Bug 686860: Correctly calculate Hours Worked in buglists 
r/a=mkanat


git-svn-id: svn://10.0.0.236/branches/BUGZILLA-4_0-BRANCH@262992 18797224-902f-48f8-a5cc-f745e15eee43
 2011-10-18 21:46:29 +00:00
mkanat%bugzilla.org
a644285360 Bug 691243: Fix typo 
r/a=LpSolit


git-svn-id: svn://10.0.0.236/branches/BUGZILLA-4_0-BRANCH@262987 18797224-902f-48f8-a5cc-f745e15eee43
 2011-10-15 13:35:13 +00:00
mkanat%bugzilla.org
d784f25d96 $user->is_mover no longer exists, see bug 556422 
git-svn-id: svn://10.0.0.236/branches/BUGZILLA-4_0-BRANCH@262956 18797224-902f-48f8-a5cc-f745e15eee43
 2011-10-04 21:47:29 +00:00
mkanat%bugzilla.org
325e07d936 Bug 682203 - migrate.pl fails at requirements check. 
r/a=mkanat


git-svn-id: svn://10.0.0.236/branches/BUGZILLA-4_0-BRANCH@262779 18797224-902f-48f8-a5cc-f745e15eee43
 2011-08-31 13:32:51 +00:00
mkanat%bugzilla.org
ceed5cb286 Bug 678772: version.pm 0.92 and newer forbids negative values, making checksetup.pl to fail 
r/a=mkanat


git-svn-id: svn://10.0.0.236/branches/BUGZILLA-4_0-BRANCH@262663 18797224-902f-48f8-a5cc-f745e15eee43
 2011-08-16 01:49:56 +00:00
mkanat%bugzilla.org
a0ab02e077 Bug 654496: Duplicate bug detection doesn't work when using Oracle 
r/a=mkanat


git-svn-id: svn://10.0.0.236/branches/BUGZILLA-4_0-BRANCH@262662 18797224-902f-48f8-a5cc-f745e15eee43
 2011-08-16 01:48:50 +00:00
mkanat%bugzilla.org
60e9f66f35 Bug 582209: Bugzilla::DB::Oracle::adjust_statement() LIMIT code corrupts sub-selects 
r/a=mkanat


git-svn-id: svn://10.0.0.236/branches/BUGZILLA-4_0-BRANCH@262661 18797224-902f-48f8-a5cc-f745e15eee43
 2011-08-16 01:32:37 +00:00
mkanat%bugzilla.org
ff3c7d989a Bug 677187: If the attachment filename contains a newline, an error is thrown when trying to download the attachment 
r=mkanat a=LpSolit


git-svn-id: svn://10.0.0.236/branches/BUGZILLA-4_0-BRANCH@262638 18797224-902f-48f8-a5cc-f745e15eee43
 2011-08-10 00:01:23 +00:00
mkanat%bugzilla.org
129123c8c8 Bump version number post-release. 
git-svn-id: svn://10.0.0.236/branches/BUGZILLA-4_0-BRANCH@262609 18797224-902f-48f8-a5cc-f745e15eee43
 2011-08-06 00:17:34 +00:00
mkanat%bugzilla.org
fa4ba15e37 Bump version number for 4.0.2. 
git-svn-id: svn://10.0.0.236/branches/BUGZILLA-4_0-BRANCH@262591 18797224-902f-48f8-a5cc-f745e15eee43
 2011-08-05 00:17:43 +00:00
mkanat%bugzilla.org
6772fb21a0 Bug 637981: (CVE-2011-2379) [SECURITY] "Raw Unified" patch diffs can cause XSS on this domain in IE 6-8 and Safari 
r/a=LpSolit


git-svn-id: svn://10.0.0.236/branches/BUGZILLA-4_0-BRANCH@262585 18797224-902f-48f8-a5cc-f745e15eee43
 2011-08-04 20:49:57 +00:00
mkanat%bugzilla.org
5db8cada1d Bug 660502: (CVE-2011-2977) [SECURITY] Temporary files for uploaded attachments are not deleted on Windows 
r=glob a=LpSolit


git-svn-id: svn://10.0.0.236/branches/BUGZILLA-4_0-BRANCH@262584 18797224-902f-48f8-a5cc-f745e15eee43
 2011-08-04 20:33:34 +00:00
mkanat%bugzilla.org
bc09cda02b Bug 653477: (CVE-2011-2380) [SECURITY] Group names can be guessed when creating or editing a bug 
r=mkanat a=LpSolit


git-svn-id: svn://10.0.0.236/branches/BUGZILLA-4_0-BRANCH@262581 18797224-902f-48f8-a5cc-f745e15eee43
 2011-08-04 20:17:35 +00:00
mkanat%bugzilla.org
8be8caaeb6 Bug 657158 - (CVE-2011-2381) [SECURITY] Request email headers for attachment containing newline are corrupt 
[r=LpSolit a=LpSolit]


git-svn-id: svn://10.0.0.236/branches/BUGZILLA-4_0-BRANCH@262579 18797224-902f-48f8-a5cc-f745e15eee43
 2011-08-04 19:32:30 +00:00
mkanat%bugzilla.org
860536e019 Bug 655910: When calling ./install-module.pl --all, install LWP before XML::Twig, else arguments passed to build XML::Twig are propagated to Net::HTTP which then fails 
r/a=mkanat


git-svn-id: svn://10.0.0.236/branches/BUGZILLA-4_0-BRANCH@262567 18797224-902f-48f8-a5cc-f745e15eee43
 2011-08-03 08:02:35 +00:00
mkanat%bugzilla.org
23bf68ef9b Bug 634812: Having a very large number of custom fields can make displaying show_bug.cgi slow 
r=glob a=LpSolit


git-svn-id: svn://10.0.0.236/branches/BUGZILLA-4_0-BRANCH@262562 18797224-902f-48f8-a5cc-f745e15eee43
 2011-08-01 08:48:47 +00:00
mkanat%bugzilla.org
125ef08b3d Bug 673702: Undefined get_add_fk_sql in Bugzilla/DB/Schema.pm 
r=mkanat a=LpSolit


git-svn-id: svn://10.0.0.236/branches/BUGZILLA-4_0-BRANCH@262556 18797224-902f-48f8-a5cc-f745e15eee43
 2011-07-31 12:18:21 +00:00
mkanat%bugzilla.org
d4bebc7db2 Bug 655912: install-module.pl is unable to install LWP::UserAgent on Perl <5.8.8, because LWP 6.0 now requires 5.8.8 as a minimum 
r/a=mkanat


git-svn-id: svn://10.0.0.236/branches/BUGZILLA-4_0-BRANCH@262554 18797224-902f-48f8-a5cc-f745e15eee43
 2011-07-31 12:02:44 +00:00
mkanat%bugzilla.org
70429b5e6a Bug 652663 - When using bug_format_comment hook some replacements can happen more than once causing broken links 
r/a=LpSolit


git-svn-id: svn://10.0.0.236/branches/BUGZILLA-4_0-BRANCH@262521 18797224-902f-48f8-a5cc-f745e15eee43
 2011-07-25 05:32:46 +00:00
mkanat%bugzilla.org
21c4f5f0a6 Bug 600810: Use XMLRPC::Transport::HTTP:Apache as base class under mod_perl 
r/a=mkanat


git-svn-id: svn://10.0.0.236/branches/BUGZILLA-4_0-BRANCH@262511 18797224-902f-48f8-a5cc-f745e15eee43
 2011-07-20 17:01:25 +00:00
mkanat%bugzilla.org
801e541b15 Bug 657561: Invalid XMLRPC response generated if an optional custom integer field is empty 
(we should return undef rather than an empty string when a field is undefined)
r/a=LpSolit


git-svn-id: svn://10.0.0.236/branches/BUGZILLA-4_0-BRANCH@262465 18797224-902f-48f8-a5cc-f745e15eee43
 2011-07-06 14:34:42 +00:00
mkanat%bugzilla.org
b65ff8338c Bug 658929 - User autocomplete is very slow when there are lots of users in the profiles table 
Reverted patch that changed disabledtext = '' to LENGTH(disabledtext) = 0 as gave no real improvement.


git-svn-id: svn://10.0.0.236/branches/BUGZILLA-4_0-BRANCH@262461 18797224-902f-48f8-a5cc-f745e15eee43
 2011-07-05 22:09:30 +00:00
mkanat%bugzilla.org
2e349ab7ce Bug 658929 - User autocomplete is very slow when there are lots of users in the profiles table 
r=glob, a=mkanat


git-svn-id: svn://10.0.0.236/branches/BUGZILLA-4_0-BRANCH@262402 18797224-902f-48f8-a5cc-f745e15eee43
 2011-06-15 19:37:18 +00:00
mkanat%bugzilla.org
0504a69d88 Bug 663208: Recursive "Verify new product details" page when attempting to move multiple bugs to another product 
r/a=mkanat


git-svn-id: svn://10.0.0.236/branches/BUGZILLA-4_0-BRANCH@262379 18797224-902f-48f8-a5cc-f745e15eee43
 2011-06-11 01:37:04 +00:00
mkanat%bugzilla.org
f8e2b97b66 Bug 649281 - Add ircs:// to url protocols for external links in comment 
author=Matt Selsky, r=dkl, a=LpSolit


git-svn-id: svn://10.0.0.236/branches/BUGZILLA-4_0-BRANCH@262370 18797224-902f-48f8-a5cc-f745e15eee43
 2011-06-06 20:22:14 +00:00
mkanat%bugzilla.org
f82b7bde18 Bug 659816: Fix url_decoding of utf8 strings 
r=mkanat, a=mkanat


git-svn-id: svn://10.0.0.236/branches/BUGZILLA-4_0-BRANCH@262350 18797224-902f-48f8-a5cc-f745e15eee43
 2011-05-30 08:33:40 +00:00
mkanat%bugzilla.org
4de0952ec6 Bug 659185: html_quote() escapes @ causing mailto links to not be processed 
r/a=mkanat


git-svn-id: svn://10.0.0.236/branches/BUGZILLA-4_0-BRANCH@262340 18797224-902f-48f8-a5cc-f745e15eee43
 2011-05-24 07:05:38 +00:00
mkanat%bugzilla.org
fe885067ed Bug 648096: UWinnipeg (theory PPM repo) instructions are not necessary with recent ActiveState releases 
r=mkanat a=LpSolit


git-svn-id: svn://10.0.0.236/branches/BUGZILLA-4_0-BRANCH@262331 18797224-902f-48f8-a5cc-f745e15eee43
 2011-05-22 23:03:41 +00:00
mkanat%bugzilla.org
1af3f824a7 Bug 653341: Bug.create() fails to error out if an invalid group is passed 
r/a=mkanat


git-svn-id: svn://10.0.0.236/branches/BUGZILLA-4_0-BRANCH@262298 18797224-902f-48f8-a5cc-f745e15eee43
 2011-05-06 21:05:42 +00:00
mkanat%bugzilla.org
d97a1b8183 Bug 652625 - Empty queries still get run because the list_id parameter is added to them 
r/a=mkanat


git-svn-id: svn://10.0.0.236/branches/BUGZILLA-4_0-BRANCH@262286 18797224-902f-48f8-a5cc-f745e15eee43
 2011-05-04 22:03:57 +00:00
mkanat%bugzilla.org
b545bc6e2b Bump the version number post-release. 
git-svn-id: svn://10.0.0.236/branches/BUGZILLA-4_0-BRANCH@262263 18797224-902f-48f8-a5cc-f745e15eee43
 2011-04-28 04:06:09 +00:00
mkanat%bugzilla.org
5b34a99432 Bump version number for 4.0.1. 
git-svn-id: svn://10.0.0.236/branches/BUGZILLA-4_0-BRANCH@262257 18797224-902f-48f8-a5cc-f745e15eee43
 2011-04-28 02:18:43 +00:00