Commits · 9357849d00aaf742a9ec100e56ed5f996d5d6dbb · etersoft / bugzilla · GitLab

11 Feb, 2011 6 commits
- Bug 633298 - Please add a 'form' hook to attachment/create.html.tmpl and attachment/edit.html.tmpl · 9357849d
  David Lawrence authored Feb 11, 2011
```
r/a=mkanat
```
  9357849d
- Bug 620827: Fix the bug_see_also class column length. · ce445133
  Tiago Mello authored Feb 11, 2011
```
r/a=LpSolit
```
  ce445133
- Bug 620827: Refactor remove see also to use remove_from_db instead. · f0b62420
  Tiago Mello authored Feb 10, 2011
```
r/a=mkanat
```
  f0b62420
- Fix a POD compilation error. · a744c531
  Max Kanat-Alexander authored Feb 10, 2011
```
https://bugzilla.mozilla.org/show_bug.cgi?id=633041
```
  a744c531
- Fix the POD of Bug.add_attachment to reflect that it now automatically · a7b7b39d
  Max Kanat-Alexander authored Feb 10, 2011
```
picks the content_type of text/plain when you set is_patch to true.

https://bugzilla.mozilla.org/show_bug.cgi?id=633041
```
  a7b7b39d
- Bug 633041: Add an error code for zero_length_file and fill in content_type · cee67bdc
  Max Kanat-Alexander authored Feb 10, 2011
```
for patches when content_type is missing in Bug.add_attachment in the
WebService
r=LpSolit, a=LpSolit
```
  cee67bdc
03 Feb, 2011 1 commit
- Bug 630750: Don't let "." and "lib" get into @INC when running under · 04a0f6e7
  Max Kanat-Alexander authored Feb 03, 2011
```
mod_perl
r=dkl, a=mkanat
```
  04a0f6e7
02 Feb, 2011 1 commit
- Bug 630681: Implement a MOD function for SQLite so collectstats.pl can run · 02d24f0b
  Max Kanat-Alexander authored Feb 02, 2011
```
r=mkanat, a=mkanat (module owner)
```
  02d24f0b
01 Feb, 2011 1 commit
- Bug 461014 - How to create a private attachment in enter_bug.cgi not obvious · 77eca5f6
  David Lawrence authored Feb 01, 2011
```
r=reed,a=LpSolit

https://bugzilla.mozilla.org/show_bug.cgi?id=507211
```
  77eca5f6
31 Jan, 2011 2 commits
- Redesign the Install::DB code for migrating queries to tags, including adding · bfe1550b
  Max Kanat-Alexander authored Jan 31, 2011
```
a transaction and indicate_progress.

https://bugzilla.mozilla.org/show_bug.cgi?id=616185
```
  bfe1550b
- Bug 629007: Example in quicksearch priority shortcut is incorrect · 8d21fa4e
  Graeme Coates authored Jan 31, 2011
```
r/a=mkanat
```
  8d21fa4e
30 Jan, 2011 4 commits
- Another bustage fix for bug 616185: in some cases, the columnlist parameter was… · cdc776b3
  Frédéric Buclin authored Jan 30, 2011
```
Another bustage fix for bug 616185: in some cases, the columnlist parameter was appended to the list of bugs
```
  cdc776b3
- Typo :( · 604ed541
  Frédéric Buclin authored Jan 30, 2011
```
https://bugzilla.mozilla.org/show_bug.cgi?id=616185
```
  604ed541
- Fix bustage for bug 616185: commas are encoded as %2C in Bugzilla 3.x, but not in 2.22 · 3cdd0c27
  Frédéric Buclin authored Jan 30, 2011
  
  3cdd0c27
- Bug 616185: Move tags (aka lists of bugs) to their own DB tables · 8fa9965e
  Frédéric Buclin authored Jan 30, 2011
```
r/a=mkanat
```
  8fa9965e
28 Jan, 2011 1 commit
- Bug 622080 - Change group which can moderate quips · 95bfc797
  David Lawrence authored Jan 28, 2011
```
r/a=mkanat
```
  95bfc797
27 Jan, 2011 8 commits
- Bug 622679 - Autocomplete suggests inactive/disabled accounts as matches · f6142bf5
  David Lawrence authored Jan 27, 2011
```
r/a=mkanat
```
  f6142bf5
- Allow extensions to alter quicksearch terms and search format. r=mkanat. · e237b7e7
  Gervase Markham authored Jan 27, 2011
```
https://bugzilla.mozilla.org/show_bug.cgi?id=621878
```
  e237b7e7
- Allow jobqueue.pl to run once and then exit. r=mkanat. · 2a5c9e0c
  Gervase Markham authored Jan 27, 2011
```
https://bugzilla.mozilla.org/show_bug.cgi?id=621256
```
  2a5c9e0c
- Add missing documentation. r=mkanat. · 73cdd3ef
  Gervase Markham authored Jan 27, 2011
```
https://bugzilla.mozilla.org/show_bug.cgi?id=629321
```
  73cdd3ef
- Allow addition/removal of descriptions of statuses and resolutions. r=mkanat. · 7bb569f9
  Gervase Markham authored Jan 27, 2011
```
https://bugzilla.mozilla.org/show_bug.cgi?id=616453
```
  7bb569f9
- Fix bustage; diffs is an arrayref in 4.0, an array on trunk. · a44842f1
  Gervase Markham authored Jan 27, 2011
```
https://bugzilla.mozilla.org/show_bug.cgi?id=616422
```
  a44842f1
- Update default column list to something more sensible. r=mkanat, lpsolit, wurblzap. · 065c567b
  Gervase Markham authored Jan 27, 2011
```
https://bugzilla.mozilla.org/show_bug.cgi?id=621676
```
  065c567b
- Add diffs parameter to bugmail_recipients hook. r=mkanat. · edfb8c95
  Gervase Markham authored Jan 27, 2011
```
https://bugzilla.mozilla.org/show_bug.cgi?id=616422
```
  edfb8c95
25 Jan, 2011 1 commit
- Make param pages without a sortkey sort to the end. r=dkl, a=lpsolit. · 00e1708f
  Gervase Markham authored Jan 25, 2011
```
https://bugzilla.mozilla.org/show_bug.cgi?id=621255
```
  00e1708f
24 Jan, 2011 11 commits
- Bug 619594: (CVE-2010-4568) [SECURITY] Improve the randomness of · 95b919c0
  Max Kanat-Alexander authored Jan 24, 2011
```
generate_random_password, to protect against an account compromise issue
and other critical vulnerabilities.
r=LpSolit, a=LpSolit

https://bugzilla.mozilla.org/show_bug.cgi?id=621591
```
  95b919c0
- Bug 621105 - [SECURITY] Voting lacks CSRF protection · ad1e3aef
  David Lawrence authored Jan 24, 2011
```
r=mkanat,a=LpSolit
```
  ad1e3aef
- Bug 619588: (CVE-2010-4567) [SECURITY] Safety checks that disallow clicking for… · 9244270a
  Frédéric Buclin authored Jan 24, 2011
```
Bug 619588: (CVE-2010-4567) [SECURITY] Safety checks that disallow clicking for javascript: or data: URLs in the URL field can be evaded with prefixed whitespace

and

Bug 628034: (CVE-2011-0048) [SECURITY] For not-logged-in users, the URL field doesn't safeguard against javascript: or data: URLs

r=dkl a=LpSolit
```
  9244270a
- Bug 621572: (CVE-2010-4572) [SECURITY] chart.cgi vulnerable to header-injection… · 38eeecf6
  Reed Loden authored Jan 24, 2011
```
Bug 621572: (CVE-2010-4572) [SECURITY] chart.cgi vulnerable to header-injection due to use of |print "Location:"| instead of $cgi->redirect
[r=mkanat a=LpSolit]
```
  38eeecf6
- Bug 619648: (CVE-2010-4570) [SECURITY] XSS via summary in "possible duplicates"… · 078c4931
  Reed Loden authored Jan 24, 2011
```
Bug 619648: (CVE-2010-4570) [SECURITY] XSS via summary in "possible duplicates" table due to lack of encoding by YUI
[r=mkanat a=LpSolit]
```
  078c4931
- Bug 619637: (CVE-2010-4569) [SECURITY] XSS in user autocomplete due to lack of encoding by YUI · c283f5e7
  Reed Loden authored Jan 24, 2011
```
[r=mkanat r=dkl a=LpSolit]
```
  c283f5e7
- Bug 621110: [SECURITY] Quips (adding/approving/deleting) lacks CSRF protection · fee4dfba
  Frédéric Buclin authored Jan 24, 2011
```
r=dkl a=LpSolit
```
  fee4dfba
- Bug 621108: [SECURITY] Creating/editing charts lacks CSRF protection · 10b4a926
  Frédéric Buclin authored Jan 24, 2011
```
r=dkl a=LpSolit
```
  10b4a926
- Bug 621107: [SECURITY] Sanity checking lacks CSRF protection · f6c4abda
  Frédéric Buclin authored Jan 24, 2011
```
r=dkl a=LpSolit
```
  f6c4abda
- An optional module was accidentally listed in the "required" section of the · 4ab5bc9f
  Max Kanat-Alexander authored Jan 23, 2011
```
release notes.

https://bugzilla.mozilla.org/show_bug.cgi?id=627910
```
  4ab5bc9f
- Bug 627910: Update Release Notes for Bugzilla 4.0rc2 · fdc0fa25
  Max Kanat-Alexander authored Jan 23, 2011
```
r=reed
```
  fdc0fa25
23 Jan, 2011 1 commit
- Bug 625741: Need a hook in update_fielddefs_definition to enable adding columns to fielddefs · 653b2aca
  rojanu authored Jan 23, 2011
```
r/a=mkanat
```
  653b2aca
22 Jan, 2011 3 commits
- Bug 621128 - Remove trailing whitespace from '<div id="view_disabled" >' · 8c73136c
  timeless authored Jan 22, 2011
```
[r=reed a=LpSolit]
```
  8c73136c
- Bug 624696: We need a template hook to add a description to parameters added by extensions · 3ba91b28
  rojanu authored Jan 22, 2011
```
r/a=mkanat
```
  3ba91b28
- Bug 621109: Column changing lacks CSRF protection · 721dfc64
  Frédéric Buclin authored Jan 22, 2011
```
r=dkl a=mkanat
```
  721dfc64