summaryrefslogtreecommitdiffstats
path: root/Bugzilla/Util.pm
AgeCommit message (Collapse)AuthorFilesLines
2012-01-31Bug 714472: (CVE-2012-0448) [SECURITY] utf8 homoglyphs are allowed in email ↵Frédéric Buclin1-1/+1
addresses, which could allow an attacker to be CC'ed to private bugs by accident r=glob a=LpSolit
2011-11-19cancelled -> canceledFrédéric Buclin1-1/+1
https://bugzilla.mozilla.org/show_bug.cgi?id=703788
2011-11-19Bug 703788: Improve performance of diff_arrays() with large arraysFrédéric Buclin1-26/+29
r/a=mkanat
2011-08-05Bug 658407: Make Bugzilla not use Math::Random::Secure anymore, due to theMax Kanat-Alexander1-1/+1
difficulty of installing its dependencies. Instead move the code directly into Bugzilla itself. r=LpSolit, r=glob, a=mkanat
2011-05-30Bug 659816: Fix url_decoding of utf8 stringsByron Jones1-4/+1
r=mkanat, a=mkanat
2011-03-09revert accidental property changesByron Jones1-0/+0
2011-03-09Bug 633776: Automatic charset detection for text attachmentsByron Jones1-1/+67
r=mkanat, a=mkanat
2011-02-11Bug 620827: Refactor remove see also to use remove_from_db instead.Tiago Mello1-7/+19
r/a=mkanat
2011-01-24Bug 619594: (CVE-2010-4568) [SECURITY] Improve the randomness ofMax Kanat-Alexander1-1/+8
generate_random_password, to protect against an account compromise issue and other critical vulnerabilities. r=LpSolit, a=LpSolit https://bugzilla.mozilla.org/show_bug.cgi?id=621591
2011-01-04Bug 595410: Make it faster to display a bug that has a lot of dependencies.Max Kanat-Alexander1-0/+9
r=LpSolit, a=LpSolit
2010-09-30Bug 573195: Make Bug.get return all of a bug's standard and custom fieldMax Kanat-Alexander1-3/+12
information r=dkl, a=mkanat
2010-08-06Bug 466968: Remove hardcoded strings from BugMail.pm, and refactor it so ↵Frédéric Buclin1-19/+1
that bugmails are 100% localizable r/a=mkanat
2010-06-24Bug 572602: Change the way that Bugzilla::Object determines what fieldsMax Kanat-Alexander1-2/+5
are required for create(). It now assumes that any column that is NOT NULL and has not DEFAULT in the database is required. We also shift the burden of throwing errors about empty values to the validators. This fixes the bug that Bugzilla::Bug->create() wasn't populating default values for fields if they weren't specified in the create() parameters. r=timello, a=mkanat
2010-06-16A few tinderbox bustage fixes from the checkin of bug 24896.Max Kanat-Alexander1-1/+1
2010-06-16Bug 24896: Make the First/Last/Prev/Next navigation on bugs work withMax Kanat-Alexander1-1/+31
multiple buglists at once r=glob, a=mkanat
2010-04-22Bug 560009: Use firstidx from List::MoreUtils instead of lsearchMax Kanat-Alexander1-31/+1
r=timello, a=mkanat
2010-04-03Bug 556439: Prevent datetime_from from dying if it gets 0000-00-00 as aMax Kanat-Alexander1-0/+3
date from the database r=LpSolit, a=LpSolit
2010-03-14Bug 498309: Speed up show_bug.cgi when there are many comments by cachingMax Kanat-Alexander1-1/+29
field-descs globally for all template calls r=LpSolit, a=LpSolit
2010-01-05Bug 534587 - "Bugmail uses the timezone of the changee instead of the user ↵reed%reedloden.com1-2/+2
receiving the mail" [p=reed r=mkanat a=mkanat]
2009-12-31Bug 527586: Use X-Forwarded-For instead of REMOTE_ADDR for trusted proxiesmkanat%bugzilla.org1-1/+11
Patch by Max Kanat-Alexander <mkanat@bugzilla.org> r=dkl, a=mkanat
2009-11-26Bug 329638: https login page switches to http on submit if ssl_redirect = ↵lpsolit%gmail.com1-1/+10
false - Patch by Frédéric Buclin <LpSolit@gmail.com> r/a=mkanat
2009-11-18Bug 360626 - "ThrowTemplateError() used in Util.pm" [p=reed r=LpSolit a=LpSolit]reed%reedloden.com1-2/+4
2009-11-16Bug 528872 - "Attachments in attachments table should have CSS classes to ↵reed%reedloden.com1-2/+2
help with styling" [p=reed r=LpSolit a=LpSolit]
2009-11-10Bug 472217: Create a Bugzilla::Comment object and eliminate GetCommentsmkanat%bugzilla.org1-33/+50
Patch by Max Kanat-Alexander <mkanat@bugzilla.org> r=LpSolit, a=LpSolit
2009-10-24Bug 523977: Make Bugzilla::Object->check send the trimmed value to new(), ↵mkanat%bugzilla.org1-6/+3
and also be more accurate about what's "empty". This also makes detaint_natural and detaint_signed call int() on their return values. Patch by Max Kanat-Alexander <mkanat@bugzilla.org> r=LpSolit, a=LpSolit
2009-10-24Bug 520948: Use Bugzilla->feature and feature_enabled everywhere instead of ↵mkanat%bugzilla.org1-7/+2
checking if modules are installed Patch by Max Kanat-Alexander <mkanat@bugzilla.org> r=LpSolit, a=LpSolit
2009-10-19Bug 399073: Remove the 'loginnetmask' parameter - Patch by Frédéric ↵lpsolit%gmail.com1-31/+1
Buclin <LpSolit@gmail.com> r/a=mkanat
2009-10-09Bug 514913: Eliminate ssl="authenticated sessions"mkanat%bugzilla.org1-50/+18
Patch by Max Kanat-Alexander <mkanat@bugzilla.org> r=dkl, a=mkanat
2009-07-16Bug 476305: Clean up and merge HTML filtering code - Patch by Vitaly ↵lpsolit%gmail.com1-7/+34
Fedrushkov <vitaly.fedrushkov@gmail.com> r/a=LpSolit
2009-06-02Bug 491630: Make sure DateTime never gets fractional "seconds" in new()mkanat%bugzilla.org1-1/+2
Patch by Max Kanat-Alexander <mkanat@bugzilla.org> r=LpSolit, a=LpSolit
2009-04-11 Bug 486006 - importxml.pl must not use format_time() for deadlinesghendricks%novell.com1-2/+4
patch by ghendricks r=LpSolit a=LpSolit
2009-04-11Bug 487865: Exporting bugs in XML format uses non-unique timezones (they ↵lpsolit%gmail.com1-0/+7
cannot be imported back) - Patch by Frédéric Buclin <LpSolit@gmail.com> r=ghendricks a=LpSolit
2009-03-062nd fix for bug 105960 (xml.cgi and other future xml pages generate invalid ↵lpsolit%gmail.com1-1/+1
XML). Some illegal characters were still not excluded - Patch by David Marshall <dmarshal@yahoo-inc.com> r=LpSolit
2009-02-14Bug 333648: Add flag change to activity log and bugmail when only setter is ↵wicked%sci.fi1-27/+1
changed - Patch by Teemu Mannermaa <wicked@sci.fi> r/a=LpSolit
2009-02-05Bug 476889: importxml.pl crashes when importing bugs ↵lpsolit%gmail.com1-0/+3
(Date::Parse::strptime() leave seconds undefined in some cases) - Patch by Frédéric Buclin <LpSolit@gmail.com> r=ghendricks a=LpSolit
2009-02-02Bug 38862: [SECURITY] attachments should be at a different hostname - Patch ↵lpsolit%gmail.com1-1/+13
by Byron Jones <bugzilla@glob.com.au> and Frédéric Buclin <LpSolit@gmail.com> r=mkanat a=LpSolit
2009-01-29Bug 219021: Only display email addresses to logged-in usersmkanat%bugzilla.org1-0/+22
Patch By Max Kanat-Alexander <mkanat@bugzilla.org> r=LpSolit, a=LpSolit
2009-01-24Bug 471613: Replace Bugzilla::Util::is_tainted() by Scalar::Util::tainted() ↵lpsolit%gmail.com1-16/+1
- Patch by Nitish Bezzala <nbezzala@yahoo.com> r/a=LpSolit
2009-01-15Bug 464992: Binary attachments, graphical reports and new charts are not ↵lpsolit%gmail.com1-1/+1
displayed correctly on Windows - Patch by Frédéric Buclin <LpSolit@gmail.com> r=mkanat a=LpSolit
2009-01-02Bug 211006: Make Bugzilla use SHA-256 instead of crypt() to store hashed ↵mkanat%bugzilla.org1-28/+48
passwords in the database Patch By Max Kanat-Alexander <mkanat@bugzilla.org> r=LpSolit, a=LpSolit
2008-12-30Bug 105960: xml.cgi generates invalid XML - Patch by Kip Hampton ↵lpsolit%gmail.com1-0/+10
<khampton@totalcinema.com> r/a=mkanat
2008-10-23Bug 455584 - Use bz_crypt everywhere instead of the crypt() functiondkl%redhat.com1-16/+23
Patch by David Lawrence <dkl@redhat.com> = r/a=LpSolit
2008-10-10Bug 459365 - Scrubber should let <fieldset> and <legend> pass.wurblzap%gmail.com1-1/+2
Patch by Marc Schumann <wurblzap@gmail.com>; r/a=mkanat
2008-09-12Bug 453767 - Passwords containing wide characters causes system errordkl%redhat.com1-0/+5
Patch by David Lawrence <dkl@redhat.com> - a/r=mkanat
2008-08-28Bug 399070: Remove the 'timezone' parameter - Patch by Frédéric Buclin ↵lpsolit%gmail.com1-10/+10
<LpSolit@gmail.com> r/a=mkanat
2008-08-27Bug 182238: Allow users to choose what time zone to display times in - Patch ↵lpsolit%gmail.com1-20/+24
by Frédéric Buclin <LpSolit@gmail.com> r/a=mkanat
2008-08-18Bug 428659 – Setting SSL param to 'authenticated sessions' only ↵dkl%redhat.com1-1/+41
protects logins and param doesn't protect WebService calls at all Patch by David Lawrence <dkl@redhat.com> - r/a=LpSolit/mkanat
2008-07-29Backing out these patches as they cause a regression. More informationdkl%redhat.com1-21/+1
in the respective bug reports. Bug 428659 – Setting SSL param to 'authenticated sessions' only protects logins and param doesn't protect WebService calls at all Patch by Dave Lawrence <dkl@redhat.com> - r/a=mkanat Bug 445104: ssl redirects come with a 200 OK HTTP code on mod_perl Patch By Max Kanat-Alexander <mkanat@bugzilla.org> r=dkl, a=mkanat
2008-07-10Bug 428659 – Setting SSL param to 'authenticated sessions' only ↵dkl%redhat.com1-1/+21
protects logins and param doesn't protect WebService calls at all Patch by Dave Lawrence <dkl@redhat.com> - r/a=mkanat
2008-04-03Bug 410902: Some characters are mangled in diff and interdiff modes when ↵lpsolit%gmail.com1-1/+11
viewing patches - Patch by Frédéric Buclin <LpSolit@gmail.com> r=shimono, r=mkanat a=LpSolit