Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | Bug 619648: (CVE-2010-4570) [SECURITY] XSS via summary in "possible ↵ | Reed Loden | 2011-01-24 | 1 | -1/+2 |
| | | | | | | duplicates" table due to lack of encoding by YUI [r=mkanat a=LpSolit] | ||||
* | Bug 619637: (CVE-2010-4569) [SECURITY] XSS in user autocomplete due to lack ↵ | Reed Loden | 2011-01-24 | 1 | -1/+8 |
| | | | | | | of encoding by YUI [r=mkanat r=dkl a=LpSolit] | ||||
* | Bug 621110: [SECURITY] Quips (adding/approving/deleting) lacks CSRF protection | Frédéric Buclin | 2011-01-24 | 2 | -2/+12 |
| | | | | r=dkl a=LpSolit | ||||
* | Bug 621108: [SECURITY] Creating/editing charts lacks CSRF protection | Frédéric Buclin | 2011-01-24 | 3 | -2/+9 |
| | | | | r=dkl a=LpSolit | ||||
* | Bug 621107: [SECURITY] Sanity checking lacks CSRF protection | Frédéric Buclin | 2011-01-24 | 4 | -8/+26 |
| | | | | r=dkl a=LpSolit | ||||
* | An optional module was accidentally listed in the "required" section of the | Max Kanat-Alexander | 2011-01-23 | 1 | -2/+2 |
| | | | | | release notes. https://bugzilla.mozilla.org/show_bug.cgi?id=627910 | ||||
* | Bug 627910: Update Release Notes for Bugzilla 4.0rc2 | Max Kanat-Alexander | 2011-01-23 | 1 | -6/+26 |
| | | | | r=reed | ||||
* | Bug 625741: Need a hook in update_fielddefs_definition to enable adding ↵ | rojanu | 2011-01-23 | 3 | -0/+17 |
| | | | | | | columns to fielddefs r/a=mkanat | ||||
* | Bug 621128 - Remove trailing whitespace from '<div id="view_disabled" >' | timeless | 2011-01-22 | 1 | -1/+1 |
| | | | | [r=reed a=LpSolit] | ||||
* | Bug 624696: We need a template hook to add a description to parameters added ↵ | rojanu | 2011-01-22 | 3 | -1/+30 |
| | | | | | | by extensions r/a=mkanat | ||||
* | Bug 621109: Column changing lacks CSRF protection | Frédéric Buclin | 2011-01-22 | 2 | -5/+19 |
| | | | | r=dkl a=mkanat | ||||
* | Bug 627854: Add 'form' hook to create-guided.html.tmpl similar to ↵ | David Lawrence | 2011-01-21 | 1 | -0/+2 |
| | | | | | | create.html.tmpl r/a=mkanat | ||||
* | Bug 591165: (CVE-2010-4411) [SECURITY] Bump minimum required version of ↵ | Reed Loden | 2011-01-21 | 1 | -2/+2 |
| | | | | | | CGI.pm to v3.51 in order to address header injection vulnerability. [r=mkanat a=mkanat] | ||||
* | Bug 627660 - Rename "Send" button on final create account page to "Create", ↵ | Reed Loden | 2011-01-21 | 1 | -1/+1 |
| | | | | | | as nothing is actually sent. [r=mkanat a=mkanat] | ||||
* | Bug 626292: "Make description private" checkbox should set bz_private class ↵ | David Lawrence | 2011-01-21 | 3 | -6/+8 |
| | | | | | | on the comment box r/a=mkanat | ||||
* | Bug 623608 - Add intro/outro extension hooks to footer.html.tmpl | David Lawrence | 2011-01-21 | 1 | -2/+2 |
| | | | | r/a=mkanat | ||||
* | Bug 626658 - Add (take) link to bug edit page to allow quick assigning to ↵ | David Lawrence | 2011-01-20 | 2 | -4/+19 |
| | | | | | | the current user r/a=mkanat | ||||
* | Bug 625190: Typo and Missing FK in Bugzilla::DB::Schema | David Marshall | 2011-01-15 | 1 | -3/+6 |
| | | | | r/a=mkanat | ||||
* | Bug 623408: Message-ID is gone in bugmail for new bugs | Frédéric Buclin | 2011-01-15 | 1 | -2/+3 |
| | | | | r=dkl a=LpSolit | ||||
* | Bug 624349: Let the config_modify_panels hook add new parameters to existing ↵ | Frédéric Buclin | 2011-01-11 | 1 | -11/+10 |
| | | | | | | panels r/a=mkanat | ||||
* | Bug 618841: Bare word "bug" in release notes | A. Shimono | 2011-01-09 | 1 | -3/+3 |
| | | | | r=dkl a=LpSolit | ||||
* | Bug 622204: Bugzilla::Migrate crashes trying to create bugs with resolutions | 2011-01-09 | 1 | -1/+1 | |
| | | | | r/a=mkanat | ||||
* | Bug 558803: Add a parameter to specify the password complexity for new passwords | rojanu | 2011-01-07 | 4 | -1/+52 |
| | | | | r/a=LpSolit | ||||
* | Bug 255524: The duplicates table inherits no CSS classes when viewed in ↵ | Frédéric Buclin | 2011-01-07 | 1 | -0/+4 |
| | | | | | | simple format r=dkl a=LpSolit | ||||
* | Provide user objects to bugmail_recipients hook. r,a=mkanat. | Gervase Markham | 2011-01-07 | 2 | -1/+15 |
| | | | https://bugzilla.mozilla.org/show_bug.cgi?id=622813 | ||||
* | Bug 621090 - [SECURITY] Adding saved searches lacks CSRF protection | David Lawrence | 2011-01-06 | 3 | -0/+4 |
| | | | | r/a=mkanat | ||||
* | Document how to add user settings. r,a=mkanat. | Gervase Markham | 2011-01-05 | 3 | -1/+19 |
| | | | https://bugzilla.mozilla.org/show_bug.cgi?id=616427 | ||||
* | Allow extensions to add new Jobs. r,a=mkanat. | Gervase Markham | 2011-01-05 | 5 | -3/+45 |
| | | | https://bugzilla.mozilla.org/show_bug.cgi?id=617012 | ||||
* | Bug 622822 - add additional_links hook to front page. r,a=mkanat. | Gervase Markham | 2011-01-05 | 1 | -0/+1 |
| | |||||
* | Bug 595410: Make it faster to display a bug that has a lot of dependencies. | Max Kanat-Alexander | 2011-01-03 | 8 | -98/+168 |
| | | | | r=LpSolit, a=LpSolit | ||||
* | Bug 622437: Remove 'colchange_columns' hook from the Example extension | Tiago Mello | 2011-01-02 | 1 | -7/+0 |
| | | | | r/a=LpSolit | ||||
* | Bug 622105 - Misspelling in setting_info_invalid error message | David Lawrence | 2010-12-30 | 1 | -1/+1 |
| | | | | r/a=LpSolit | ||||
* | Bug 621597: Make mod_perl.pl do the INC configuration itself, instead of | Max Kanat-Alexander | 2010-12-28 | 2 | -2/+8 |
| | | | | | requiring it to be in httpd.conf. r=dkl, a=mkanat | ||||
* | Remove unused variable, per my review comment | Frédéric Buclin | 2010-12-28 | 1 | -1/+0 |
| | | | https://bugzilla.mozilla.org/show_bug.cgi?id=615574 | ||||
* | Bug 618844: Make clear that the Apache module must be enabled in release notes | A. Shimono (himorin) | 2010-12-27 | 1 | -2/+2 |
| | | | | r/a=mkanat | ||||
* | Bug 618842: Enclose checksetup.pl between <kbd> and </kbd> tags in templates | A. Shimono (himorin) | 2010-12-27 | 5 | -15/+15 |
| | | | | r/a=mkanat | ||||
* | Bug 599539: Update the mod_perl code for Apache2::SizeLimit 0.92 | Max Kanat-Alexander | 2010-12-27 | 3 | -16/+25 |
| | | | | r=glob, a=mkanat | ||||
* | Bug 615574: Make every search done by buglist.cgi create a list_id, so that | Max Kanat-Alexander | 2010-12-27 | 4 | -25/+61 |
| | | | | | even Saved Searches get "last list" support. r=LpSolit, a=LpSolit | ||||
* | Bug 603762: Vertical margins between header, footer, and content are not ↵ | Christian Legnitto | 2010-12-27 | 2 | -4/+1 |
| | | | | | | consistent r=pyrzak a=mkanat | ||||
* | Bug 588013: Fix typo | timeless | 2010-12-27 | 1 | -1/+1 |
| | | | | r/a=mkanat | ||||
* | Add contributor lines for mkanat and myself for the new BugUrl modules. | Reed Loden | 2010-12-23 | 5 | -5/+9 |
| | | | | | Add missing period in original developer line in license block. [a=mkanat] | ||||
* | Bug 620796: Make Bugzilla::Migrate skip abnormal fields when doing | Max Kanat-Alexander | 2010-12-21 | 1 | -0/+2 |
| | | | | | | create_legal_values (otherwise it tried to create Components there, when it should not have). r=mkanat, a=mkanat (module owner) | ||||
* | Bug 593539: Fix the bugs activity for the see_also field. | Tiago Mello | 2010-12-21 | 1 | -1/+2 |
| | | | | r/a=mkanat | ||||
* | Bug 593539: Refactor See Also to use separate modules for each type of URL | Tiago Mello | 2010-12-20 | 8 | -160/+558 |
| | | | | r/a=mkanat | ||||
* | Bug 475894 - Send the 'X-Frame-Options: SAMEORIGIN' header to help protect ↵ | Reed Loden | 2010-12-18 | 1 | -0/+6 |
| | | | | | | against clickjacking. [r=mkanat a=mkanat] | ||||
* | Remove some real configuration data that had crept into bzdbcopy.pl. | Max Kanat-Alexander | 2010-12-16 | 1 | -4/+4 |
| | | | https://bugzilla.mozilla.org/show_bug.cgi?id=619581 | ||||
* | Bug 619581: Make contrib/bzdbcopy.pl work again, and also make it work with | Max Kanat-Alexander | 2010-12-15 | 2 | -10/+34 |
| | | | | | SQLite. r=mkanat, a=mkanat | ||||
* | Checkin fix for bug 619016: "DEFAULT TRUE" and "DEFAULT FALSE" were no longer | Max Kanat-Alexander | 2010-12-15 | 1 | -7/+11 |
| | | | | | getting properly translated to 1 and 0 inside of _set_nulls_sql in Bugzilla::DB::Schema. | ||||
* | Bug 313583: Remove long_list.cgi, showattachment.cgi and xml.cgi. | Frédéric Buclin | 2010-12-16 | 4 | -117/+4 |
| | | | | | They are all deprecated since Bugzilla 2.19. r/a=mkanat | ||||
* | Additional fix for bug 619016: The FK adding/removing code for SQLite didn't | Max Kanat-Alexander | 2010-12-15 | 1 | -9/+26 |
| | | | | | | work when it was modifying tables to have their first FK or removing all the FKs on a table. r=mkanat, a=mkanat (module owner) |