Bug 912641: Release notes for Bugzilla 4.4.1

template/en/default/pages/release-notes.html.tmpl

@@ -16,7 +16,7 @@
 
 <ul class="bz_toc">
   <li><a href="#v44_introduction">Introduction</a></li>
-  <!-- li><a href="#v44_point">Updates in this 4.4.x Release</a></li -->
+  <li><a href="#v44_point">Updates in this 4.4.x Release</a></li>
   <li><a href="#v44_req">Minimum Requirements</a></li>
   <li><a href="#v44_feat">New Features and Improvements</a></li>
   <li><a href="#v44_issues">Outstanding Issues</a></li>
@@ -43,8 +43,51 @@
   this one, <strong>particularly the Upgrading section of each version's
   release notes</strong>.</p>
 
-<!-- h2 id="v44_point">Updates in this 4.4.x Release</h2 -->
+<h2 id="v44_point">Updates in this 4.4.x Release</h2>
 
+<h3>4.4.1</h3>
+
+<p>This release fixes several security issues. See the
+  <a href="http://www.bugzilla.org/security/4.0.10/">Security Advisory</a>
+  for details.</p>
+
+<p>In addition, the following [% terms.bugs %] have been fixed in this release:</p>
+
+<ul>
+  <li><kbd>checksetup.pl</kbd> no longer fails with "Invalid version format (non-numeric data)"
+    when a Perl module contains an invalid version number.
+    (<a href="https://bugzilla.mozilla.org/show_bug.cgi?id=781672">[% terms.Bug %] 781672</a>)</li>
+  <li>Internet Explorer 11 and KHTML-based browsers such as Konqueror can now
+    display buglists correctly.
+    (<a href="https://bugzilla.mozilla.org/show_bug.cgi?id=902515">[% terms.Bug %] 902515</a> and
+    <a href="https://bugzilla.mozilla.org/show_bug.cgi?id=914262">[% terms.bug %] 914262</a>)</li>
+  <li>When editing several [% terms.bugs %] at once and moving them into a new
+    product, [% terms.bugs %] restricted to a group in the old product could
+    loose these group restrictions in the new product.
+    (<a href="https://bugzilla.mozilla.org/show_bug.cgi?id=769134">[% terms.Bug %] 769134</a>)</li>
+  <li>When the <kbd>password_complexity</kbd> parameter was set to
+    'letters_numbers_specialchars', passwords containing numbers and special
+    characters only were accepted. Now it makes sure that a letter is also present.
+    (<a href="https://bugzilla.mozilla.org/show_bug.cgi?id=897264">[% terms.Bug %] 897264</a>)</li>
+  <li>Large dependency trees are now displayed much faster.
+    (<a href="https://bugzilla.mozilla.org/show_bug.cgi?id=917370">[% terms.Bug %] 917370</a>)</li>
+  <li>When a user has set many votes, the "Votes" page is now displayed much faster.
+    (<a href="https://bugzilla.mozilla.org/show_bug.cgi?id=851267">[% terms.Bug %] 851267</a>)</li>
+  <li>The "My Requests" page now correctly uses the AND/OR operator for the
+    requester and requestee fields only instead of using it for all fields.
+    (<a href="https://bugzilla.mozilla.org/show_bug.cgi?id=891311">[% terms.Bug %] 891311</a>)</li>
+  <li>With DB servers doing case-insensitive comparisons, such as MySQL, tokens
+    and login cookies were not correctly validated as the case was ignored.
+    (<a href="https://bugzilla.mozilla.org/show_bug.cgi?id=906745">[% terms.Bug %] 906745</a> and
+    <a href="https://bugzilla.mozilla.org/show_bug.cgi?id=907438">[% terms.bug %] 907438</a>)</li>
+  <li>All security headers (such as X-Frame-Options) are now returned when using XML-RPC.
+    (<a href="https://bugzilla.mozilla.org/show_bug.cgi?id=787328">[% terms.Bug %] 787328</a>)</li>
+  <li>Oracle crashed when reporting a new [% terms.bug %] if a custom free-text field
+    was non-mandatory and left empty.
+    (<a href="https://bugzilla.mozilla.org/show_bug.cgi?id=919475">[% terms.Bug %] 919475</a>)</li>
+  <li>It was not possible to import [% terms.bugs %] using <kbd>importxml.pl</kbd> with Oracle.
+    (<a href="https://bugzilla.mozilla.org/show_bug.cgi?id=848063">[% terms.Bug %] 848063</a>)</li>
+</ul>
 
 <h2 id="v44_req">Minimum Requirements</h2>