Age | Commit message (Collapse) | Author | Files | Lines | |
---|---|---|---|---|---|
2011-01-24 | Bug 619588: (CVE-2010-4567) [SECURITY] Safety checks that disallow clicking ↵ | Frédéric Buclin | 1 | -3/+3 | |
for javascript: or data: URLs in the URL field can be evaded with prefixed whitespace and Bug 628034: (CVE-2011-0048) [SECURITY] For not-logged-in users, the URL field doesn't safeguard against javascript: or data: URLs r=dkl a=LpSolit | |||||
2010-07-23 | Bug 398701: Replace |FILTER url_quote| by |FILTER uri| | Frédéric Buclin | 1 | -1/+1 | |
r/a=mkanat | |||||
2010-02-08 | Bug 251556: Allow "Bug ID" fields to have one-way mutual relationships (like ↵ | Jesse Clark | 1 | -0/+7 | |
blocks/dependson) r=mkanat, a=mkanat | |||||
2009-11-18 | Bug 519142: Replace IF/ELSE statements about bug_status/resolution with just ↵ | mkanat%bugzilla.org | 1 | -3/+3 | |
a display_value call, and use display_value in more places to translate field values. Patch by Vitaly Fedrushkov <vitaly.fedrushkov@gmail.com> r=mkanat, a=mkanat | |||||
2009-11-10 | Bug 505039: Use $user->is_timetracker instead of ↵ | lpsolit%gmail.com | 1 | -1/+1 | |
$user->in_group(Bugzilla->params->{'timetrackinggroup'}) - Patch by XqueZme <xquezme@gmail.com> r/a=LpSolit | |||||
2009-11-10 | Bug 472217: Create a Bugzilla::Comment object and eliminate GetComments | mkanat%bugzilla.org | 1 | -1/+1 | |
Patch by Max Kanat-Alexander <mkanat@bugzilla.org> r=LpSolit, a=LpSolit | |||||
2009-10-01 | Bug 512623: Change get_status and get_resolution to display_value everywhere. | mkanat%bugzilla.org | 1 | -2/+2 | |
Patch by Max Kanat-Alexander <mkanat@bugzilla.org> r=LpSolit, a=LpSolit | |||||
2009-01-29 | Bug 219021: Only display email addresses to logged-in users | mkanat%bugzilla.org | 1 | -2/+2 | |
Patch By Max Kanat-Alexander <mkanat@bugzilla.org> r=LpSolit, a=LpSolit | |||||
2008-06-04 | Bug 437010: Add hook to show-multiple.html.tmpl to add fields to detailed ↵ | mkanat%bugzilla.org | 1 | -0/+4 | |
bug list. Patch By Elliotte Martin <elliotte_martin@yahoo.com> r=mkanat, a=mkanat | |||||
2008-05-05 | Bug 425665: [SECURITY] XSS in show_bug.cgi: id isn't filtered for ↵ | lpsolit%gmail.com | 1 | -3/+3 | |
format=multiple - Patch by Frédéric Buclin <LpSolit@gmail.com> r=mkanat r=wurblzap a=LpSolit | |||||
2008-02-25 | Bug 415652: Implement Bugzilla->active_custom_fields - Patch by ↵ | lpsolit%gmail.com | 1 | -1/+1 | |
Frédéric Buclin <LpSolit@gmail.com> r/a=mkanat | |||||
2007-11-12 | Part 4 of bug 182083: add Help for non-admin pages - Patch by me, r=Colin | lpsolit%gmail.com | 1 | -0/+1 | |
2007-08-24 | Bug 389537 bug title should linkify alias next to already linkified bug number | timeless%mozdev.org | 1 | -1/+2 | |
r=vladd, r=mkanat a=mkanat | |||||
2007-08-24 | Bug 389541 Provide a way to get from full text bug listing to short bug listing | timeless%mozdev.org | 1 | -0/+10 | |
r=vladd a=mkanat | |||||
2007-08-21 | Bug 392186: Remove version headers from all templates - Patch by GavinS ↵ | lpsolit%gmail.com | 1 | -1/+0 | |
<bugzilla@chimpychompy.org> r/a=LpSolit | |||||
2007-08-15 | Bug 259723 â Alternative Bugzilla CSS. | wurblzap%gmail.com | 1 | -1/+0 | |
Patch by Marc Schumann <wurblzap@gmail.com>, r=glob,LpSolit; a=LpSolit | |||||
2007-04-11 | Bug 377026: Replace all occurences of status_descs.FOO by get_status("FOO") ↵ | lpsolit%gmail.com | 1 | -1/+1 | |
(next step in supporting custom bug statuses) - Patch by Frédéric Buclin <LpSolit@gmail.com> r=gerv a=LpSolit | |||||
2006-12-27 | Bug 364165 - ""Unclassified" classification appears in "Format for Printing" ↵ | reed%reedloden.com | 1 | -1/+1 | |
but not normal view" [p=reed r=bkor a=justdave] | |||||
2006-10-15 | Bug 206037: [SECURITY] Fix escaping/quoting in edit*.cgi scripts - Patch by ↵ | lpsolit%gmail.com | 1 | -1/+1 | |
Frédéric Buclin <LpSolit@gmail.com> r=justdave a=justdave | |||||
2006-09-05 | Bug 283582: Remove UserInGroup in favor of Bugzilla->user->in_group | mkanat%bugzilla.org | 1 | -1/+1 | |
Patch By victory(_RSZ_) <bmo2007@rsz.jp> r=mkanat, a=myk | |||||
2006-08-12 | Bug 348057: Move the checks for bug visibility out of Bugzilla::Bug->new | mkanat%bugzilla.org | 1 | -1/+1 | |
Patch By Max Kanat-Alexander <mkanat@bugzilla.org> r=LpSolit, a=myk | |||||
2006-07-18 | Bug 344513: Make plain-text custom fields functional on all pages except ↵ | mkanat%bugzilla.org | 1 | -0/+14 | |
enter_bug.cgi Patch By Max Kanat-Alexander <mkanat@bugzilla.org> r=LpSolit, a=myk | |||||
2006-07-14 | Bug 94534: Customised resolutions - Patch by Frédéric Buclin ↵ | lpsolit%gmail.com | 1 | -1/+1 | |
<LpSolit@gmail.com> r=mkanat a=myk | |||||
2006-06-19 | Bug 341924: When viewing several bugs at once using ↵ | lpsolit%gmail.com | 1 | -0/+17 | |
show_bug.cgi?format=multiple, invalid bugs should generate an error message - Patch by Frédéric Buclin <LpSolit@gmail.com> r=timeless a=myk | |||||
2006-02-22 | Bug 219555: 'Format for Printing' page is a mess - Patch by Olav Vitters ↵ | lpsolit%gmail.com | 1 | -111/+219 | |
<bugzilla-mozilla@bkor.dhs.org> r=LpSolit a=justdave | |||||
2006-01-03 | Bug 320960: When viewing bugs in the "Format for printing" (aka Long ↵ | lpsolit%gmail.com | 1 | -5/+9 | |
format), the bug status and resolution are not translated correctly - Patch by Frédéric Buclin <LpSolit@gmail.com> r=wurblzap a=justdave | |||||
2005-08-10 | Bug 292096: Remove the extra Description label in long list format - Patch ↵ | lpsolit%gmail.com | 1 | -5/+0 | |
by Emmanuel Seyman <eseyman@linagora.com> r=LpSolit a=justdave | |||||
2005-01-25 | Bug 201818 : Convert long_list.cgi to a format | travis%sedsystems.ca | 1 | -7/+13 | |
Patch by Rob Siklos <robzilla@siklos.ca> r=wurblzap, glob a=myk | |||||
2005-01-24 | Tinderbox is burning: backing out the pach for Bug 201818 | travis%sedsystems.ca | 1 | -13/+7 | |
2005-01-24 | Bug 201818 : Convert long_list.cgi to a format | travis%sedsystems.ca | 1 | -7/+13 | |
Patch by Rob Siklos <robzilla@siklos.ca> r=wurblzap, glob a=myk | |||||
2005-01-16 | Patch for bug 103636: Support specifying a date on which a bug is expected ↵ | jocuri%softhome.net | 1 | -0/+2 | |
to be resolved; patch by Alexandre Michetti Manduca <michetti@grad.icmc.usp.br>, r=jouni, a=myk. | |||||
2005-01-15 | Bug 276907: Don't linkify javascript: or data: URLs in the URL field on a bug. | justdave%bugzilla.org | 1 | -2/+7 | |
Patch by Gervase Markham <gerv@mozilla.org> r= justdave,vladd, a= justdave | |||||
2004-11-03 | Patch for bug 258355: remove 1x1.gif and use CSS instead in order to create ↵ | jocuri%softhome.net | 1 | -1/+0 | |
suitable spacing; patch by Frédéric Buclin <LpSolit@netscape.net>; r=kiko, a=justdave. | |||||
2004-10-22 | Fix for bug 256207: moves CSS files to skins/standard/ as part of CSS plan; ↵ | myk%mozilla.org | 1 | -1/+1 | |
r=gerv, a=justdave | |||||
2004-08-21 | Bug 224208 Add a higher level of categorization (.ie departments, locations, ↵ | bugreport%peshkin.net | 1 | -2/+8 | |
etc.) patch by Albert Ting r=joel, glob a=myk | |||||
2004-07-22 | Fix for bug 251727: Create a /images directory. Moved 1x1.gif into it; left | kiko%async.com.br | 1 | -1/+1 | |
ant.jpg out to avoid complaints about "this very important testing resource" <wink>. Fixed single callsite (and someone please explain to me what it's useful for!) a=justdave, myk. | |||||
2004-02-03 | Bug 232413 - remove occurrences of in favour of [%+ construct to ↵ | gerv%gerv.net | 1 | -1/+1 | |
prevent whitespace chomping. Patch by gerv; r=kiko, a=justdave. | |||||
2004-01-19 | Patch for bug 228894: Change HTML comments to template-toolkit ones for ↵ | jocuri%softhome.net | 1 | -1/+1 | |
template version numbers; patch by GavinS <bugzilla@chimpychompy.org>; r=kiko; a=justdave. | |||||
2003-09-07 | Bug 207044 - Filter more template directives. None of these are security ↵ | gerv%gerv.net | 1 | -2/+2 | |
bugs, but they need fixing anyway. Patch by gerv; r,a=justdave. | |||||
2003-08-05 | Fix for bug 204560: display alias in long listing. | myk%mozilla.org | 1 | -0/+3 | |
Fix by GavinS <bugzilla@chimpychompy.org>. r=myk, a=myk | |||||
2003-07-04 | Bug 13540 - allow key terms, like "Bugzilla" and "bug", to be altered ↵ | gerv%gerv.net | 1 | -29/+31 | |
without changing all the templates. Patch by jwilmoth@starbucks.com; r=gerv, a=justdave. | |||||
2003-04-25 | Bug 192677: Add new test to flag failure-to-filter situations in the ↵ | justdave%syndicomm.com | 1 | -1/+2 | |
templates, and correct the XSS holes that were discovered as a result of it. Patch by Gervase Markham <gerv@mozilla.org> r= myk, bbaetz, justdave a= justdave | |||||
2003-01-07 | Bug 187869 long_list.cgi output includes <font ="+3"> before each bug summary | timeless%mozdev.org | 1 | -1/+1 | |
r=burnus a=justdave | |||||
2002-12-01 | Bug 178880 - Creation date is now displayed in the long list. | jake%bugzilla.org | 1 | -0/+6 | |
Patch by Frank Wein <mcsmurf@gmx.net> r=jake a=justdave | |||||
2002-10-13 | Bug 24789 [E|A|R] Add Estimated, Actual, Remaining Time Fields | bugreport%peshkin.net | 1 | -0/+28 | |
patch by jeff.hedlund@matrixsi.com 2xr=joel,justdave | |||||
2002-08-20 | Bug 143286 - Add support for Insiders, Private comments, Private ↵ | gerv%gerv.net | 1 | -1/+1 | |
Attachments. Patch by bugreport@peshkin.net; r=gerv. | |||||
2002-06-28 | Bug 148488 - more HTML validation fixes | bbaetz%student.usyd.edu.au | 1 | -1/+1 | |
r=jouni, gerv | |||||
2002-05-22 | Fix for bug 47251: Make HTML output HTML 4.01 Transitional compliant. | myk%mozilla.org | 1 | -1/+1 | |
Patch by mental <xor@ivwnet.com>. r=justdave,myk | |||||
2002-04-24 | Bug 138582 - convert all INCLUDEs to PROCESS. Patch by gerv, r=bbaetz, afranke. | gerv%gerv.net | 1 | -2/+2 | |
2002-04-20 | Bug 135707 - template reorganisation. This makes the new copies of the ↵ | gerv%gerv.net | 1 | -2/+2 | |
templates use all the correct names internally. Patch by me, 2xr=myk. |