aboutsummaryrefslogtreecommitdiffstats
Commit message (Collapse)AuthorAgeFilesLines
* Bug 622679 - Autocomplete suggests inactive/disabled accounts as matchesDavid Lawrence2011-01-271-1/+11
| | | | r/a=mkanat
* Allow extensions to alter quicksearch terms and search format. r=mkanat.Gervase Markham2011-01-273-0/+25
| | | https://bugzilla.mozilla.org/show_bug.cgi?id=621878
* Allow jobqueue.pl to run once and then exit. r=mkanat.Gervase Markham2011-01-272-1/+21
| | | https://bugzilla.mozilla.org/show_bug.cgi?id=621256
* Add missing documentation. r=mkanat.Gervase Markham2011-01-271-1/+3
| | | https://bugzilla.mozilla.org/show_bug.cgi?id=629321
* Allow addition/removal of descriptions of statuses and resolutions. r=mkanat.Gervase Markham2011-01-271-20/+26
| | | https://bugzilla.mozilla.org/show_bug.cgi?id=616453
* Fix bustage; diffs is an arrayref in 4.0, an array on trunk.Gervase Markham2011-01-271-1/+1
| | | https://bugzilla.mozilla.org/show_bug.cgi?id=616422
* Update default column list to something more sensible. r=mkanat, lpsolit, ↵Gervase Markham2011-01-271-2/+2
| | | | | wurblzap. https://bugzilla.mozilla.org/show_bug.cgi?id=621676
* Add diffs parameter to bugmail_recipients hook. r=mkanat.Gervase Markham2011-01-272-2/+11
| | | https://bugzilla.mozilla.org/show_bug.cgi?id=616422
* Make param pages without a sortkey sort to the end. r=dkl, a=lpsolit.Gervase Markham2011-01-251-0/+1
| | | https://bugzilla.mozilla.org/show_bug.cgi?id=621255
* Bug 619594: (CVE-2010-4568) [SECURITY] Improve the randomness ofMax Kanat-Alexander2011-01-244-5/+32
| | | | | | | generate_random_password, to protect against an account compromise issue and other critical vulnerabilities. r=LpSolit, a=LpSolit https://bugzilla.mozilla.org/show_bug.cgi?id=621591
* Bug 621105 - [SECURITY] Voting lacks CSRF protectionDavid Lawrence2011-01-243-0/+6
| | | | r=mkanat,a=LpSolit
* Bug 619588: (CVE-2010-4567) [SECURITY] Safety checks that disallow clicking ↵Frédéric Buclin2011-01-244-19/+29
| | | | | | | | | | for javascript: or data: URLs in the URL field can be evaded with prefixed whitespace and Bug 628034: (CVE-2011-0048) [SECURITY] For not-logged-in users, the URL field doesn't safeguard against javascript: or data: URLs r=dkl a=LpSolit
* Bug 621572: (CVE-2010-4572) [SECURITY] chart.cgi vulnerable to ↵Reed Loden2011-01-241-3/+3
| | | | | | header-injection due to use of |print "Location:"| instead of $cgi->redirect [r=mkanat a=LpSolit]
* Bug 619648: (CVE-2010-4570) [SECURITY] XSS via summary in "possible ↵Reed Loden2011-01-241-1/+2
| | | | | | duplicates" table due to lack of encoding by YUI [r=mkanat a=LpSolit]
* Bug 619637: (CVE-2010-4569) [SECURITY] XSS in user autocomplete due to lack ↵Reed Loden2011-01-241-1/+8
| | | | | | of encoding by YUI [r=mkanat r=dkl a=LpSolit]
* Bug 621110: [SECURITY] Quips (adding/approving/deleting) lacks CSRF protectionFrédéric Buclin2011-01-242-2/+12
| | | | r=dkl a=LpSolit
* Bug 621108: [SECURITY] Creating/editing charts lacks CSRF protectionFrédéric Buclin2011-01-243-2/+9
| | | | r=dkl a=LpSolit
* Bug 621107: [SECURITY] Sanity checking lacks CSRF protectionFrédéric Buclin2011-01-244-8/+26
| | | | r=dkl a=LpSolit
* An optional module was accidentally listed in the "required" section of theMax Kanat-Alexander2011-01-231-2/+2
| | | | | release notes. https://bugzilla.mozilla.org/show_bug.cgi?id=627910
* Bug 627910: Update Release Notes for Bugzilla 4.0rc2Max Kanat-Alexander2011-01-231-6/+26
| | | | r=reed
* Bug 625741: Need a hook in update_fielddefs_definition to enable adding ↵rojanu2011-01-233-0/+17
| | | | | | columns to fielddefs r/a=mkanat
* Bug 621128 - Remove trailing whitespace from '<div id="view_disabled" >'timeless2011-01-221-1/+1
| | | | [r=reed a=LpSolit]
* Bug 624696: We need a template hook to add a description to parameters added ↵rojanu2011-01-223-1/+30
| | | | | | by extensions r/a=mkanat
* Bug 621109: Column changing lacks CSRF protectionFrédéric Buclin2011-01-222-5/+19
| | | | r=dkl a=mkanat
* Bug 627854: Add 'form' hook to create-guided.html.tmpl similar to ↵David Lawrence2011-01-211-0/+2
| | | | | | create.html.tmpl r/a=mkanat
* Bug 591165: (CVE-2010-4411) [SECURITY] Bump minimum required version of ↵Reed Loden2011-01-211-2/+2
| | | | | | CGI.pm to v3.51 in order to address header injection vulnerability. [r=mkanat a=mkanat]
* Bug 627660 - Rename "Send" button on final create account page to "Create", ↵Reed Loden2011-01-211-1/+1
| | | | | | as nothing is actually sent. [r=mkanat a=mkanat]
* Bug 626292: "Make description private" checkbox should set bz_private class ↵David Lawrence2011-01-213-6/+8
| | | | | | on the comment box r/a=mkanat
* Bug 623608 - Add intro/outro extension hooks to footer.html.tmplDavid Lawrence2011-01-211-2/+2
| | | | r/a=mkanat
* Bug 626658 - Add (take) link to bug edit page to allow quick assigning to ↵David Lawrence2011-01-202-4/+19
| | | | | | the current user r/a=mkanat
* Bug 625190: Typo and Missing FK in Bugzilla::DB::SchemaDavid Marshall2011-01-151-3/+6
| | | | r/a=mkanat
* Bug 623408: Message-ID is gone in bugmail for new bugsFrédéric Buclin2011-01-151-2/+3
| | | | r=dkl a=LpSolit
* Bug 624349: Let the config_modify_panels hook add new parameters to existing ↵Frédéric Buclin2011-01-111-11/+10
| | | | | | panels r/a=mkanat
* Bug 618841: Bare word "bug" in release notesA. Shimono2011-01-091-3/+3
| | | | r=dkl a=LpSolit
* Bug 622204: Bugzilla::Migrate crashes trying to create bugs with resolutions2011-01-091-1/+1
| | | | r/a=mkanat
* Bug 558803: Add a parameter to specify the password complexity for new passwordsrojanu2011-01-074-1/+52
| | | | r/a=LpSolit
* Bug 255524: The duplicates table inherits no CSS classes when viewed in ↵Frédéric Buclin2011-01-071-0/+4
| | | | | | simple format r=dkl a=LpSolit
* Provide user objects to bugmail_recipients hook. r,a=mkanat.Gervase Markham2011-01-072-1/+15
| | | https://bugzilla.mozilla.org/show_bug.cgi?id=622813
* Bug 621090 - [SECURITY] Adding saved searches lacks CSRF protectionDavid Lawrence2011-01-063-0/+4
| | | | r/a=mkanat
* Document how to add user settings. r,a=mkanat.Gervase Markham2011-01-053-1/+19
| | | https://bugzilla.mozilla.org/show_bug.cgi?id=616427
* Allow extensions to add new Jobs. r,a=mkanat.Gervase Markham2011-01-055-3/+45
| | | https://bugzilla.mozilla.org/show_bug.cgi?id=617012
* Bug 622822 - add additional_links hook to front page. r,a=mkanat.Gervase Markham2011-01-051-0/+1
|
* Bug 595410: Make it faster to display a bug that has a lot of dependencies.Max Kanat-Alexander2011-01-038-98/+168
| | | | r=LpSolit, a=LpSolit
* Bug 622437: Remove 'colchange_columns' hook from the Example extensionTiago Mello2011-01-021-7/+0
| | | | r/a=LpSolit
* Bug 622105 - Misspelling in setting_info_invalid error message David Lawrence2010-12-301-1/+1
| | | | r/a=LpSolit
* Bug 621597: Make mod_perl.pl do the INC configuration itself, instead ofMax Kanat-Alexander2010-12-282-2/+8
| | | | | requiring it to be in httpd.conf. r=dkl, a=mkanat
* Remove unused variable, per my review commentFrédéric Buclin2010-12-281-1/+0
| | | https://bugzilla.mozilla.org/show_bug.cgi?id=615574
* Bug 618844: Make clear that the Apache module must be enabled in release notesA. Shimono (himorin)2010-12-271-2/+2
| | | | r/a=mkanat
* Bug 618842: Enclose checksetup.pl between <kbd> and </kbd> tags in templatesA. Shimono (himorin)2010-12-275-15/+15
| | | | r/a=mkanat
* Bug 599539: Update the mod_perl code for Apache2::SizeLimit 0.92Max Kanat-Alexander2010-12-273-16/+25
| | | | r=glob, a=mkanat
generated by cgit v1.2.1 (git 2.21.0) at 2024-06-30 12:26:59 +0000