Get Gentoo!
gentoo.org sites
gentoo.org Wiki Bugs Forums Packages
Planet Archives Sources
Infra Status
aboutsummaryrefslogtreecommitdiff
Commit message (Expand)AuthorAgeFilesLines
* Bumped version to 4.2.12release-4.2.12bugzilla-4.2.12David Lawrence2015-01-212-4/+4
* Bug 1090275: WebServices modules should maintain a whitelist of methods that ...David Lawrence2015-01-219-0/+69
* Bug 1079065: [SECURITY] Always use the 3 arguments form for open() to prevent...Gervase Markham2015-01-2111-17/+17
* Bug 1118985: Release notes for 4.2.12David Lawrence2015-01-191-0/+16
* Bug 1085182: Bugzilla::Bug->check must check that a bug ID is defined when it...Frédéric Buclin2015-01-051-7/+7
* Revert "Bug 1082106 - avoid problem where ->bz_add_columns creates a foreign ...Gervase Markham2014-12-111-6/+3
* Bug 1082106 - avoid problem where ->bz_add_columns creates a foreign key cons...David Lawrence2014-12-111-3/+6
* Bug 1097798: Do not display the resolution in the dependency tree for open bu...Frédéric Buclin2014-11-191-2/+5
* Bug 1082887: comments made when setting a flag from the attachment details pa...Byron Jones2014-10-161-4/+9
* Bump version post-releaseDavid Lawrence2014-10-062-2/+2
* Bump version to 4.2.11release-4.2.11bugzilla-4.2.11David Lawrence2014-10-062-3/+3
* Bug 1054702: CSV export vulnerable to formulae injectionSimon Green2014-10-062-4/+8
* Bug 1064140: [SECURITY] Private comments can be shown to flagmail recipients ...Simon Green2014-10-063-18/+38
* Bug 1074980: Forbid the { foo => $cgi->param() } syntax to prevent data overrideFrédéric Buclin2014-10-061-1/+32
* Bug 1075578: [SECURITY] Improper filtering of CGI argumentsFrédéric Buclin2014-10-0611-50/+52
* Bug 1072492: Release notes for 4.2.11David Lawrence2014-10-061-0/+6
* Bump version post-releaseDavid Lawrence2014-07-242-4/+2
* Bump to version 4.2.10 (corrected)release-4.2.10bugzilla-4.2.10David Lawrence2014-07-242-0/+2
* Bug 1036213 - (CVE-2014-1546) add '/**/' before jsonrpc.cgi callback to avoid...Simon Green2014-07-241-2/+3
* Bump version to 4.2.10David Lawrence2014-07-242-3/+3
* Bug 1042088 - Release notes for 4.2.10David Lawrence2014-07-241-0/+6
* Bug 1011250 - Updates IRC notification text to include commit message and als...David Lawrence2014-05-151-4/+9
* Bug 983275 - Switch Bugzilla's CI testing from Tinderbox to travis-ciDavid Lawrence2014-05-151-1/+1
* Bug 983275 - Switch Bugzilla's CI testing from Tinderbox to travis-ciDavid Lawrence2014-05-141-1/+1
* Bug 983275 - Switch Bugzilla's CI testing from Tinderbox to travis-ciDavid Lawrence2014-05-081-0/+6
* Bug 983275 - Switch Bugzilla's CI testing from Tinderbox to travis-ciDavid Lawrence2014-05-071-7/+5
* Bug 995209 - Create a Build.PL script using Module::Build for testing/install...David Lawrence2014-05-021-1/+1
* Bug 983275 - Switch Bugzilla's CI testing from Tinderbox to travis-ciDavid Lawrence2014-05-021-0/+39
* Bug 995209 - Create a Build.PL script using Module::Build for testing/install...David Lawrence2014-05-012-0/+114
* Bumped version post-releaseDavid Lawrence2014-04-212-2/+2
* Bump version to 4.2.9release-4.2.9bugzilla-4.2.9David Lawrence2014-04-182-3/+3
* Bug 998484: Release notes for Bugzilla 4.2.9Frédéric Buclin2014-04-181-0/+7
* Bug 998323 - URLs pasted in comments are no longer displayedDavid Lawrence2014-04-181-14/+11
* Bumped version post-releaseDavid Lawrence2014-04-172-2/+2
* Bump version to 4.2.8release-4.2.8bugzilla-4.2.8David Lawrence2014-04-172-4/+4
* Bug 968576: [SECURITY] Dangerous control characters allowed in Bugzilla textManish Goregaokar2014-04-174-2/+17
* Bug 996168: Release notes for Bugzilla 4.2.8Frédéric Buclin2014-04-151-0/+31
* Copied over .bzrignore to .gitignoreDavid Lawrence2014-03-141-0/+32
* Bug 748095: Bugzilla crashes when the shutdownhtml parameter is set and using...Frédéric Buclin2013-12-211-1/+1
* Bug 942599: Documentation about possible_duplicates() lists 'products' as arg...Frédéric Buclin2013-12-051-1/+1
* Bug 938300: vers_cmp() incorrectly compares module versionsFrédéric Buclin2013-12-021-15/+14
* Bug 781672: checksetup.pl fails to check the version of the latest Apache2::S...Frédéric Buclin2013-12-021-2/+9
* Bug 938161: sql_date_format() method for SQLite has an incorrect default formatFrédéric Buclin2013-11-141-1/+1
* Bug 843457: PROJECT environment variable is not honored when mod_perl is enabledFrédéric Buclin2013-11-131-3/+11
* Bump version post-releaseDave Lawrence2013-10-171-1/+1
* Bump version to 4.2.7release-4.2.7bugzilla-4.2.7Dave Lawrence2013-10-162-3/+3
* Bug 924932: (CVE-2013-1743) [SECURITY] Field values are (still) not escaped c...Frédéric Buclin2013-10-161-14/+24
* Bug 924802: (CVE-2013-1742) [SECURITY] (XSS) "id" and "sortkey" are not sanit...Frédéric Buclin2013-10-162-5/+3
* Bug 913904: (CVE-2013-1734) [SECURITY] CSRF when updating attachmentsFrédéric Buclin2013-10-161-8/+11
* Bug 906745 - In MySQL, tokens are not case-sensitive, reducing total entropy ...Dave Lawrence2013-10-161-1/+1