summaryrefslogtreecommitdiffstats
path: root/Bugzilla
AgeCommit message (Collapse)AuthorFilesLines
2016-10-11Bug 1309278 - Cache::Memcached::Fast returns tainted data if the key is taintedDylan William Hardison1-46/+3
2016-10-11Bug 1309229 - changing product results in Insecure dependency in parameter 3 ↵Dylan William Hardison1-1/+46
of DBI::db=HASH(0x7f4caad58190)->selectcol_arrayref method call while running with -T switch at /data/www/bugzilla.mozilla.org/Bugzilla/Product.pm line 555.
2016-10-11Bug 1308032 - Cache::Memcached::Fast from bugzilla bug 1189281 and bug 1274764Dylan William Hardison1-55/+6
2016-10-06Bug 1293689 - Bring Bugzilla::CGI::ContentSecurityPolicy to BMO (Backport ↵Dylan William Hardison3-10/+433
Bug 1286287)
2016-09-27ug 1268317 - Add Triage Contact to Components as an Editable Field ↵David Lawrence3-0/+94
(everything else)
2016-09-27Bug 1268317 - Add Triage Contact to Components as an Editable Field (DB ↵David Lawrence2-1/+9
schema only)
2016-09-23Bug 1304179 - Remove REQUIRED_MODULES references from release notes (and ↵Dylan William Hardison1-13/+0
Template.pm)
2016-09-20Bug 1303659 - Bug.comments (/rest/bug/<id>/comment) should return the count ↵David Lawrence2-5/+6
value in the results
2016-09-13Bug 1283930 - Add Makefile.PL & local/lib/perl5 support to bmo/master + ↵Dylan William Hardison177-3698/+1412
local symlink to data/ directory
2016-09-12Revert "Bug 1283930 - Add Makefile.PL & local/lib/perl5 support to ↵Dylan William Hardison177-1412/+3698
bmo/master + local symlink to data/ directory" This reverts commit e6bf4cacb10f86077fe898349485f5c7ab9fb4b6.
2016-09-12Bug 1283930 - Add Makefile.PL & local/lib/perl5 support to bmo/master + ↵Dylan William Hardison177-3698/+1412
local symlink to data/ directory
2016-08-30Bug 1290580 - Rebase docker infra off of CentOS 6David Lawrence1-7/+0
2016-07-19Bug 1254882 - develop a nightly script to revoke access to legal bugs from ↵Dylan Hardison2-1/+100
ex-employees
2016-07-13Bug 1286650 - Add option to scripts/issue-api-key.pl to specify an API key ↵Mark Côté1-0/+6
explicitly. r=dylan This is useful for testing, so we don't have to store a randomly generated key for the duration of the test; instead we can hardcode one in the tests.
2016-07-13Bug 1286012 - file permsDylan Hardison1-0/+1
2016-07-13Bug 1284521 - Reference is already weak at Bugzilla/Comment.pm line 245.Dylan Hardison1-2/+2
2016-07-11Bug 1283848 - Setting needinfo at time of bug filing results in relative ↵David Lawrence1-0/+2
date text of "NeedInfo From: <user> 47 years ago"
2016-07-08Bug 1283664 - Add minimum to Apache2::SizeLimit to ensure better performanceDylan Hardison1-1/+1
2016-07-04Bug 1282606 - Fix TrackingFlags memory leakDylan Hardison3-4/+24
2016-06-30Bug 1279878 - CSV injectionDavid Lawrence1-3/+4
2016-06-30Bug 1283310 - Optimizations for Bugzilla::active_custom_fields()Dylan Hardison2-6/+7
2016-06-03Bug 1270720 - Do not add reporter email address to CC list when flagging ↵David Lawrence1-1/+2
"Need more information from reporter"
2016-05-19Bug 1262039 - typo in error message "Failed to retreive components..."David Lawrence1-1/+1
2016-05-19Bug 1274139 - QuickSearch: searching for text containing colons no longer worksDylan Hardison1-1/+0
2016-05-14Bug 232193 - bmo's systems (webheads, database, etc) should use UTC natively ↵David Lawrence2-75/+22
for o/s timezone and date storage
2016-05-12Bug 1270867 - confusing error message when I was just searching for a bugDylan Hardison1-0/+1
2016-05-05Bug 1263198 - Do not automatically set tracking flags status-firefoxXX ↵David Lawrence1-0/+6
affected for bugs filed under SeaMonkey
2016-05-03Bug 1269236 - Incorrect checking of API tokens possibly leads to CSRF and ↵Dylan Hardison1-9/+6
data disclosure vulnerability for insecure accounts
2016-04-22Bug 1195736 - intermittent internal error: "file error - nav_link: not ↵Dylan Hardison3-3/+22
found" (also manifests as fields_lhs: not found)
2016-04-13Revert "Bug 1195736 - intermittent internal error: "file error - nav_link: ↵Dylan William Hardison2-10/+2
not found" (also manifests as fields_lhs: not found)" Test failures result from this, we will need a different approach. This reverts commit 33f61556746e1729746342d802ca7ea9cea18caf.
2016-04-13Bug 1264207 - add support for the hellosplat tracker to 'see also'Byron Jones2-0/+25
2016-04-13Bug 1195736 - intermittent internal error: "file error - nav_link: not ↵Dylan Hardison2-2/+10
found" (also manifests as fields_lhs: not found)
2016-04-07Bug 1260458 - search failing for users who are not members of the insider ↵David Lawrence1-1/+2
group (DBD::mysql::db selectcol_arrayref failed: You have an error in your SQL syntax)
2016-04-04Bug 1257662 - Disallow clearing a flag if the flag is set to allow granting ↵David Lawrence2-3/+10
by specifc group and changer is not in group
2016-04-04Bug 1197061 - don't create a new session for every authenticated ↵David Lawrence1-0/+7
XMLRPC/JSONRPC call
2016-03-21Bug 1252782 - can't add a "See Also" to a Chromium bug on bugs.chromium.orgDavid Lawrence2-0/+50
2016-03-15Bug 1229834 - extend information we [audit] log to the syslogDylan Hardison1-0/+10
2016-03-10Bug 1254542 - Reflected XSS in comment-remo-form-payment.txt pageDylan Hardison2-1/+2
2016-03-03Bug 1253032 - Recent change to JSON::XS breaks some APIsDylan Hardison1-0/+1
2016-02-29Bug 1251047 - cmp is remarkably different from eqDylan William Hardison1-1/+1
2016-02-29Bug 1251047 - fix to work with right functionDylan William Hardison1-2/+2
2016-02-29Bug 1251047 - /rest/bug/field takes 15-25 seconds to returnDylan Hardison1-2/+2
2016-02-26Bug 1251221 - Pass cache => 1 to calls to Bugzilla::Product->new() called in ↵Dylan Hardison3-6/+5
Bugzilla::{Milestone,Version,Component} r=dkl,a=dylan
2016-02-23Bug 1244718 - API documentation is missing error codesDavid Lawrence1-0/+3
2016-01-20Bug 1231918 - error handler doesn't close multi-part responsesDylan William Hardison1-1/+6
2016-01-06Bug 1237188 - add support for servicenow to the 'see also' fieldByron Jones2-1/+26
2016-01-05Bug 1224001 - Add push connector for Aha.ioDylan Hardison1-1/+9
2015-12-23Bug 1234237 - Backport upstream bug 1232785 to bmo/4.2 [SECURITY] Buglists ↵David Lawrence1-0/+3
in CSV format can be parsed as valid javascript in some browsers
2015-12-22Revert "Bug 1234325 - Backport upstream bug 1230932 to bmo/4.2 to fix ↵David Lawrence3-15/+1
providing a condition as an ID to the webservice results in a taint error" This reverts commit 1e7b4002794930fad702718714b5d1c291bf816c.
2015-12-21Bug 1234325 - Backport upstream bug 1230932 to bmo/4.2 to fix providing a ↵David Lawrence3-1/+15
condition as an ID to the webservice results in a taint error