Commits · 02d24f0b9a74611ab2b0b0770188c1dd3a4f164d · etersoft / bugzilla · GitLab

02 Feb, 2011 1 commit
- Bug 630681: Implement a MOD function for SQLite so collectstats.pl can run · 02d24f0b
  Max Kanat-Alexander authored Feb 02, 2011
```
r=mkanat, a=mkanat (module owner)
```
  02d24f0b
01 Feb, 2011 1 commit
- Bug 461014 - How to create a private attachment in enter_bug.cgi not obvious · 77eca5f6
  David Lawrence authored Feb 01, 2011
```
r=reed,a=LpSolit

https://bugzilla.mozilla.org/show_bug.cgi?id=507211
```
  77eca5f6
31 Jan, 2011 2 commits
- Redesign the Install::DB code for migrating queries to tags, including adding · bfe1550b
  Max Kanat-Alexander authored Jan 31, 2011
```
a transaction and indicate_progress.

https://bugzilla.mozilla.org/show_bug.cgi?id=616185
```
  bfe1550b
- Bug 629007: Example in quicksearch priority shortcut is incorrect · 8d21fa4e
  Graeme Coates authored Jan 31, 2011
```
r/a=mkanat
```
  8d21fa4e
30 Jan, 2011 4 commits
- Another bustage fix for bug 616185: in some cases, the columnlist parameter was… · cdc776b3
  Frédéric Buclin authored Jan 30, 2011
```
Another bustage fix for bug 616185: in some cases, the columnlist parameter was appended to the list of bugs
```
  cdc776b3
- Typo :( · 604ed541
  Frédéric Buclin authored Jan 30, 2011
```
https://bugzilla.mozilla.org/show_bug.cgi?id=616185
```
  604ed541
- Fix bustage for bug 616185: commas are encoded as %2C in Bugzilla 3.x, but not in 2.22 · 3cdd0c27
  Frédéric Buclin authored Jan 30, 2011
  
  3cdd0c27
- Bug 616185: Move tags (aka lists of bugs) to their own DB tables · 8fa9965e
  Frédéric Buclin authored Jan 30, 2011
```
r/a=mkanat
```
  8fa9965e
28 Jan, 2011 1 commit
- Bug 622080 - Change group which can moderate quips · 95bfc797
  David Lawrence authored Jan 28, 2011
```
r/a=mkanat
```
  95bfc797
27 Jan, 2011 8 commits
- Bug 622679 - Autocomplete suggests inactive/disabled accounts as matches · f6142bf5
  David Lawrence authored Jan 27, 2011
```
r/a=mkanat
```
  f6142bf5
- Allow extensions to alter quicksearch terms and search format. r=mkanat. · e237b7e7
  Gervase Markham authored Jan 27, 2011
```
https://bugzilla.mozilla.org/show_bug.cgi?id=621878
```
  e237b7e7
- Allow jobqueue.pl to run once and then exit. r=mkanat. · 2a5c9e0c
  Gervase Markham authored Jan 27, 2011
```
https://bugzilla.mozilla.org/show_bug.cgi?id=621256
```
  2a5c9e0c
- Add missing documentation. r=mkanat. · 73cdd3ef
  Gervase Markham authored Jan 27, 2011
```
https://bugzilla.mozilla.org/show_bug.cgi?id=629321
```
  73cdd3ef
- Allow addition/removal of descriptions of statuses and resolutions. r=mkanat. · 7bb569f9
  Gervase Markham authored Jan 27, 2011
```
https://bugzilla.mozilla.org/show_bug.cgi?id=616453
```
  7bb569f9
- Fix bustage; diffs is an arrayref in 4.0, an array on trunk. · a44842f1
  Gervase Markham authored Jan 27, 2011
```
https://bugzilla.mozilla.org/show_bug.cgi?id=616422
```
  a44842f1
- Update default column list to something more sensible. r=mkanat, lpsolit, wurblzap. · 065c567b
  Gervase Markham authored Jan 27, 2011
```
https://bugzilla.mozilla.org/show_bug.cgi?id=621676
```
  065c567b
- Add diffs parameter to bugmail_recipients hook. r=mkanat. · edfb8c95
  Gervase Markham authored Jan 27, 2011
```
https://bugzilla.mozilla.org/show_bug.cgi?id=616422
```
  edfb8c95
25 Jan, 2011 1 commit
- Make param pages without a sortkey sort to the end. r=dkl, a=lpsolit. · 00e1708f
  Gervase Markham authored Jan 25, 2011
```
https://bugzilla.mozilla.org/show_bug.cgi?id=621255
```
  00e1708f
24 Jan, 2011 11 commits
- Bug 619594: (CVE-2010-4568) [SECURITY] Improve the randomness of · 95b919c0
  Max Kanat-Alexander authored Jan 24, 2011
```
generate_random_password, to protect against an account compromise issue
and other critical vulnerabilities.
r=LpSolit, a=LpSolit

https://bugzilla.mozilla.org/show_bug.cgi?id=621591
```
  95b919c0
- Bug 621105 - [SECURITY] Voting lacks CSRF protection · ad1e3aef
  David Lawrence authored Jan 24, 2011
```
r=mkanat,a=LpSolit
```
  ad1e3aef
- Bug 619588: (CVE-2010-4567) [SECURITY] Safety checks that disallow clicking for… · 9244270a
  Frédéric Buclin authored Jan 24, 2011
```
Bug 619588: (CVE-2010-4567) [SECURITY] Safety checks that disallow clicking for javascript: or data: URLs in the URL field can be evaded with prefixed whitespace

and

Bug 628034: (CVE-2011-0048) [SECURITY] For not-logged-in users, the URL field doesn't safeguard against javascript: or data: URLs

r=dkl a=LpSolit
```
  9244270a
- Bug 621572: (CVE-2010-4572) [SECURITY] chart.cgi vulnerable to header-injection… · 38eeecf6
  Reed Loden authored Jan 24, 2011
```
Bug 621572: (CVE-2010-4572) [SECURITY] chart.cgi vulnerable to header-injection due to use of |print "Location:"| instead of $cgi->redirect
[r=mkanat a=LpSolit]
```
  38eeecf6
- Bug 619648: (CVE-2010-4570) [SECURITY] XSS via summary in "possible duplicates"… · 078c4931
  Reed Loden authored Jan 24, 2011
```
Bug 619648: (CVE-2010-4570) [SECURITY] XSS via summary in "possible duplicates" table due to lack of encoding by YUI
[r=mkanat a=LpSolit]
```
  078c4931
- Bug 619637: (CVE-2010-4569) [SECURITY] XSS in user autocomplete due to lack of encoding by YUI · c283f5e7
  Reed Loden authored Jan 24, 2011
```
[r=mkanat r=dkl a=LpSolit]
```
  c283f5e7
- Bug 621110: [SECURITY] Quips (adding/approving/deleting) lacks CSRF protection · fee4dfba
  Frédéric Buclin authored Jan 24, 2011
```
r=dkl a=LpSolit
```
  fee4dfba
- Bug 621108: [SECURITY] Creating/editing charts lacks CSRF protection · 10b4a926
  Frédéric Buclin authored Jan 24, 2011
```
r=dkl a=LpSolit
```
  10b4a926
- Bug 621107: [SECURITY] Sanity checking lacks CSRF protection · f6c4abda
  Frédéric Buclin authored Jan 24, 2011
```
r=dkl a=LpSolit
```
  f6c4abda
- An optional module was accidentally listed in the "required" section of the · 4ab5bc9f
  Max Kanat-Alexander authored Jan 23, 2011
```
release notes.

https://bugzilla.mozilla.org/show_bug.cgi?id=627910
```
  4ab5bc9f
- Bug 627910: Update Release Notes for Bugzilla 4.0rc2 · fdc0fa25
  Max Kanat-Alexander authored Jan 23, 2011
```
r=reed
```
  fdc0fa25
23 Jan, 2011 1 commit
- Bug 625741: Need a hook in update_fielddefs_definition to enable adding columns to fielddefs · 653b2aca
  rojanu authored Jan 23, 2011
```
r/a=mkanat
```
  653b2aca
22 Jan, 2011 3 commits
- Bug 621128 - Remove trailing whitespace from '<div id="view_disabled" >' · 8c73136c
  timeless authored Jan 22, 2011
```
[r=reed a=LpSolit]
```
  8c73136c
- Bug 624696: We need a template hook to add a description to parameters added by extensions · 3ba91b28
  rojanu authored Jan 22, 2011
```
r/a=mkanat
```
  3ba91b28
- Bug 621109: Column changing lacks CSRF protection · 721dfc64
  Frédéric Buclin authored Jan 22, 2011
```
r=dkl a=mkanat
```
  721dfc64
21 Jan, 2011 6 commits
- Bug 627854: Add 'form' hook to create-guided.html.tmpl similar to create.html.tmpl · 66a3af32
  David Lawrence authored Jan 21, 2011
```
r/a=mkanat
```
  66a3af32
- Bug 591165: (CVE-2010-4411) [SECURITY] Bump minimum required version of CGI.pm… · ae5aaada
  Reed Loden authored Jan 21, 2011
```
Bug 591165: (CVE-2010-4411) [SECURITY] Bump minimum required version of CGI.pm to v3.51 in order to address header injection vulnerability.
[r=mkanat a=mkanat]
```
  ae5aaada
- Bug 627660 - Rename "Send" button on final create account page to "Create", as… · affc4b16
  Reed Loden authored Jan 21, 2011
```
Bug 627660 - Rename "Send" button on final create account page to "Create", as nothing is actually sent.
[r=mkanat a=mkanat]
```
  affc4b16
- Bug 626292: "Make description private" checkbox should set bz_private class on the comment box · 4eb82e4c
  David Lawrence authored Jan 21, 2011
```
r/a=mkanat
```
  4eb82e4c
- Bug 623608 - Add intro/outro extension hooks to footer.html.tmpl · 7f5eb650
  David Lawrence authored Jan 21, 2011
```
r/a=mkanat
```
  7f5eb650
- Bug 626658 - Add (take) link to bug edit page to allow quick assigning to the current user · bb5a73e5
  David Lawrence authored Jan 20, 2011
```
r/a=mkanat
```
  bb5a73e5
15 Jan, 2011 1 commit
- Bug 625190: Typo and Missing FK in Bugzilla::DB::Schema · fc329ec4
  David Marshall authored Jan 15, 2011
```
r/a=mkanat
```
  fc329ec4