bugzilla - Bugzilla

Age	Commit message (Collapse)	Author	Files	Lines
2012-06-07	Bug 761230: The server push page no longer displays all debug data	Frédéric Buclin	1	-9/+4
	r=timello a=LpSolit
2012-05-29	Bug 754672 - CSRF vulnerability in buglist.cgi allows possible unauthorized ↵	Reed Loden	1	-9/+14
	setting of default search options [r=LpSolit a=LpSolit]
2012-05-29	Bug 754673 - CSRF vulnerability in query.cgi allows possible unauthorized ↵	Reed Loden	1	-1/+2
	use of "Set my default search back to the system default" [r=LpSolit a=LpSolit]
2012-05-28	Bug 756314: Fix dropping of unique matches when the "confirm page" page is ↵	Byron Jones	1	-4/+4
	display. r=LpSolit, a=LpSolit
2012-05-28	Bug 754981: Add a link pointing to the bug itself in HTML bugmails when only ↵	Koosha Khajeh Moogahi	1	-0/+1
	a comment is added r/a=LpSolit
2012-04-30	Bug 749074: Throw an error message instead of syntax error on invalid search ↵	Byron Jones	1	-0/+4
	type operators r=LpSolit,a=LpSolit
2012-04-18	Bug 745397: (CVE-2012-0466) [SECURITY] The JS template for buglists permits ↵	Frédéric Buclin	1	-37/+0
	attackers to access all bugs that the victim can see r=glob a=LpSolit
2012-04-17	Bug 741078: Update relnotes for 4.2.1	Frédéric Buclin	1	-3/+6

2012-04-17	Bug 745197: Add a hook in Bugzilla::Error::_throw_error() so that extensions ↵	Frédéric Buclin	1	-4/+2
	can control the way to throw errors r=dkl a=LpSolit
2012-04-15	Comment toggling text is not localizable because it's in a .js file.	Marc Schumann	1	-1/+1
	r/a=LpSolit https://bugzilla.mozilla.org/show_bug.cgi?id=745460
2012-04-14	Change columns: empty buttons when images turned off.	Marc Schumann	1	-10/+13
	r/a=LpSolit https://bugzilla.mozilla.org/show_bug.cgi?id=474747
2012-04-12	Bug 741078: Release notes for Bugzilla 4.2.1	Frédéric Buclin	1	-2/+47
	r=dkl
2012-04-11	If you're not allowed to change status or resolution, their values are being ↵	Marc Schumann	1	-15/+24
	displayed unlocalized. r/a=LpSolit https://bugzilla.mozilla.org/show_bug.cgi?id=740879
2012-03-29	Bug 554819: Quicksearch should be using Text::ParseWords instead of custom ↵	Frédéric Buclin	2	-8/+96
	code in splitString Also fixes QS with accented characters (bug 730207) r=dkl a=LpSolit
2012-03-28	Bug 735821: Fix broken HTML code in bugmail.html.tmpl.	Tiago Mello	1	-1/+1
	r/a=LpSolit
2012-03-26	Bug 734471 - Need new hook edituser search template	Francisco Donalisio	1	-0/+3
	r=timello, a=LpSolit
2012-03-26	Add hooks for alternative login methods. r,a=LpSolit.	Gervase Markham	2	-0/+5
	https://bugzilla.mozilla.org/show_bug.cgi?id=698418
2012-03-17	Fix bustage: Bugzilla -> terms.Bugzilla	Frédéric Buclin	1	-3/+3
	https://bugzilla.mozilla.org/show_bug.cgi?id=736057
2012-03-17	Bug 736057: Add to the release notes that \|FILTER url_quote\| has been ↵	Frédéric Buclin	1	-0/+3
	replaced by \|FILTER uri\| r=dkl a=LpSolit
2012-03-10	Tabular reports' column headers do not use display_value.	Marc Schumann	1	-1/+1
	r/a=LpSolit https://bugzilla.mozilla.org/show_bug.cgi?id=734413
2012-03-06	Fix bustage	Frédéric Buclin	1	-1/+0

2012-03-06	Bug 545610: Correctly parse CGI parameters, especially when using mod_perl	Frédéric Buclin	1	-6/+7
	r=gerv a=LpSolit
2012-03-06	Bug 731323: Wrong URLs in the "Total" row at the bottom of tabular reports ↵	Frédéric Buclin	1	-0/+8
	when JS is enabled and a user field is used for the vertical axis r=gerv a=LpSolit
2012-03-03	Bug 731586: Email notifications about status changes in blockers are ↵	Frédéric Buclin	2	-11/+7
	incorrectly formatted r=dkl a=LpSolit
2012-02-28	Bug 695514: Slow performance in field-events.js.tmpl on show_bug.cgi with ↵	Frédéric Buclin	3	-3/+14
	large number of products r=dkl a=LpSolit
2012-02-25	Bug 730552: HTML markup validation: unescaped "&" in CSV link on buglist.cgi	Frédéric Buclin	1	-1/+1
	r=timello a=LpSolit
2012-02-22	Bug 725663 - (CVE-2012-0453) [SECURITY] CSRF vulnerability in the XML-RPC ↵	Dave Lawrence	1	-0/+5
	API when using mod_perl r/a=LpSolit
2012-02-20	Bug 718283: Indentation and newlines in the "Descriptive text sent within ↵	Matt Selsky	1	-2/+2
	whine message" are ignored in HTML whinemail r/a=LpSolit
2012-02-08	Bug 722161: Clickjacking is possible in "View All" with HTML attachments	Frédéric Buclin	1	-4/+16
	r=dkl a=LpSolit
2012-01-31	(CVE-2012-0440) [SECURITY] JSON-RPC permits to bypass token checks and can ↵	Frédéric Buclin	1	-0/+5
	lead to CSRF (no victim's action required) r=mkanat a=LpSolit https://bugzilla.mozilla.org/show_bug.cgi?id=718319
2012-01-31	Bug 714472: (CVE-2012-0448) [SECURITY] utf8 homoglyphs are allowed in email ↵	Frédéric Buclin	2	-5/+3
	addresses, which could allow an attacker to be CC'ed to private bugs by accident r=glob a=LpSolit
2012-01-27	Bug 720756 - Update release notes for Bugzilla 4.2rc2	Dave Lawrence	1	-4/+8
	r/a=LpSolit
2012-01-26	Fix bustage due to bug 715514.	Tiago Mello	1	-1/+1

2012-01-25	Bug 715514: Fix showdependencytree misleading in "hide resolved" view	Matt Selsky	1	-2/+2
	r=timello, a=LpSolit
2012-01-12	Bug 717215: Remove references to url_quote filter	Simon Green	2	-5/+1
	r/a=LpSolit
2012-01-11	Bug 717210: If all attachments are stored locally (maxattachmentsize = 0, ↵	Simon Green	2	-3/+3
	maxlocalattachment > 0), the link to attach files to bugs is not displayed r/a=LpSolit
2012-01-11	Bug 715650 - User auto-completion does not work in request.cgi for requester ↵	Dave Lawrence	1	-1/+2
	and requestee as expected r=timello, a=LpSolit
2012-01-11	Bug 716227: When checksetup.pl tells the admin that he should edit variables ↵	Frédéric Buclin	1	-6/+8
	in localconfig, the message should be red r=timello a=LpSolit
2012-01-10	Bug 716283: Clickjacking in the attachment "Details" page allows to bypass ↵	Frédéric Buclin	2	-0/+13
	token checks r=dkl a=LpSolit
2012-01-06	Bug 706753 about JSON::RPC 1.01 is now fixed	Frédéric Buclin	1	-4/+0

2012-01-06	Bug 695294: The See Also field is not visible in "Format for Printing"	Matt Selsky	1	-0/+12
	r/a=LpSolit
2012-01-06	Bug 715705: User auto-completion doesn't work for watched users in the email ↵	Frédéric Buclin	1	-1/+2
	prefs tab r=timello a=LpSolit
2012-01-06	Bug 714664: The content of the "emailregexpdesc" parameter is not escaped ↵	Frédéric Buclin	2	-2/+2
	when displayed to the user r=dkl a=LpSolit
2011-12-28	user_autocompletion -> ajax_user_autocompletion	Frédéric Buclin	1	-1/+1
	https://bugzilla.mozilla.org/show_bug.cgi?id=713346
2011-12-28	Bug 713346: Release notes for Bugzilla 4.2rc1	Frédéric Buclin	2	-3418/+4037
	r=mkanat a=LpSolit
2011-12-26	Bug 683644: Foreign keys aren't renamed correctly when DB tables are renamed	Frédéric Buclin	1	-1/+1
	r=wicked a=LpSolit
2011-12-13	Bug 705474 - CSRF vulnerability in createaccount.cgi allows possible ↵	Reed Loden	1	-0/+1
	unauthorized account creation e-mail request [r=mkanat a=mkanat]
2011-12-05	Bug 577854: URL field header caption does not link to field value ↵	Matt Selsky	2	-10/+7
	description (confusingly links to actual URL) r/a=mkanat
2011-11-29	Bug 692737 - Main page icons are not centered.	Marc Schumann	1	-16/+24
	r/a=mkanat
2011-11-29	Bug 686422: Fix custom search's history interaction on HTML4 browsers	Byron Jones	1	-1/+5
	r=mkanat, a=mkanat