summaryrefslogtreecommitdiffstats
AgeCommit message (Collapse)AuthorFilesLines
2012-01-12Bug 715902: Do not log personal common activities in audit_logFrédéric Buclin8-3/+23
r=dkl a=LpSolit
2012-01-11Bug 717210: If all attachments are stored locally (maxattachmentsize = 0, ↵Simon Green2-3/+3
maxlocalattachment > 0), the link to attach files to bugs is not displayed r/a=LpSolit
2012-01-11Bug 591638: In the admin page, the link to edit field values is named 'Field ↵A. Shimono1-1/+1
Values', not 'Legal Values' r/a=LpSolit
2012-01-11Bug 715650 - User auto-completion does not work in request.cgi for requester ↵Dave Lawrence1-1/+2
and requestee as expected r=timello, a=LpSolit
2012-01-11Bug 716227: When checksetup.pl tells the admin that he should edit variables ↵Frédéric Buclin2-9/+14
in localconfig, the message should be red r=timello a=LpSolit
2012-01-10Bug 716283: Clickjacking in the attachment "Details" page allows to bypass ↵Frédéric Buclin2-0/+13
token checks r=dkl a=LpSolit
2012-01-06Bug 706753 about JSON::RPC 1.01 is now fixedFrédéric Buclin1-4/+0
2012-01-06Bug 695294: The See Also field is not visible in "Format for Printing"Matt Selsky1-0/+12
r/a=LpSolit
2012-01-06Bug 319684: The documentation is unclear about how to disable quipsMatt Selsky1-7/+12
r/a=LpSolit
2012-01-06Bug 641957: The documentation should mention that the voting system is now ↵Matt Selsky1-0/+5
an extension r/a=LpSolit
2012-01-06Bug 715705: User auto-completion doesn't work for watched users in the email ↵Frédéric Buclin1-1/+2
prefs tab r=timello a=LpSolit
2012-01-06Bug 714664: The content of the "emailregexpdesc" parameter is not escaped ↵Frédéric Buclin2-2/+2
when displayed to the user r=dkl a=LpSolit
2012-01-05Bug 706753: Bugzilla will not work with newest version of JSON::RPC 1.01 due ↵Frédéric Buclin1-1/+12
to non-backward compatibility r=dkl r=mkanat a=LpSolit
2011-12-29Bump the version number post-releaseDave Lawrence1-1/+1
2011-12-29Bump version for 4.2rc1Dave Lawrence2-3/+3
2011-12-28Bug 711714: (CVE-2011-3667) [SECURITY] The User.offer_account_by_email ↵Frédéric Buclin5-46/+51
WebService method lets you create new user accounts independently of the value of Bugzilla::Auth::Verify::*::user_can_create_account r=dkl a=LpSolit
2011-12-28Bug 697699 - (CVE-2011-3657) [SECURITY] XSS when viewing new charts or ↵Byron Jones2-3/+3
tabular and graphical reports in debug mode r=gerv, a=LpSolit
2011-12-28user_autocompletion -> ajax_user_autocompletionFrédéric Buclin1-1/+1
https://bugzilla.mozilla.org/show_bug.cgi?id=713346
2011-12-28Bug 713346: Release notes for Bugzilla 4.2rc1Frédéric Buclin2-3418/+4037
r=mkanat a=LpSolit
2011-12-28Bug 713144: The SQL query to remove older searches from the profile_search ↵Frédéric Buclin1-6/+8
table should be more robust r=dkl a=LpSolit
2011-12-26Bug 683644: Foreign keys aren't renamed correctly when DB tables are renamedFrédéric Buclin7-30/+121
r=wicked a=LpSolit
2011-12-19Bug 711925: Update from 4.0 or older to 4.2 or trunk fails when bug_see_also ↵Frédéric Buclin2-2/+2
field is populated r=wicked a=LpSolit
2011-12-17Fix bustage due to bug 705474Frédéric Buclin1-0/+1
2011-12-16Last Comment Bug 685611 - delta_ts is updated even when no changes are made ↵Dave Lawrence3-3/+35
to bugs created via WebServices r/a=LpSolit
2011-12-15Bug 707428: Custom field values whose visibility depends on another field ↵Frédéric Buclin1-1/+1
value do not remain selected after editing a bug r=wicked a=LpSolit
2011-12-13Bug 705474 - CSRF vulnerability in createaccount.cgi allows possible ↵Reed Loden3-2/+13
unauthorized account creation e-mail request [r=mkanat a=mkanat]
2011-12-09Bug 644281: When the sort order of a buglist is modified, the "Show next bug ↵Frédéric Buclin2-31/+25
in my list" user pref still uses the original sort order to decide which bug to display next r=glob a=LpSolit
2011-12-08Bug 707170: Several features about custom fields are missing in the ↵Frédéric Buclin1-7/+50
documentation r=dkl a=LpSolit
2011-12-06Bug 657290: Bug.add_attachment() stores truncated timestamps in the DB ↵Frédéric Buclin1-1/+4
(seconds are missing) r=dkl a=mkanat
2011-12-05Bug 692354: Incorrect parameter type in WebServices documentation for ↵Matt Selsky1-1/+1
Bug.add_comment r/a=mkanat
2011-12-05Bug 422256: email_in.pl should send an email if user matching fails or ↵Albert Ting1-5/+14
returns too many results r/a=mkanat
2011-12-05Bug 577854: URL field header caption does not link to field value ↵Matt Selsky2-10/+7
description (confusingly links to actual URL) r/a=mkanat
2011-12-05Forgot to fix all occurences of $cache->{search_columns}->{$user->id}, see ↵Frédéric Buclin1-2/+2
bug 550299
2011-12-05Bug 550299: User fields are left blank in buglists and whines when local ↵Frédéric Buclin5-40/+24
user accounts are used (i.e. they have no @company.com suffix) r/a=mkanat
2011-12-05Bug 707594: Fix broken account lockout notificationsByron Jones1-1/+2
r=LpSolit, a=LpSolit
2011-12-05Bug 701350: Oracle crashes if the 'maxattachmentsize' parameter is set to a ↵Frédéric Buclin1-2/+6
too small value r/a=mkanat
2011-12-02Bug 591610: Custom field doc doesn't include 'Bug ID' typeFrédéric Buclin1-0/+5
r=timello a=LpSolit
2011-12-02Bug 591636: "is mandatory" is not documented in the Custom Fields sectionFrédéric Buclin1-0/+10
r=timello a=LpSolit
2011-11-29Bug 692737 - Main page icons are not centered.Marc Schumann2-27/+42
r/a=mkanat
2011-11-29Bug 686971: Fix add_see_also to ignore empty valuesTiago Mello1-0/+1
r/a=LpSolit
2011-11-29Bug 686422: Fix custom search's history interaction on HTML4 browsersByron Jones5-3/+35
r=mkanat, a=mkanat
2011-11-28Bug 687725: Adding a local bug ID in the See Also field isn't logged in the ↵Tiago Mello2-66/+34
bug history of that bug r/a=LpSolit
2011-11-28Bug 705393: Improve the error message thrown by Update.pm when ↵Frédéric Buclin3-18/+31
updates.bugzilla.org is unavailable r=glob a=LpSolit
2011-11-28Redirect the error to STDERR if a query cannot be run, see bug 277073Frédéric Buclin1-3/+3
2011-11-26Bug 368250: collectstats.pl creates files with wrong ownershipFrédéric Buclin2-17/+39
r/a=mkanat
2011-11-26Bug 255606: Do not let buglist.cgi return all bugs by defaultFrédéric Buclin9-7/+35
r/a=mkanat
2011-11-22Bug 703975: CSRF vulnerability in post_bug.cgi allows possible unauthorized ↵Frédéric Buclin4-89/+8
bug creation r=mkanat a=LpSolit
2011-11-21Bug 703983 - CSRF vulnerability in attachment.cgi allows possible ↵Reed Loden2-76/+5
unauthorized attachment creation [r=LpSolit a=LpSolit]
2011-11-19cancelled -> canceledFrédéric Buclin1-1/+1
https://bugzilla.mozilla.org/show_bug.cgi?id=703788
2011-11-19Bug 703788: Improve performance of diff_arrays() with large arraysFrédéric Buclin2-28/+44
r/a=mkanat