summaryrefslogtreecommitdiffstats
AgeCommit message (Collapse)AuthorFilesLines
2012-02-24merged with bugzilla/4.2Dave Lawrence6-8/+28
2012-02-24bug 729443: perform template filtering of comments and attachments in splinterByron Jones1-39/+41
2012-02-23Bug 729436 - Add missing validation on comments to SplinterReed Loden1-0/+1
[r=glob]
2012-02-23bug 729086: fix issues with splinter and "changes" commentsByron Jones2-75/+36
2012-02-22Updated docs for stable releaseDave Lawrence1-2/+1
2012-02-22Bumped version number post-releaseDave Lawrence1-1/+1
2012-02-22Bumped version to 4.2Dave Lawrence2-4/+4
2012-02-22Bug 725663 - (CVE-2012-0453) [SECURITY] CSRF vulnerability in the XML-RPC ↵Dave Lawrence3-0/+21
API when using mod_perl r/a=LpSolit
2012-02-21bug 728811: add a report showing group membershipByron Jones5-36/+233
2012-02-20Bug 718283: Indentation and newlines in the "Descriptive text sent within ↵Matt Selsky1-2/+2
whine message" are ignored in HTML whinemail r/a=LpSolit
2012-02-17merged with bugzilla/4.2Dave Lawrence7-39/+37
2012-02-17Bug 714370 - Add accessors to the Flag.pm object for modification_date and ↵Dave Lawrence1-13/+21
creation_date
2012-02-17Bug 721161 - Add to X-Bugzilla-Changed-Fields when a new attachment is ↵Dave Lawrence2-3/+3
created on a bug Changed from "Attachment Created" to "attachments.created" to match upstream
2012-02-16Bug 723944: Plain-text only emails are mangled when they contain non-ASCII ↵Frédéric Buclin1-1/+5
characters r=glob a=LpSolit
2012-02-15Test 1 fails if PERLLIB contains paths with whitespace.Marc Schumann1-1/+1
r=gerv; a=LpSolit https://bugzilla.mozilla.org/show_bug.cgi?id=714074
2012-02-15Bug 724464 - JSON-RPC support shouldn't require SOAP::LiteDave Lawrence2-20/+14
r/a=LpSolit
2012-02-15Bug 722113: The profile_search table has a wrong index nameFrédéric Buclin2-1/+7
r=glob a=LpSolit
2012-02-14Bug 714343 - Add ability to get flag information for bugs and attachments ↵Dave Lawrence1-4/+116
via the web service r=glob, r=LpSolit
2012-02-14Bug 727240: The POD for Bug.attachments is wrong about the format of the ↵Frédéric Buclin1-16/+10
returned data r=dkl a=LpSolit
2012-02-14bug 726932: flags are omitted from the attachment table on show_bug when the ↵Byron Jones1-2/+2
requestee hasnt set a real name
2012-02-13Bug 725923: backport bug 663835 to extend test coverage to extensionsByron Jones15-271/+168
2012-02-13Bug 726510: remove "bug" from show_bug titlesByron Jones1-0/+1
2012-02-10Bug 722335: add sort-by-bug to user activity reportByron Jones3-84/+127
2012-02-09merged with bugzilla/4.2Dave Lawrence4-8/+25
2012-02-09Bug 713213: increase apache sizelimitByron Jones1-2/+2
2012-02-08Bug 716907 - I am not permitted to file a legal bugDave Lawrence2-1/+3
r=glob
2012-02-08Fixes to errors found by sanity testsDave Lawrence3-4/+4
2012-02-08Bug 533012 - add the ability to see all the administrative actions performed ↵Dave Lawrence5-7/+36
by a user r=glob
2012-02-08Bug 722161: Clickjacking is possible in "View All" with HTML attachmentsFrédéric Buclin2-4/+21
r=dkl a=LpSolit
2012-02-07Bug 723398 - update brownbag request form to remove "Confidential Mozilla ↵Dave Lawrence1-1/+12
Corporation Bug" group r=glob
2012-02-07Bug 723512: add CC-count as a buglist columnByron Jones2-0/+20
2012-02-06add my gmail account to limitiedmailByron Jones1-0/+1
2012-02-03Bug 723646: fix broken instant searchByron Jones1-1/+1
2012-02-02bug 723394: hide disabled custom fields on multiple bugs formatByron Jones1-0/+1
2012-02-01Bump the version number post-releaseDave Lawrence1-1/+1
2012-01-31Bumped to version 4.2rc2Dave Lawrence2-4/+4
2012-01-31merged with bugzilla/4.2Dave Lawrence6-25/+52
2012-01-31(CVE-2012-0440) [SECURITY] JSON-RPC permits to bypass token checks and can ↵Frédéric Buclin2-1/+18
lead to CSRF (no victim's action required) r=mkanat a=LpSolit https://bugzilla.mozilla.org/show_bug.cgi?id=718319
2012-01-31Bug 714472: (CVE-2012-0448) [SECURITY] utf8 homoglyphs are allowed in email ↵Frédéric Buclin4-7/+5
addresses, which could allow an attacker to be CC'ed to private bugs by accident r=glob a=LpSolit
2012-01-31Bug 722224: rapid-release 13Byron Jones1-0/+8
2012-01-31Bug 714446: Product.create default behavior is broken and inconsistent with PODFrédéric Buclin1-17/+29
r=dkl a=LpSolit
2012-01-30Bug 722327: add "as bug list" to user activity reportByron Jones3-22/+28
2012-01-30Bug 721816: fix double CVE linkificationByron Jones1-5/+0
2012-01-28Bug 721879 - mozilla services security group doesn't match stylesheet for ↵Dave Lawrence1-1/+2
sec bugs
2012-01-28merged with bugzilla/4.2Dave Lawrence5-11/+45
2012-01-27Bug 720756 - Update release notes for Bugzilla 4.2rc2Dave Lawrence1-4/+8
r/a=LpSolit
2012-01-27Bug 721715: URLs in the See Also field must be detainted before inserted ↵Frédéric Buclin1-4/+3
into the DB r=dkl a=LpSolit
2012-01-26Fix bustage due to bug 715514.Tiago Mello1-1/+1
2012-01-25Bug 717217: The regexp in Bugzilla::BugUrl::JIRA::should_handle() isn'tSimon Green1-1/+1
restrictive enough (min two letters required) r=timello, a=LpSolit
2012-01-25Bug 715514: Fix showdependencytree misleading in "hide resolved" viewMatt Selsky1-2/+2
r=timello, a=LpSolit