summaryrefslogtreecommitdiffstats
AgeCommit message (Collapse)AuthorFilesLines
2012-08-30Bumped version post-releaseDave Lawrence1-1/+1
2012-08-30Bump version to 4.3.3Dave Lawrence2-3/+3
2012-08-30Bug 785470: (CVE-2012-3981) [SECURITY] Missing escaping of the username can ↵Reed Loden1-0/+2
lead to LDAP injection r/a=LpSolit
2012-08-30Bug 785522: [SECURITY] Block access to templates in extensions/Frédéric Buclin1-1/+1
r=glob a=LpSolit
2012-08-30Bug 786691 - Do not display the (more flags) link to logged out users as ↵Dave Lawrence1-1/+1
they cannot set any flag r/a=LpSolit
2012-08-30Bug 731156: [Oracle] Adding or removing a DB column does not handle SERIAL ↵Frédéric Buclin2-29/+97
correctly r=dkl a=LpSolit
2012-08-30Bug 786351: Release notes for Bugzilla 4.2.3Frédéric Buclin1-0/+41
r=dkl a=LpSolit
2012-08-29Bug 772620: Ignore empty strings in the CC listFrédéric Buclin1-0/+2
r=dkl a=LpSolit
2012-08-29Bug 782856: Remove the obsolete BEGIN block in Bugzilla/CGI.pmFrédéric Buclin1-9/+0
r=glob a=LpSolit
2012-08-29Bug 786310: Remove tokens when saving the default queryByron Jones1-0/+2
r= LpSolit, a=LpSolit
2012-08-29Fix more bustage caused by Bug 772953Byron Jones1-4/+6
2012-08-29Fix bustage caused by Bug 772953Byron Jones1-1/+4
2012-08-29Bug 785511: Prevent directory browsing, especially in docs/ and extensions/Frédéric Buclin2-5/+9
r=dkl a=LpSolit
2012-08-28Bug 772953: Remove the token from buglist urlsByron Jones5-2/+29
r=dkl, a=LpSolit
2012-08-27Bug 785917: Custom field descriptions are not properly escaped when ↵Frédéric Buclin2-2/+1
displayed as bug list column headers r=glob a=LpSolit
2012-08-26Bug 559539: [Oracle] whine.pl sets run_next incorrectly due to CURRENT_DATEDavid Taylor1-0/+6
r/a=LpSolit
2012-08-21Bug 779747: The "Browse" link in the page header/footer doesn't sort ↵Frédéric Buclin3-22/+54
products by classification r=dkl a=LpSolit
2012-08-21Bug 783786: PostgreSQL databases can be created with the wrong encodingFrédéric Buclin1-0/+10
r=dkl a=LpSolit
2012-08-20Bug 698068: The "There is no saved search named ..." page has a "forget" linkFrédéric Buclin3-3/+3
r=glob a=LpSolit
2012-08-19Bug 783879: Sub-optimal SQL query when displaying tags in buglistsFrédéric Buclin1-1/+1
r=wicked a=LpSolit
2012-08-18Bug 610581: The Bug.fields method doesn't include available bug statuses ↵Frank Becker2-2/+7
when creating a new bug r/a=LpSolit
2012-08-18Forgot to remove some codeFrédéric Buclin1-3/+0
2012-08-18Bug 697224: User.get should return a list of all your saved searchesKoosha Khajeh Moogahi1-28/+63
r/a=LpSolit
2012-08-18Include missing newlineFrédéric Buclin1-0/+1
2012-08-18Bug 187753: Specify a maximum length for quips (512 characters)Koosha Khajeh Moogahi6-4/+39
r/a=LpSolit
2012-08-17Bug 783386: Removing PATH_INFO prevents Bugzilla from working correctly with IISFrédéric Buclin1-2/+9
r=dkl a=LpSolit
2012-08-15Bug 771100: Unable to attach a file to a bug with perl 5.16Frédéric Buclin1-1/+1
r=dkl a=LpSolit
2012-08-12Bug 781059 part 2: -moz-border-radius is obsolete and must be replaced by ↵Frédéric Buclin1-1/+1
the standard border-radius CSS property
2012-08-12Fix bustageFrédéric Buclin1-1/+0
2012-08-12Bug 746947: Determine the size of the images dynamically for graphical reportsFrédéric Buclin4-72/+64
r=dkl a=LpSolit
2012-08-10Bug 779088 - Allow extensions to whitelist PATH_INFODave Lawrence3-55/+83
r/a=LpSolit
2012-08-10Backout bug 679224Frédéric Buclin1-43/+0
2012-08-09Bug 557183: In config.cgi, specify if fields controlled by a parameter are ↵Frank Becker2-0/+15
enabled or disabled r/a=LpSolit
2012-08-09Bug 756550: Do not link a bug alias with its bug ID for bugs you cannot seeFrédéric Buclin5-33/+44
r=glob a=LpSolit
2012-08-08Bug 778631: use a persistent Template::Provider to avoid recompiling ↵Byron Jones1-0/+14
templates between page loads on mod_perl r=dkl, a=LpSolit
2012-08-08Bug 781059: -moz-border-radius is obsolete and must be replaced by the ↵Frédéric Buclin2-10/+10
standard border-radius CSS property r=reed a=LpSolit
2012-08-07Bug 319598: Add support for saved tabular and graphical reportsJulien Heyman8-13/+289
r/a=LpSolit
2012-08-07HTML pages no longer passed HTML4 validation due to a duplicated ID, see bug ↵Frédéric Buclin1-2/+2
730670
2012-08-07Backing out Bug 778631 due to breakageByron Jones1-10/+0
2012-08-07Bug 780683: Tags are duplicated in buglists if a search criteria involves a ↵Frédéric Buclin1-1/+1
user field external to the 'bugs' table r=dkl a=LpSolit
2012-08-07Bug 778631: use a persistent Template::Provider to avoid recompiling ↵Byron Jones1-0/+10
templates between page loads on mod_perl r=dkl, a=LpSolit
2012-08-07Bug 779709: Don't allow searching on changes to private attachments or commentsSImon Green1-3/+36
r=glob, a=LpSolit
2012-08-06Bug 706271: CSRF vulnerability in token.cgi allows possible unauthorized ↵Frédéric Buclin3-3/+10
password reset e-mail request r=reed a=LpSolit
2012-08-03Bug 682317 - Bug.create is incorrectly documented as ignoring invalid ↵Koosha Khajeh Moogahi1-2/+3
fields; it should say it produces an error r=dkl, a=LpSolit
2012-08-03Bug 780028: Oracle crashes if a column listed in ORDER BY appears twice in ↵Frédéric Buclin1-4/+13
SELECT r=glob a=LpSolit
2012-08-03Bug 756953 - Dependencies table should have unique index so that duplicate ↵Dave Lawrence2-1/+30
entries are blocked r/a=LpSolit
2012-08-03Bug 759413 - Use "cannot" instead of "can not".Matt Selsky8-15/+15
r=Wurblzap, a=LpSolit
2012-08-01Bug 779600: Hide flag types you cannot request nor set instead of leaving ↵Frédéric Buclin1-3/+1
them as disabled r=dkl a=LpSolit
2012-08-01Bug 581538 - Hide (instead of showing as disabled) flags that aren't ↵Dave Lawrence1-2/+2
available for a specific component on enter_bug.cgi Forgot to add periods at the end of the comments.
2012-08-01Bug 581538 - Hide (instead of showing as disabled) flags that aren't ↵Dave Lawrence1-23/+24
available for a specific component on enter_bug.cgi r/a=LpSolit