summaryrefslogtreecommitdiffstats
AgeCommit message (Collapse)AuthorFilesLines
2012-07-26Bump version to 4.2.2Dave Lawrence2-3/+3
2012-07-26Bug 777398: (CVE-2012-1968) [SECURITY] HTML bugmail exposes information ↵Frédéric Buclin3-24/+35
about restricted bugs r=glob a=LpSolit
2012-07-26Bug 774625 - describecomponents.cgi - product category listing is not sortedMarkus Kolb1-1/+1
r=dkl, a=LpSolit
2012-07-26Bug 777555: Release notes for Bugzilla 4.2.2Frédéric Buclin1-0/+42
r=dkl a=LpSolit
2012-07-26Backout bug 768573 to fix bustageFrédéric Buclin4-6/+6
2012-07-25Bug 776103 - Syntax error in Bugzilla::User::Setting API docKoosha Khajeh Moogahi1-2/+2
r/a=LpSolit
2012-07-24Bug 753688: Classification doesn't work as z-axis on reportsFrédéric Buclin1-4/+14
r=glob a=LpSolit
2012-07-24Bug 764517: Don't automatically select the first keyword if the search ↵Byron Jones1-0/+3
string is empty r=dkl, a=LpSolit
2012-07-02Bug 553553 - We shouldn't be using terms.Bugzilla in the "please contribute" ↵Matt Selsky1-5/+6
message. r=Wurblzap, a=LpSolit
2012-06-29Bug 762783: Change dependent bugs to use POST when the url exceeds the url ↵Simon Green1-5/+21
length limit r=glob, a=LpSolit
2012-06-27Bug 768870: The "Un-forget the search" link has no tokenFrédéric Buclin1-1/+3
r=glob a=LpSolit
2012-06-26Bug 768573: Templates must INCLUDE bug/field.html.tmpl instead of PROCESS'ing itFrédéric Buclin4-6/+6
r=glob a=LpSolit
2012-06-21Bug 762785: Attachments are attached to the wrong comment when created by ↵A. Shimono1-1/+2
email_in.pl r/a=LpSolit
2012-06-09Bug 577014: [SINGLE|MULTIPLE]_SELECT custom fields with no new values, ↵Koosha Khajeh Moogahi1-0/+6
containing only the default value '---' and marked as mandatory, blocks the user to update/create a bug r/a=LpSolit
2012-06-08Bug 760075: Fix error thrown when an allwords search starts with or ends ↵Simon Green1-3/+3
with a space r=glob, a=LpSolit
2012-06-07Bug 761230: The server push page no longer displays all debug dataFrédéric Buclin1-9/+4
r=timello a=LpSolit
2012-05-29Bug 754672 - CSRF vulnerability in buglist.cgi allows possible unauthorized ↵Reed Loden2-9/+16
setting of default search options [r=LpSolit a=LpSolit]
2012-05-29Bug 754673 - CSRF vulnerability in query.cgi allows possible unauthorized ↵Reed Loden2-1/+5
use of "Set my default search back to the system default" [r=LpSolit a=LpSolit]
2012-05-29Bug 754561 - Escape HTML in keywords in the auto-complete formReed Loden1-0/+1
[r=LpSolit a=LpSolit]
2012-05-28Bug 756314: Fix dropping of unique matches when the "confirm page" page is ↵Byron Jones1-4/+4
display. r=LpSolit, a=LpSolit
2012-05-28Bug 754981: Add a link pointing to the bug itself in HTML bugmails when only ↵Koosha Khajeh Moogahi1-0/+1
a comment is added r/a=LpSolit
2012-05-24Bug 744691: Throw an error early when calling a method from a non-existent classByron Jones1-0/+1
r=dkl, a=LpSolit
2012-05-21Bug 754090: Bugzilla::FlagType::match() crashes when the group parameter is ↵Frédéric Buclin2-2/+15
not a number a=LpSolit
2012-05-17Bug 752751: Perl modules that start with a protocol (eg HTTP::Header) are ↵Simon Green1-1/+1
not escaped correctly in SAFE_URL_REGEXP r/a=LpSolit
2012-05-07Bug 744338: jobqueue.pl won't work if not called from the bugzilla/ root ↵Håkan Jerning1-1/+7
directory r/a=LpSolit
2012-04-30Bug 749074: Throw an error message instead of syntax error on invalid search ↵Byron Jones2-1/+7
type operators r=LpSolit,a=LpSolit
2012-04-19Bumping the version post-releaseDave Lawrence1-1/+1
2012-04-18Bump version to 4.2.1Dave Lawrence2-3/+3
2012-04-18Bug 745397: (CVE-2012-0466) [SECURITY] The JS template for buglists permits ↵Frédéric Buclin3-57/+0
attackers to access all bugs that the victim can see r=glob a=LpSolit
2012-04-18Bug 728639: (CVE-2012-0465) [SECURITY] User lockout policy can be bypassed ↵Frédéric Buclin3-5/+117
by altering the X-FORWARDED-FOR header r=glob a=LpSolit
2012-04-18Bug 746547: SMALLSERIAL is of type INT2, not INT1Frédéric Buclin1-1/+1
r=timello a=LpSolit
2012-04-17Bug 741078: Update relnotes for 4.2.1Frédéric Buclin1-3/+6
2012-04-17Bug 745197: Add a hook in Bugzilla::Error::_throw_error() so that extensions ↵Frédéric Buclin4-48/+101
can control the way to throw errors r=dkl a=LpSolit
2012-04-17Bug 745320: Shared queries do not work when tags are part of the queryFrédéric Buclin2-7/+12
r=dkl a=LpSolit
2012-04-17Bug 745080: Voting extension causes database deadlocksFrédéric Buclin1-1/+4
r=glob a=LpSolit
2012-04-15Comment toggling text is not localizable because it's in a .js file.Marc Schumann2-5/+3
r/a=LpSolit https://bugzilla.mozilla.org/show_bug.cgi?id=745460
2012-04-14Change columns: empty buttons when images turned off.Marc Schumann6-37/+19
r/a=LpSolit https://bugzilla.mozilla.org/show_bug.cgi?id=474747
2012-04-13Move doc of the admin_editusers_action hook at its right placeFrédéric Buclin1-24/+24
2012-04-12Bug 741078: Release notes for Bugzilla 4.2.1Frédéric Buclin1-2/+47
r=dkl
2012-04-12Bug 737436: Relative dates do not work correctly with the deadline fieldFrédéric Buclin1-5/+11
r=dkl a=LpSolit
2012-04-12Bug 744823 - Deadline throws error when selected in change history field ↵Dave Lawrence1-0/+1
list in query.cgi when not in time tracking group r/a=LpSolit
2012-04-12Fix typoFrédéric Buclin1-1/+1
2012-04-11If you're not allowed to change status or resolution, their values are being ↵Marc Schumann1-15/+24
displayed unlocalized. r/a=LpSolit https://bugzilla.mozilla.org/show_bug.cgi?id=740879
2012-04-11Bug 663377: Quicksearch using "status:" field doesn't work--it is defeated ↵Frédéric Buclin1-42/+30
by the default status selection r=dkl a=LpSolit
2012-04-11Bug 734997: The 'take' link for the assignee field doesn't work when ↵Frédéric Buclin1-7/+22
usemenuforusers is turned on r=glob a=LpSolit
2012-04-10Bug 743991: Need a new hook to update Bugzilla::Search::COLUMN_JOINSrojanu3-1/+67
r/a=LpSolit
2012-04-04Bug 58179: End date not included in the Search By Change History sectionFrédéric Buclin1-0/+5
r=dkl a=LpSolit
2012-03-31Search for start-of-time-interval in date fields is (partially?) broken.Marc Schumann1-1/+1
r/a=LpSolit https://bugzilla.mozilla.org/show_bug.cgi?id=715270
2012-03-30Fix bustage: Perl 5.8.x doesn't understand \g1 in regexp (must use \1 instead)Frédéric Buclin1-1/+1
2012-03-29Bug 554819: Quicksearch should be using Text::ParseWords instead of custom ↵Frédéric Buclin4-103/+191
code in splitString Also fixes QS with accented characters (bug 730207) r=dkl a=LpSolit