Age | Commit message (Collapse) | Author | Files | Lines | |
---|---|---|---|---|---|
2010-12-06 | Bug 607138: Don't send the Strict-Transport-Security header for the | Max Kanat-Alexander | 1 | -2/+6 | |
attachment_base. r=LpSolit, a=LpSolit | |||||
2010-11-03 | Bug 600464: (CVE-2010-3172) [SECURITY] Content/Header injection due to ↵ | Byron Jones | 1 | -1/+2 | |
non-random multipart/x-mixed-replace boundary r=mkanat a=LpSolit | |||||
2010-10-28 | Bug 607966: Use of qw(...) as parentheses is deprecated since Perl 5.13.5 | Frédéric Buclin | 1 | -3/+1 | |
r=gerv a=LpSolit | |||||
2010-09-29 | Bug 600475 - Support the 'includeSubDomains' flag as an option for the ↵ | Reed Loden | 1 | -2/+6 | |
'Strict-Transport-Security' advanced option in order to protect subdomains. [r=glob a=mkanat] | |||||
2010-09-28 | Bug 594990: Make the Strict-Transport-Security HTTP header only be sent | Max Kanat-Alexander | 1 | -2/+2 | |
if a particular parameter is enabled. r=glob, a=mkanat | |||||
2010-07-16 | Bug 398308: Make Search.pm take a hashref for its "params" argument | Max Kanat-Alexander | 1 | -12/+0 | |
instead of taking a CGI object. r=mkanat, a=mkanat (module owner) | |||||
2010-07-15 | Bug 521416: Some web servers fail to set the QUERY_STRING parameter | byron jones (glob) | 1 | -0/+3 | |
r/a=mkanat | |||||
2010-06-27 | Bug 575097 - "New STS header in Bugzilla::CGI causes malformed header error ↵ | Reed Loden | 1 | -5/+6 | |
due to lack of Content-Type naming" [r=LpSolit a=LpSolit] | |||||
2010-06-26 | Bug 562475 - "Bugzilla should use strict-transport-security (STS) headers" | Reed Loden | 1 | -0/+6 | |
[r=mkanat a=mkanat] | |||||
2010-06-24 | Bug 574166: Make clean_search_url take into account the new email3 fields | Max Kanat-Alexander | 1 | -1/+1 | |
from query.cgi r=glob, a=mkanat | |||||
2010-06-16 | Bug 24896: Make the First/Last/Prev/Next navigation on bugs work with | Max Kanat-Alexander | 1 | -0/+4 | |
multiple buglists at once r=glob, a=mkanat | |||||
2010-05-14 | Bug 561296: A fix allowing updating a field value's name when it is | Max Kanat-Alexander | 1 | -0/+8 | |
the default value r=LpSolit, a=LpSolit | |||||
2010-04-22 | Bug 560009: Use firstidx from List::MoreUtils instead of lsearch | Max Kanat-Alexander | 1 | -1/+1 | |
r=timello, a=mkanat | |||||
2010-02-01 | Bug 537746: Search criteria headers on buglist duplicate unnecessarily when ↵ | Frédéric Buclin | 1 | -3/+12 | |
bugidtype is in use Patch by Frédéric Buclin <LpSolit@gmail.com> r/a=mkanat | |||||
2010-01-12 | Bug 509030: "Changes older than" in Advanced Search is sometimes ignored - ↵ | lpsolit%gmail.com | 1 | -1/+2 | |
Patch by Frédéric Buclin <LpSolit@gmail.com> r=gerv a=LpSolit | |||||
2009-11-09 | Bug 525734: Allow WebService clients to authenticate using Bugzilla_login ↵ | mkanat%bugzilla.org | 1 | -0/+33 | |
and Bugzilla_password Patch by Max Kanat-Alexander <mkanat@bugzilla.org> r=dkl, a=mkanat | |||||
2009-10-24 | Bug 523495: Re-work attachment.cgi and the general attachment_base-checking ↵ | mkanat%bugzilla.org | 1 | -9/+27 | |
code to prevent an infinite redirect loop when ssl_redirect is on and Bugzilla has an attachment_base set. Patch by Max Kanat-Alexander <mkanat@bugzilla.org> r=LpSolit, a=LpSolit | |||||
2009-10-09 | Bug 514913: Eliminate ssl="authenticated sessions" | mkanat%bugzilla.org | 1 | -21/+22 | |
Patch by Max Kanat-Alexander <mkanat@bugzilla.org> r=dkl, a=mkanat | |||||
2009-09-04 | Bug 224588: Unify ($^O =~ /MSWin/) checks (always use ON_WINDOWS) | mkanat%bugzilla.org | 1 | -8/+7 | |
Patch by Max Kanat-Alexander <mkanat@bugzilla.org> r=LpSolit, a=LpSolit | |||||
2009-07-07 | Bug 502641: Fix various problems that would occur when you would log in from ↵ | mkanat%bugzilla.org | 1 | -1/+15 | |
buglist.cgi Patch by Max Kanat-Alexander <mkanat@bugzilla.org> r=LpSolit, a=LpSolit | |||||
2009-07-06 | Bug 502498: Use of uninitialized value in string eq at Bugzilla/CGI.pm line ↵ | lpsolit%gmail.com | 1 | -1/+3 | |
289 - Patch by Frédéric Buclin <LpSolit@gmail.com> r/a=mkanat | |||||
2009-07-04 | Bug 501538: Make $cgi->param() also check GET variables during a POST, so ↵ | mkanat%bugzilla.org | 1 | -6/+17 | |
that POST forms with query-string variables in the target (like the login form) work correctly. Patch by Max Kanat-Alexander <mkanat@bugzilla.org> r=LpSolit, a=LpSolit | |||||
2009-03-31 | Bug 432907: Create a JSON frontend for WebServices | mkanat%bugzilla.org | 1 | -2/+2 | |
Patch by Max Kanat-Alexander <mkanat@bugzilla.org> r=dkl, a=mkanat | |||||
2009-02-02 | Bug 38862: [SECURITY] attachments should be at a different hostname - Patch ↵ | lpsolit%gmail.com | 1 | -0/+24 | |
by Byron Jones <bugzilla@glob.com.au> and Frédéric Buclin <LpSolit@gmail.com> r=mkanat a=LpSolit | |||||
2009-01-20 | Bug 431744: "Change Columns" URL contained more than 3x the characters in ↵ | mkanat%bugzilla.org | 1 | -0/+4 | |
the base buglist.cgi URL Patch By Michael J Tosh <michael.j.tosh@lmco.com> r=mkanat, a=mkanat | |||||
2008-09-17 | Bug 454892: Improve Bugzilla::CGI::clean_search_url to remove all the normal ↵ | mkanat%bugzilla.org | 1 | -2/+41 | |
"default" fields Patch By Max Kanat-Alexander <mkanat@bugzilla.org> r=dkl, a=mkanat | |||||
2008-08-18 | Bug 428659 â Setting SSL param to 'authenticated sessions' only ↵ | dkl%redhat.com | 1 | -22/+19 | |
protects logins and param doesn't protect WebService calls at all Patch by David Lawrence <dkl@redhat.com> - r/a=LpSolit/mkanat | |||||
2008-07-29 | Backing out these patches as they cause a regression. More information | dkl%redhat.com | 1 | -19/+15 | |
in the respective bug reports. Bug 428659 â Setting SSL param to 'authenticated sessions' only protects logins and param doesn't protect WebService calls at all Patch by Dave Lawrence <dkl@redhat.com> - r/a=mkanat Bug 445104: ssl redirects come with a 200 OK HTTP code on mod_perl Patch By Max Kanat-Alexander <mkanat@bugzilla.org> r=dkl, a=mkanat | |||||
2008-07-24 | Bug 445104: ssl redirects come with a 200 OK HTTP code on mod_perl | mkanat%bugzilla.org | 1 | -1/+5 | |
Patch By Max Kanat-Alexander <mkanat@bugzilla.org> r=dkl, a=mkanat | |||||
2008-07-10 | Bug 428659 â Setting SSL param to 'authenticated sessions' only ↵ | dkl%redhat.com | 1 | -15/+15 | |
protects logins and param doesn't protect WebService calls at all Patch by Dave Lawrence <dkl@redhat.com> - r/a=mkanat | |||||
2008-01-30 | Bug 414002: Temporary files for uploaded attachments are not deleted on ↵ | lpsolit%gmail.com | 1 | -1/+4 | |
Windows - Patch by Steve Hay <SteveHay@planit.com> r/a=LpSolit | |||||
2008-01-06 | Bug 407420: CGI::Carp fatalsToBrowser should happen as early as possible | mkanat%bugzilla.org | 1 | -7/+0 | |
Patch By Max Kanat-Alexander <mkanat@bugzilla.org> r=justdave, a=mkanat | |||||
2007-11-23 | Bug 363153: Turn on the utf8 bit on all strings in Bugzilla that contain | mkanat%bugzilla.org | 1 | -0/+21 | |
non-ASCII data, if the utf8 parameter is on. This means that string functions like substr() work properly on multi-byte languages, now. Patch By Max Kanat-Alexander <mkanat@bugzilla.org> r=wurblzap, a=mkanat | |||||
2007-07-25 | Bug 345970 Avoid using the string 'the web' | timeless%mozdev.org | 1 | -1/+1 | |
patch by jhulten@tragicallyleet.com r=timeless I've updated it to trunk r=lpsolit a=lpsolit | |||||
2007-06-22 | Bug 383745: Incorrect charset specification in "please wait" screen when ↵ | wurblzap%gmail.com | 1 | -3/+3 | |
server push is in use. Patch by Marc Schumann <wurblzap@gmail.com>, r=mkanat, a=mkanat | |||||
2006-11-13 | Bug 360028: Bugzilla::Search::Saved should have create() and update(), and ↵ | mkanat%bugzilla.org | 1 | -0/+25 | |
buglist.cgi should use it Patch By Max Kanat-Alexander <mkanat@bugzilla.org> r=LpSolit, a=justdave | |||||
2006-11-01 | Bug 357526: buglist.cgi doesn't specify encoding as UTF-8 when the rest of ↵ | mkanat%bugzilla.org | 1 | -1/+13 | |
Bugzilla does Patch By John Beranek <john@redux.org.uk> r=mkanat, a=justdave | |||||
2006-09-06 | Bug 349764: Errors print out a whole HTML page, even when we're not in ↵ | mkanat%bugzilla.org | 1 | -4/+7 | |
USAGE_MODE_BROWSER Patch By Max Kanat-Alexander <mkanat@bugzilla.org> r=kevin.benton, a=myk | |||||
2006-07-28 | Bug 173897: Fix |XXX - mod_perl| comments | mkanat%bugzilla.org | 1 | -7/+0 | |
Patch By Max Kanat-Alexander <mkanat@bugzilla.org> r=LpSolit, a=myk | |||||
2006-07-26 | Bug 300978: bad output when a non-cgi script dies | mkanat%bugzilla.org | 1 | -1/+5 | |
Patch By Max Kanat-Alexander <mkanat@bugzilla.org> r=LpSolit, a=myk | |||||
2006-07-12 | Bug 342757: searching results in "YOUR BROWSER DOESN'T SUPPORT THIS ↵ | mkanat%bugzilla.org | 1 | -10/+16 | |
SERVER-PUSH TECHNOLOGY" warning on brower under mod_perl Patch By Max Kanat-Alexander <mkanat@bugzilla.org> r=justdave, a=justdave | |||||
2006-07-06 | Bug 343361: die_with_dignity is useless inside of Bugzilla::CGI | mkanat%bugzilla.org | 1 | -12/+0 | |
Patch By Max Kanat-Alexander <mkanat@bugzilla.org> r=LpSolit, r=colin, a=myk | |||||
2006-06-20 | Bug 304601: Bugzilla::Config's :locations exports need to be in their own ↵ | lpsolit%gmail.com | 1 | -6/+9 | |
module - Patch by Frédéric Buclin <LpSolit@gmail.com> r=mkanat for the main patch, r=myk for the patch about CGI.pm a=justdave Bug 328637: Remove all legal_* versioncache arrays - Patch by Frédéric Buclin <LpSolit@gmail.com> r=mkanat a=justdave Bug 110503 - Eliminate versioncache | |||||
2006-06-20 | Spelling in code comments patch: 'behavour' -> 'behaviour'; patch by Vlad ↵ | vladd%bugzilla.org | 1 | -1/+1 | |
Dascalu <vladd@bugzilla.org>. | |||||
2006-06-14 | Bug 313255: Move $::ENV{foo} and $::SIG{foo} out of globals.pl - Patch by ↵ | lpsolit%gmail.com | 1 | -0/+18 | |
Frédéric Buclin <LpSolit@gmail.com> r=mkanat a=myk | |||||
2006-03-31 | Bug 306695: Boolean charts forgets "0" values. | wurblzap%gmail.com | 1 | -1/+1 | |
Patch by Marc Schumann <wurblzap@gmail.com>, r=LpSolit, bugreport, a=justdave | |||||
2005-11-26 | Bug 106386 Correct misspellings in source code | timeless%mozdev.org | 1 | -1/+1 | |
patch by unknown@simplemachines.org r=timeless rs=brendan | |||||
2005-09-23 | Bug 308876: Iff ssl is "always", whining (and other non-interactive ↵ | lpsolit%gmail.com | 1 | -1/+1 | |
scripts?) get a 302-moved error - Patch by A. Karl Kornel <karl@kornel.name> r=joel a=justdave | |||||
2005-08-04 | Bug 126266: Use UTF-8 (Unicode) charset encoding for pages and email for NEW ↵ | lpsolit%gmail.com | 1 | -2/+2 | |
installations - Patch by byron jones (glob) <bugzilla@glob.com.au> r=wurblzap a=justdave | |||||
2005-07-14 | Bug 283989: CGI.pl global init code should be moved to Bugzilla::CGI | mkanat%kerio.com | 1 | -0/+9 | |
Patch By Max Kanat-Alexander <mkanat@bugzilla.org> r=wurblzap, a=justdave |