summaryrefslogtreecommitdiffstats
path: root/docs
diff options
context:
space:
mode:
authormatty%chariot.net.au <>2008-04-04 13:47:49 +0200
committermatty%chariot.net.au <>2008-04-04 13:47:49 +0200
commit6bec3fb65381f6ec2d8e12e8bf49802cc070ca0a (patch)
treec5e44b609e1521d818c782a02bac9b3ad571e1b8 /docs
parent1116a167cc4e5dd9a578ec77b3b99c8fb060898f (diff)
downloadbugzilla-6bec3fb65381f6ec2d8e12e8bf49802cc070ca0a.tar.gz
bugzilla-6bec3fb65381f6ec2d8e12e8bf49802cc070ca0a.tar.xz
Release notes updates.
Diffstat (limited to 'docs')
-rw-r--r--docs/en/rel_notes.txt38
1 files changed, 31 insertions, 7 deletions
diff --git a/docs/en/rel_notes.txt b/docs/en/rel_notes.txt
index c9bd0237a..190feee24 100644
--- a/docs/en/rel_notes.txt
+++ b/docs/en/rel_notes.txt
@@ -21,7 +21,7 @@ bugzilla.mozilla.org unless otherwise specified.
*** Recommended Practice For The Upgrade ***
-As always, please ensure you have ran checksetup.pl after
+As always, please ensure you have run checksetup.pl after
replacing the files in your installation.
It is recommended that you view the sanity check page
@@ -136,7 +136,7 @@ fix the problem on your installation.
(bug 130821)
***********************************************
-*** USERS UPGRADING FROM 2.16.1 OR EARLIER ***
+*** USERS UPGRADING FROM 2.16.2 OR EARLIER ***
***********************************************
*** SECURITY ISSUES RESOLVED ***
@@ -147,9 +147,26 @@ fix the problem on your installation.
*** Bug fixes of note ***
-*********************************************
-*** USERS UPGRADING FROM 2.16 OR EARLIER ***
-*********************************************
+*****************************************************************
+*** USERS UPGRADING FROM 2.16.1 OR EARLIER, 2.14.4 OR EARLIER ***
+*****************************************************************
+
+*** SECURITY ISSUES RESOLVED ***
+
+- Fixed a cross site scriptability issue in quips. This is only a problem
+ if quips with HTML could have been inserted into your quips files. Bugzilla
+ has not allowed this since 2.12.
+ (bug 179329)
+- checksetup.pl will now attempt to prevent access to "editor backups" of
+ localconfig.
+ (bug 186383)
+- collectstats.pl no longer makes data/mining (which contains graphing
+ information) world writeable.
+ (bug 183188)
+
+***********************************************
+*** USERS UPGRADING FROM 2.16.0 OR EARLIER ***
+***********************************************
*** SECURITY ISSUES RESOLVED ***
@@ -190,7 +207,7 @@ See also next major section.
See also next section.
******************************************************
-*** USERS UPGRADING FROM 2.14.3 OR EARLIER, 2.16.0 ***
+*** USERS UPGRADING FROM 2.16.0, 2.14.3 OR EARLIER ***
******************************************************
*** SECURITY ISSUES RESOLVED ***
@@ -218,7 +235,7 @@ See also next section.
(bug 160631)
***********************************************
-*** USERS UPGRADING FROM 2.14.4 OR EARLIER ***
+*** USERS UPGRADING FROM 2.14.5 OR EARLIER ***
***********************************************
*** SECURITY ISSUES RESOLVED ***
@@ -435,6 +452,13 @@ See also next section.
(bug 143091)
***********************************************
+*** USERS UPGRADING FROM 2.14.4 OR EARLIER ***
+***********************************************
+
+See section above about users upgrading from 2.16.1 or earlier,
+2.14.4 or earlier.
+
+***********************************************
*** USERS UPGRADING FROM 2.14.3 OR EARLIER ***
***********************************************