Age | Commit message (Collapse) | Author | Files | Lines | |
---|---|---|---|---|---|
2012-11-14 | Bump version post-release | Dave Lawrence | 1 | -1/+1 | |
https://bugzilla.mozilla.org/show_bug.cgi?id=805644 | |||||
2012-11-13 | Bump version to 4.2.4 | Dave Lawrence | 2 | -3/+3 | |
https://bugzilla.mozilla.org/show_bug.cgi?id=805644 | |||||
2012-11-13 | Bug 790296 (CVE-2012-4189): [SECURITY] Field values are not escaped ↵ | Frédéric Buclin | 2 | -2/+2 | |
correctly in tabular reports r=dkl a=LpSolit | |||||
2012-11-13 | Bug 808845 (CVE-2012-5475): [SECURITY] Security vulnerability in YUI's ↵ | Frédéric Buclin | 1 | -0/+0 | |
swfstore.swf in YUI 2.8.2 and 2.9.0 a=LpSolit | |||||
2012-11-13 | Bug 781850 (CVE-2012-4198): [SECURITY] Do not leak the existence of groups ↵ | Frédéric Buclin | 2 | -6/+21 | |
when using User.get() r=dkl a=LpSolit | |||||
2012-11-13 | Bug 802204 (CVE-2012-4197): [SECURITY] Marking an attachment you cannot see ↵ | Frédéric Buclin | 2 | -5/+1 | |
as obsolete can disclose its description r=gerv a=LpSolit | |||||
2012-11-13 | Bug 731178 (CVE-2012-4199): [SECURITY] field-events.js.tmpl discloses ↵ | Frédéric Buclin | 2 | -9/+21 | |
product and component names that the user is not allowed to see r=dkl a=LpSolit | |||||
2012-11-03 | Back out the last checkin, it was already there | Frédéric Buclin | 1 | -3/+0 | |
2012-11-03 | Bug 805647: One more item for the 4.2.4 release notes | Frédéric Buclin | 1 | -0/+3 | |
2012-11-03 | Bug 804505: Oracle crashes when typing "word1 word2" in QuickSearch with ↵ | Frédéric Buclin | 3 | -9/+10 | |
"ORA-29907: found duplicate labels in primary invocations" r=dkl a=LpSolit | |||||
2012-11-02 | Bug 806012: Installation docs need to be updated with instructions for bzr | Frédéric Buclin | 2 | -6/+6 | |
r=dkl a=LpSolit | |||||
2012-11-02 | Fix typo | Frédéric Buclin | 1 | -1/+1 | |
2012-11-02 | Bug 807937: Fix POD | Koosha Khajeh Moogahi | 1 | -6/+7 | |
r/a=LpSolit | |||||
2012-10-26 | Bug 805647: Release notes for Bugzilla 4.2.4 | Frédéric Buclin | 1 | -3/+50 | |
r=dkl | |||||
2012-10-25 | Bug 610767: contrib/convert-workflow.pl should add transitions from RESOLVED ↵ | Frédéric Buclin | 1 | -3/+46 | |
and VERIFIED to CONFIRMED (if transitions to REOPENED were present) r=dkl a=LpSolit | |||||
2012-10-19 | Bug 531243: Bugzilla crashes on show_bug if it's hit while a custom field is ↵ | Frédéric Buclin | 1 | -1/+9 | |
being added r=justdave a=LpSolit | |||||
2012-10-19 | Bug 780053: Oracle crashes when listing keywords or flags in buglists | David Taylor | 1 | -9/+13 | |
r/a=LpSolit | |||||
2012-10-16 | Bug 799721: PostgreSQL 9.2 requires DBD::Pg 2.19.3 | Frédéric Buclin | 1 | -4/+5 | |
r=glob a=LpSolit | |||||
2012-10-14 | Bug 781314: The behavior of tags changed | Frédéric Buclin | 1 | -11/+5 | |
r=wicked a=LpSolit | |||||
2012-10-13 | Fix typo | Frédéric Buclin | 1 | -1/+1 | |
2012-10-12 | s/sortey/sortkey/g | Frédéric Buclin | 1 | -2/+2 | |
2012-10-12 | Bug 790129: Bugzilla->fields returns fields in random order (the sortkey is ↵ | Simon Green | 1 | -2/+3 | |
ignored) r/a=LpSolit | |||||
2012-10-12 | Bug 793826: Prevent private web service methods from being called | Koosha Khajeh Moogahi | 1 | -1/+3 | |
r=dkl a=LpSolit | |||||
2012-10-11 | Bug 798994: Fix incorrect double escaping when displaying saved queries URLs | Simon Green | 1 | -1/+1 | |
r=glob, a=LpSolit | |||||
2012-10-09 | Bug 753635: Allow editing local see also even if you cannot edit the other bug | Simon Green | 1 | -3/+7 | |
r=glob, a=LpSolit | |||||
2012-10-08 | Bug 652047: checksetup.pl fails to compile/run if the Voting extension is ↵ | Frédéric Buclin | 2 | -1/+33 | |
enabled on a fresh install r=glob a=LpSolit | |||||
2012-10-04 | Bug 790909: Editing dependencies from the "Change Several Bugs at Once" page ↵ | Frédéric Buclin | 1 | -1/+1 | |
does not work as expected (bug IDs are incorrectly parsed) r=dkl a=LpSolit | |||||
2012-10-04 | Bug 788098: Queries involving group substitution crash when ↵ | Frédéric Buclin | 2 | -6/+14 | |
usevisibilitygroups is enabled r=dkl a=LpSolit | |||||
2012-10-04 | Bug 794389: There is no field named 'actual_time' when generating reports | Frédéric Buclin | 1 | -0/+4 | |
r=glob a=LpSolit | |||||
2012-10-03 | Bug 757935: Bugs with resolution MOVED cannot be edited | Frédéric Buclin | 1 | -1/+3 | |
r=glob a=LpSolit | |||||
2012-09-29 | Bug 793893: Tabular reports crash when no format parameter is defined | Frédéric Buclin | 3 | -7/+5 | |
r=glob a=LpSolit | |||||
2012-09-17 | Bug 761046: Don't redirect when hitting buglist.cgi directly to avoid ↵ | Byron Jones | 1 | -1/+0 | |
duplicate cgi->header calls r=LpSolit, a=LpSolit | |||||
2012-09-14 | Update POD to fix bustage in Perl 5.16.1 | Frédéric Buclin | 2 | -0/+7 | |
r=runtests.pl | |||||
2012-09-13 | Bug 680771 - Send X-XSS-Protection header for XSS prevention/blocking | Reed Loden | 1 | -0/+4 | |
[r=mkanat a=LpSolit] | |||||
2012-09-11 | Bug 790215 - Flag names are not properly escaped when displayed on confirm ↵ | Reed Loden | 2 | -2/+1 | |
user match page [r=LpSolit a=LpSolit] | |||||
2012-09-09 | Bug 671612: Send "X-Content-Type-Options: nosniff" with every response | Matt Selsky | 3 | -4/+5 | |
r/a=LpSolit | |||||
2012-09-03 | Bug 786889: Add missing 'Summary (first 60 chars)' header to CSV output | Matt Tyson | 1 | -0/+1 | |
r=glob, a=LpSolit | |||||
2012-08-30 | Bumped version post-release | Dave Lawrence | 1 | -1/+1 | |
2012-08-30 | Bump version to 4.2.3 | Dave Lawrence | 2 | -3/+3 | |
2012-08-30 | Bug 785470: (CVE-2012-3981) [SECURITY] Missing escaping of the username can ↵ | Reed Loden | 1 | -0/+2 | |
lead to LDAP injection r/a=LpSolit | |||||
2012-08-30 | Bug 785522: [SECURITY] Block access to templates in extensions/ | Frédéric Buclin | 1 | -1/+1 | |
r=glob a=LpSolit | |||||
2012-08-30 | Bug 731156: [Oracle] Adding or removing a DB column does not handle SERIAL ↵ | Frédéric Buclin | 2 | -29/+97 | |
correctly r=dkl a=LpSolit | |||||
2012-08-30 | Bug 786351: Release notes for Bugzilla 4.2.3 | Frédéric Buclin | 1 | -0/+41 | |
r=dkl a=LpSolit | |||||
2012-08-29 | Bug 772620: Ignore empty strings in the CC list | Frédéric Buclin | 1 | -0/+2 | |
r=dkl a=LpSolit | |||||
2012-08-29 | Bug 786310: Remove tokens when saving the default query | Byron Jones | 1 | -0/+2 | |
r= LpSolit, a=LpSolit | |||||
2012-08-29 | Fix more bustage caused by Bug 772953 | Byron Jones | 1 | -4/+6 | |
2012-08-29 | Fix bustage caused by Bug 772953 | Byron Jones | 1 | -1/+4 | |
2012-08-28 | Bug 772953: Remove the token from buglist urls | Byron Jones | 4 | -3/+24 | |
r=dkl, a=LpSolit | |||||
2012-08-27 | Bug 785917: Custom field descriptions are not properly escaped when ↵ | Frédéric Buclin | 2 | -2/+1 | |
displayed as bug list column headers r=glob a=LpSolit | |||||
2012-08-26 | Bug 559539: [Oracle] whine.pl sets run_next incorrectly due to CURRENT_DATE | David Taylor | 1 | -3/+5 | |
r/a=LpSolit |