bugzilla - Bugzilla

Age	Commit message (Collapse)	Author	Files	Lines
2011-01-27	Allow addition/removal of descriptions of statuses and resolutions. r=mkanat.	Gervase Markham	1	-20/+26
	https://bugzilla.mozilla.org/show_bug.cgi?id=616453
2011-01-27	Fix bustage; diffs is an arrayref in 4.0, an array on trunk.	Gervase Markham	1	-1/+1
	https://bugzilla.mozilla.org/show_bug.cgi?id=616422
2011-01-27	Update default column list to something more sensible. r=mkanat, lpsolit, ↵	Gervase Markham	1	-2/+2
	wurblzap. https://bugzilla.mozilla.org/show_bug.cgi?id=621676
2011-01-27	Add diffs parameter to bugmail_recipients hook. r=mkanat.	Gervase Markham	2	-2/+11
	https://bugzilla.mozilla.org/show_bug.cgi?id=616422
2011-01-25	Make param pages without a sortkey sort to the end. r=dkl, a=lpsolit.	Gervase Markham	1	-0/+1
	https://bugzilla.mozilla.org/show_bug.cgi?id=621255
2011-01-24	Bug 619594: (CVE-2010-4568) [SECURITY] Improve the randomness of	Max Kanat-Alexander	4	-5/+32
	generate_random_password, to protect against an account compromise issue and other critical vulnerabilities. r=LpSolit, a=LpSolit https://bugzilla.mozilla.org/show_bug.cgi?id=621591
2011-01-24	Bug 621105 - [SECURITY] Voting lacks CSRF protection	David Lawrence	3	-0/+6
	r=mkanat,a=LpSolit
2011-01-24	Bug 619588: (CVE-2010-4567) [SECURITY] Safety checks that disallow clicking ↵	Frédéric Buclin	4	-19/+29
	for javascript: or data: URLs in the URL field can be evaded with prefixed whitespace and Bug 628034: (CVE-2011-0048) [SECURITY] For not-logged-in users, the URL field doesn't safeguard against javascript: or data: URLs r=dkl a=LpSolit
2011-01-24	Bug 621572: (CVE-2010-4572) [SECURITY] chart.cgi vulnerable to ↵	Reed Loden	1	-3/+3
	header-injection due to use of \|print "Location:"\| instead of $cgi->redirect [r=mkanat a=LpSolit]
2011-01-24	Bug 619648: (CVE-2010-4570) [SECURITY] XSS via summary in "possible ↵	Reed Loden	1	-1/+2
	duplicates" table due to lack of encoding by YUI [r=mkanat a=LpSolit]
2011-01-24	Bug 619637: (CVE-2010-4569) [SECURITY] XSS in user autocomplete due to lack ↵	Reed Loden	1	-1/+8
	of encoding by YUI [r=mkanat r=dkl a=LpSolit]
2011-01-24	Bug 621110: [SECURITY] Quips (adding/approving/deleting) lacks CSRF protection	Frédéric Buclin	2	-2/+12
	r=dkl a=LpSolit
2011-01-24	Bug 621108: [SECURITY] Creating/editing charts lacks CSRF protection	Frédéric Buclin	3	-2/+9
	r=dkl a=LpSolit
2011-01-24	Bug 621107: [SECURITY] Sanity checking lacks CSRF protection	Frédéric Buclin	4	-8/+26
	r=dkl a=LpSolit
2011-01-24	An optional module was accidentally listed in the "required" section of the	Max Kanat-Alexander	1	-2/+2
	release notes. https://bugzilla.mozilla.org/show_bug.cgi?id=627910
2011-01-24	Bug 627910: Update Release Notes for Bugzilla 4.0rc2	Max Kanat-Alexander	1	-6/+26
	r=reed
2011-01-23	Bug 625741: Need a hook in update_fielddefs_definition to enable adding ↵	rojanu	3	-0/+17
	columns to fielddefs r/a=mkanat
2011-01-22	Bug 621128 - Remove trailing whitespace from '<div id="view_disabled" >'	timeless	1	-1/+1
	[r=reed a=LpSolit]
2011-01-22	Bug 624696: We need a template hook to add a description to parameters added ↵	rojanu	3	-1/+30
	by extensions r/a=mkanat
2011-01-22	Bug 621109: Column changing lacks CSRF protection	Frédéric Buclin	2	-5/+19
	r=dkl a=mkanat
2011-01-21	Bug 627854: Add 'form' hook to create-guided.html.tmpl similar to ↵	David Lawrence	1	-0/+2
	create.html.tmpl r/a=mkanat
2011-01-21	Bug 591165: (CVE-2010-4411) [SECURITY] Bump minimum required version of ↵	Reed Loden	1	-2/+2
	CGI.pm to v3.51 in order to address header injection vulnerability. [r=mkanat a=mkanat]
2011-01-21	Bug 627660 - Rename "Send" button on final create account page to "Create", ↵	Reed Loden	1	-1/+1
	as nothing is actually sent. [r=mkanat a=mkanat]
2011-01-21	Bug 626292: "Make description private" checkbox should set bz_private class ↵	David Lawrence	3	-6/+8
	on the comment box r/a=mkanat
2011-01-21	Bug 623608 - Add intro/outro extension hooks to footer.html.tmpl	David Lawrence	1	-2/+2
	r/a=mkanat
2011-01-21	Bug 626658 - Add (take) link to bug edit page to allow quick assigning to ↵	David Lawrence	2	-4/+19
	the current user r/a=mkanat
2011-01-15	Bug 625190: Typo and Missing FK in Bugzilla::DB::Schema	David Marshall	1	-3/+6
	r/a=mkanat
2011-01-15	Bug 623408: Message-ID is gone in bugmail for new bugs	Frédéric Buclin	1	-2/+3
	r=dkl a=LpSolit
2011-01-11	Bug 624349: Let the config_modify_panels hook add new parameters to existing ↵	Frédéric Buclin	1	-11/+10
	panels r/a=mkanat
2011-01-09	Bug 618841: Bare word "bug" in release notes	A. Shimono	1	-3/+3
	r=dkl a=LpSolit
2011-01-09	Bug 622204: Bugzilla::Migrate crashes trying to create bugs with resolutions		1	-1/+1
	r/a=mkanat
2011-01-07	Bug 558803: Add a parameter to specify the password complexity for new passwords	rojanu	4	-1/+52
	r/a=LpSolit
2011-01-07	Bug 255524: The duplicates table inherits no CSS classes when viewed in ↵	Frédéric Buclin	1	-0/+4
	simple format r=dkl a=LpSolit
2011-01-07	Provide user objects to bugmail_recipients hook. r,a=mkanat.	Gervase Markham	2	-1/+15
	https://bugzilla.mozilla.org/show_bug.cgi?id=622813
2011-01-07	Bug 621090 - [SECURITY] Adding saved searches lacks CSRF protection	David Lawrence	3	-0/+4
	r/a=mkanat
2011-01-05	Document how to add user settings. r,a=mkanat.	Gervase Markham	3	-1/+19
	https://bugzilla.mozilla.org/show_bug.cgi?id=616427
2011-01-05	Allow extensions to add new Jobs. r,a=mkanat.	Gervase Markham	5	-3/+45
	https://bugzilla.mozilla.org/show_bug.cgi?id=617012
2011-01-05	Bug 622822 - add additional_links hook to front page. r,a=mkanat.	Gervase Markham	1	-0/+1

2011-01-04	Bug 595410: Make it faster to display a bug that has a lot of dependencies.	Max Kanat-Alexander	8	-98/+168
	r=LpSolit, a=LpSolit
2011-01-02	Bug 622437: Remove 'colchange_columns' hook from the Example extension	Tiago Mello	1	-7/+0
	r/a=LpSolit
2010-12-30	Bug 622105 - Misspelling in setting_info_invalid error message	David Lawrence	1	-1/+1
	r/a=LpSolit
2010-12-28	Bug 621597: Make mod_perl.pl do the INC configuration itself, instead of	Max Kanat-Alexander	2	-2/+8
	requiring it to be in httpd.conf. r=dkl, a=mkanat
2010-12-28	Remove unused variable, per my review comment	Frédéric Buclin	1	-1/+0
	https://bugzilla.mozilla.org/show_bug.cgi?id=615574
2010-12-27	Bug 618844: Make clear that the Apache module must be enabled in release notes	A. Shimono (himorin)	1	-2/+2
	r/a=mkanat
2010-12-27	Bug 618842: Enclose checksetup.pl between <kbd> and </kbd> tags in templates	A. Shimono (himorin)	5	-15/+15
	r/a=mkanat
2010-12-27	Bug 599539: Update the mod_perl code for Apache2::SizeLimit 0.92	Max Kanat-Alexander	3	-16/+25
	r=glob, a=mkanat
2010-12-27	Bug 615574: Make every search done by buglist.cgi create a list_id, so that	Max Kanat-Alexander	4	-25/+61
	even Saved Searches get "last list" support. r=LpSolit, a=LpSolit
2010-12-27	Bug 603762: Vertical margins between header, footer, and content are not ↵	Christian Legnitto	2	-4/+1
	consistent r=pyrzak a=mkanat
2010-12-27	Bug 588013: Fix typo	timeless	1	-1/+1
	r/a=mkanat
2010-12-23	Add contributor lines for mkanat and myself for the new BugUrl modules.	Reed Loden	5	-5/+9
	Add missing period in original developer line in license block. [a=mkanat]