Age | Commit message (Collapse) | Author | Files | Lines | |
---|---|---|---|---|---|
2004-10-25 | [SECURITY] Bug 252638: It is possible to send a carefully crafted HTTP POST ↵ | justdave%bugzilla.org | 1 | -1/+21 | |
message to process_bug.cgi which will remove keywords from a bug even if you don't have permissions to edit all bug fields (the "editbugs" permission). Such changes are reported in "bug changed" email notifications, so they are easily detected and reversed if someone abuses it. Patch by Myk Melez <myk@mozilla.org> r=gerv, a=justdave | |||||
2004-10-25 | Bug 254498: Check for comment required for time validation was too late. | justdave%bugzilla.org | 1 | -32/+36 | |
Patch by Tiago R. Mello <tiago@async.com.br> r=kiko, a=justdave | |||||
2004-08-05 | Bug 186093: Move CanSeeBug to User.pm and make User.pm usable by templates | bugreport%peshkin.net | 1 | -2/+3 | |
r=kiko a=justdave | |||||
2004-08-03 | Patch for bug 253604: When commit a bug, validate timetracking before user ↵ | jocuri%softhome.net | 1 | -2/+10 | |
match; patch by Tiago R. Mello <tiago@async.com.br>; r=kiko, a=justdave. | |||||
2004-07-31 | Patch for bug 253360: replace IF() with CASE WHEN for database ↵ | jocuri%softhome.net | 1 | -8/+8 | |
compatibility; patch by Tomas Kopal <Tomas.Kopal@altap.cz>; r=vladd, a=justdave. | |||||
2004-07-29 | Fix for bug 216008: Time Tracking: default values cause change bug | kiko%async.com.br | 1 | -1/+8 | |
errors. Check if the time values haven't actually changed by using integer comparison (instead of string comparison). r=jouni, a=justdave. | |||||
2004-07-29 | Fix for bug 252789: Empty timetrackinggroup causes error "hours worked | kiko%async.com.br | 1 | -15/+22 | |
needs to be positive" when changing bug. Sanitizing the AddComment bits in process_bug.cgi to only touch work_time if user is in timetrackinggroup. Fixes regression introduced in bug 252159. r=jouni,joel; a=justdave. | |||||
2004-07-23 | Fix for bug 252159: centralize time validation. Adds a ValidateTime | kiko%async.com.br | 1 | -13/+4 | |
function to Bugzilla::Bug and uses it in relevant callsites. Patch by Alexandre Michetti Manduca <michetti@grad.icmc.usp.br>. r=kiko, a=justdave. | |||||
2004-07-21 | Fix for bug 251935: Remove $COOKIE from process_bug.cgi. r=joel, a=myk. | kiko%async.com.br | 1 | -9/+7 | |
2004-07-18 | Bug 240093 - get canconfirm working again. Patch by gerv; r=joel, a=justdave. | gerv%gerv.net | 1 | -6/+8 | |
2004-06-01 | Patch for bug 242161: make process_bug.cgi contain patchviewer ("diff") link ↵ | jocuri%softhome.net | 1 | -0/+8 | |
like show_bug.cgi; patch by GavinS <bugzilla@chimpychompy.org>; r=vladd; a=justdave. | |||||
2004-04-28 | Bug 237838 - make sure CheckCanChangeField() always gets correct resolution. ↵ | gerv%gerv.net | 1 | -0/+1 | |
Patch by gerv and Tom Karzes; r, a=justdave. | |||||
2004-04-22 | Bug 192571 Empty default owner (assignee or QA) causes "Reassign bug to ↵ | timeless%mozdev.org | 1 | -4/+3 | |
owner and QA contact of selected component to NOOP r=justdave a=justdave | |||||
2004-03-27 | Fix for bug 234175: Remove deprecated ConnectToDatabase() and | kiko%async.com.br | 1 | -2/+1 | |
quietly_check_login()/confirm_login() calls. Cleans up callsites (consisting of most of our CGIs), swapping (where appropriate) for calls to Bugzilla->login. Patch by Teemu Mannermaa <wicked@etlicon.fi>. r=bbaetz, kiko. a=justdave. | |||||
2004-03-18 | Bug 24496: Adds a parameter "noresolveonopenblockers" which when enabled, ↵ | justdave%syndicomm.com | 1 | -0/+11 | |
prevents bugs from being closed if there are any bugs blocking it which are still open. Patch by Andreas Höfler <andreas.hoefler@bearingpoint.com> r= justdave, a= myk | |||||
2004-03-18 | Bug 192516: Moving the loose .pm files into the Bugzilla directory, where ↵ | justdave%syndicomm.com | 1 | -6/+5 | |
they belong. These files pre-date the Bugzilla directory, and would have gone there had it existed at the time. The four files in question were copied on the CVS server to preserve CVS history in the files. This checkin deletes them from the old location and modifies everything else to know where they are now. r= myk, gerv a= justdave | |||||
2004-02-14 | Bug 233645 - fix a number of 'undef' warnings which were killing performance ↵ | gerv%gerv.net | 1 | -2/+8 | |
for multiple bug change. Patch by gerv; r,a=justdave. | |||||
2003-11-07 | Bug 219475: The check for null db entries in process_bug.cgi is wrong; patch ↵ | jocuri%softhome.net | 1 | -1/+1 | |
by Chuck Duvall <caduvall@glue.umd.edu>; r=bbaetz; a=justdave. | |||||
2003-10-28 | Bug 223854: masscc on change several bugs doesn't honor usermatchmode; patch ↵ | jocuri%softhome.net | 1 | -0/+1 | |
by Jon <kniht@us.ibm.com>; r=myk; a=myk. | |||||
2003-10-19 | Bug 218977: "Table 'namedqueries' was not locked with LOCK TABLES" on ↵ | jocuri%softhome.net | 1 | -3/+2 | |
ThrowUserError('product_edit_denied'); r=bbaetz; a=justdave. | |||||
2003-10-17 | Correcting the previous backout attempt, apparrently typoed a version number ↵ | justdave%syndicomm.com | 1 | -5/+5 | |
last time | |||||
2003-10-17 | Backing out patch from bug 108528 - failed to take i10n concerns into account | justdave%syndicomm.com | 1 | -4/+4 | |
2003-10-16 | Bug 108528 - knob is not defined doesn't explain to 2001110503 users what to do | timeless%mozdev.org | 1 | -1/+1 | |
patch by caduvall@glue.umd.edu r=timeless a=justdave | |||||
2003-10-14 | Bug 220034: empty form after changing bug details; patch by ↵ | jocuri%softhome.net | 1 | -0/+3 | |
wicked@etlicon.fi (Teemu Mannermaa); r=kiko, a=justdave. | |||||
2003-10-07 | Bug 221264 Making no changes shouldn't affect Last modified | timeless%mozdev.org | 1 | -4/+6 | |
r=joel a=justdave | |||||
2003-09-14 | Bug 208699 - Move Throw{Code,Template}Error into Error.pm | bbaetz%acm.org | 1 | -5/+3 | |
r,a=justdave | |||||
2003-08-13 | Bug 215962: Missing {} around implied hash reference in params to ThrowUserError | justdave%syndicomm.com | 1 | -1/+1 | |
patch by Eric Selberg <erik@selberg.com> r= justdave a= justdave | |||||
2003-07-24 | Bug 211435 - Fix "Table 'namedqueries' was not locked with LOCK TABLES" ↵ | preed%sigkill.com | 1 | -0/+1 | |
error; Patch by jocuri@softhome.net (Vlad Dascalu), r=bbaetz, a=justdave | |||||
2003-07-18 | Fixes singed tinderbox trees; vladd: NO TABS in patches, please. Spaces only. | preed%sigkill.com | 1 | -1/+1 | |
2003-07-18 | Bug 82172 - Don't allow empty bug summaries. Patch by jocuri@softhome.net ↵ | preed%sigkill.com | 1 | -0/+4 | |
(Vlad Dascalu), r=kiko, a=justdave | |||||
2003-06-03 | Bug 180635 - Enhance Bugzilla::User to store additional information | bbaetz%acm.org | 1 | -4/+6 | |
r=myk,jake | |||||
2003-05-05 | Bug 201816 - use CGI.pm for header output | bbaetz%acm.org | 1 | -2/+5 | |
r=joel, a=justdave | |||||
2003-04-25 | Fix for bug 179510: takes group restrictions into account when sending ↵ | myk%mozilla.org | 1 | -1/+14 | |
request notifications r=bbaetz,jpreed a=justdave | |||||
2003-04-25 | Bug 193965: On product change, user can accidentally opt-out of required ↵ | justdave%syndicomm.com | 1 | -1/+2 | |
group restriction Patch by Joel Peshkin <bugreport@peshkin.net> r= bbaetz, justdave a= justdave | |||||
2003-04-02 | Bug 199813 - Make all users of ThrowUserError pass $vars in explicitly. | bbaetz%acm.org | 1 | -21/+29 | |
r=gerv a=justdave | |||||
2003-03-27 | Bug 196433 - Bugzilla now uses /usr/bin/perl as the shebang line | jake%bugzilla.org | 1 | -1/+1 | |
r=justdave a=justdave | |||||
2003-02-23 | Bug 194394 - Internal error after turning useqacontact off | bbaetz%acm.org | 1 | -1/+1 | |
r,a=justdave | |||||
2003-02-16 | Bug 186994 - Unable to accept a new bug that has been assigned. Patch by ↵ | gerv%gerv.net | 1 | -8/+4 | |
gerv; r=bbaetz, a=justdave. | |||||
2003-02-15 | Bug 193286: Field validation errors had the wrong page title | justdave%syndicomm.com | 1 | -6/+3 | |
r= gerv, a= justdave | |||||
2003-02-10 | Bug 192513: importxml.pl and move.pl now use the new mail routines ↵ | justdave%syndicomm.com | 1 | -4/+4 | |
introduced in bug 124174 (they got broken when processmail was removed). Also fixes several comments referring to processmail (which no longer exists) in other files, and removes references to processmail from the .htaccess files and the executable file list in checksetup.pl. r= jaypee, a= justdave | |||||
2003-02-10 | Bug 124174 - make processmail a package (Bugzilla::BugMail), r=gerv, r=jth, ↵ | preed%sigkill.com | 1 | -37/+11 | |
a=justdave | |||||
2003-02-08 | Bug 192340 - 'unknown_keyword' error doesn't mention keyword | bbaetz%acm.org | 1 | -0/+1 | |
r=myk, a=justdave | |||||
2003-02-05 | bug 191087 - process_bug.cgi: "Mid-air collision!" title when not allowed to ↵ | burnus%gmx.de | 1 | -1/+1 | |
change a field r=gerv, a=justdave | |||||
2002-11-28 | Bug 171493 - make show_bug use Bug.pm and remove bug_form.pl | bbaetz%student.usyd.edu.au | 1 | -20/+28 | |
r=justdave, joel a=justdave | |||||
2002-11-25 | Bug 147275 Rearchitect product groups | bugreport%peshkin.net | 1 | -58/+155 | |
Patch by joel r=bbaetz,justdave a=justdave | |||||
2002-11-22 | Bug 180966 - warnings in webserver error log (take 2) | bbaetz%student.usyd.edu.au | 1 | -20/+24 | |
r=joel, a=justdave | |||||
2002-11-22 | Backing out the checkin for bug 180966 (fix warnings in web server error ↵ | justdave%syndicomm.com | 1 | -18/+15 | |
log). This checkin caused commenting on bugs to fail if timetracking is not enabled. | |||||
2002-11-20 | Bug 180966 - fix misc warnings | bbaetz%student.usyd.edu.au | 1 | -15/+18 | |
r,a=myk | |||||
2002-11-18 | Bug 180545 - It was possible to change the product/component of a bug ↵ | jake%bugzilla.org | 1 | -3/+26 | |
without having the editbugs permission. r=bbaetz a=justdave | |||||
2002-11-11 | Fix for bug 179334: updates the setter consistently. also fixes numerous ↵ | myk%mozilla.org | 1 | -4/+4 | |
other bugs in the RT code. r=bbaetz a=myk |