Patch for bug 269398: request.cgi should not fail with error in SQL when no products are available for the user; patch by Frédéric Buclin <LpSolit@netscape.net>, r=vladd, a=justdave.
Patch for bug 201554: remove un-necessary warning to non-root user with webservergroup access gave by checksetup.pl; patch by Rob Siklos <rsiklos@adexa.com>, r=vladd, a=justdave.
Patch for bug 271797: avoid making target_milestone empty if usetargetmilestone=1; patch by Frédéric Buclin <LpSolit@netscape.net>, r=justdave, a=justdave.
Patch for bug 233049: Improve error when filtering requests with component not in the selected product; patch by Marc Schumann <wurblzap@gmail.com>, r=vladd, a=justdave.
Bug 265995 - Make the docs closer to being valid XML (note: to complete the process the bz-devel ENTITY would have to be removed).
Patch by Colin S. Ogilvie <colin.ogilvie@gmail.com> with half of it being removed by myself.
Patch for bug 262372: clicking on a column header shouldn't result in loss of defaultsavename; patch by Rob Siklos <rsiklos@adexa.com>, r=wurblzap, a=justdave.
Patch for bug 268462: Make users able to mass-close mixed RESOLVED/VERIFIED states; patch by Shane H. W. Travis <travis@sedsystems.ca>, r=jouni, a=justdave.
Patch for bug 270263: 'Votes' should not be a column choice if param(usevotes) is not true; patch by Shane H. W. Travis <travis@sedsystems.ca>, r=jouni, a=justdave.
Patch for bug 262141: Enable the creation of bookmarkable URL for bug entry when param commentoncreate is set; patch by Shane H. W. Travis <travis@sedsystems.ca>, r=gerv, a=justdave.
Patch for bug 237793: remove terms from incomplete data error message in bug activity, when suitable; patch by Frédéric Buclin <LpSolit@netscape.net>, r=vladd, a=justdave.
Patch for bug 271306: specify that defaultquery is used by default to submit queries, not bugs; patch by Frédéric Buclin <LpSolit@netscape.net>, r=vladd, r=justdave, a=justdave.
Documentation patch for bug 240060: document minimum sendmail version that is required for Bugzilla to work; patch by Shane H. W. Travis <travis@sedsystems.ca>; r=vladd.
Documentation patch for bug 24496: Forbid resolving fixed when there're unresolved dependencies; patch by Andreas Höfler <andreas.hoefler@bearingpoint.com>, r=travis.
Patch for bug 269294: Do not mention QuickSearch in the error message if not in use; patch by Frédéric Buclin <LpSolit@netscape.net>, r=vladd, a=justdave.
Patch for bug 270404: Add detaint_natural and fix use lib instruction in sendbugemail.pl to make it functional; patch by Nick.Barnes@pobox.com, r=justdave, a=justdave.
Patch for bug 267560: CheckCanChangeField in process_bug.cgi shouldn't request the bug owner, QA contact and reporter too many times; patch by Frédéric Buclin <LpSolit@netscape.net>, r=justdave, a=justdave.
Patch for bug 267494: 'Voter' column should not appear in email preferences if param(usevotes) is false; patch by Shane H. W. Travis <travis@sedsystems.ca>, r=vladd, a=justdave.
Patch for bug 269274: Make 'Give me some help' link work on advanced query page with cookies disabled; patch by Greg Hendricks <ghendricks@novell.com>, r=vladd, a=justdave.
Patch for bug 267494 - If param(usevotes) not true, hide 'Voter' column in email preferences; patch by Shane H. W. Travis <travis@sedsystems.ca>, r=vladd, a=justdave.
Documentation patch for bug 266461: Document minimum requirements for ft_min_word_len MySQL parameter; patch by Shane H. W. Travis <travis@sedsystems.ca> modified by me.
Fixing documentation build tree, broken by the check in of bug 198020; rename the name of the `flags` section so it doesn't collide with already existing section.
Patch for bug 262182: editing a buglist from a tabular report shouldn't go to a wrong page; patch by Gervase Markham <gerv@mozilla.org>; r=rsiklos, a=justdave.
Documentation patch for bug 257692: link directly to the final URL for the developer's guide; patch by Shane H. W. Travis <travis@sedsystems.ca>; r=vladd.
Documentation patch for bug 247441: rephrase section 3.9 regarding access control on secure bugs; patch by Shane H. W. Travis <travis@sedsystems.ca>; r=vladd.
Patch for bug 265679: requests error complaining about lack of group membership should not contain wrong spelled &bnsp; patch by Frédéric Buclin <LpSolit@netscape.net>; r=vladd, a=justdave.
Patch for bug 212017: Should be able to change a bug if it has a flag requested that is no longer requestable; patch by Frédéric Buclin <LpSolit@netscape.net>; r=myk, vladd, a=myk.
[SECURITY] Bug 250605: Changes to the metadata (filename, description, mime type, review flags) on attachments which were flagged as private get displayed to users who are not members of the group allowed to see private attachments when receiving bug change notification mails. This only affects sites that use the 'insidergroup' feature.
Patch by Joel Peshkin <bugreport@peshkin.net>
r=kiko,justdave, a=justdave
[SECURITY] Bug 253544: Changes to the metadata (filename, description, mime type, review flags) on attachments which were flagged as private get displayed to users who are not members of the group allowed to see private attachments when viewing the bug activity log. This only affects sites that use the 'insidergroup' feature.
Patch by Joel Peshkin <bugreport@peshkin.net>
r=zach,justdave, a=justdave
[SECURITY] Bug 263780: Exporting a bug to XML exposes user comments and attachment summaries which are marked as private to users who are not members of the group allowed to see private comments and attachments. XML export is not exposed in the user interface, but is available to anyone who knows the correct URL to invoke it. This only affects sites that use the 'insidergroup' feature.
Patch by Joel Peshkin <bugreport@peshkin.net>
r=vladd,justdave, a=justdave
[SECURITY] Bug 252638: It is possible to send a carefully crafted HTTP POST message to process_bug.cgi which will remove keywords from a bug even if you don't have permissions to edit all bug fields (the "editbugs" permission). Such changes are reported in "bug changed" email notifications, so they are easily detected and reversed if someone abuses it.
Patch by Myk Melez <myk@mozilla.org>
r=gerv, a=justdave
Bug 250897: Enforce a 10 minute waiting period between password reset attempts to prevent the user getting mailbombed if the form is
submitted multiple times.
Patch by Joel Peshkin <bugreport@peshkin.net>
r=kiko, a=justdave
Documentation patch for bug 143490: Update documentation regarding code changes needed when running Bugzilla under win32 (some are no longer required since checksetup.pl no longer calls unsupported functions when running on Windows); patch by GavinS <bugzilla@chimpychompy.org>, r=vladd.
Patch for bug 252137: tabular reports shouldn't be broken if a row/col/tbl header begins with an underscore; patch by Rob Siklos <rsiklos@adexa.com>; r=gerv, a=justdave.
Patch for bug 232155: Remove uninitialized value warning from Pperl's Cookie.pm and unify code by removing redundancy; patch by Christian Reis <kiko@async.com.br> backported to 2.18 by Rob Siklos <rsiklos@adexa.com>; r=vladd,kiko, a=justdave.
Patch for bug 264003: Include the DBI error in the error message if 'createdb' fails; patch by Byron Jones (glob) <bugzilla@glob.com.au>; r=kiko, a=justdave.
Patch for bug 261434: implement functionality to delete a user semi-properly (only works for users with no bugs/comments); patch by Ivan Todoroski <grnch@gmx.net>; r=justdave, a=justdave.
Patch for bug 251338: Installation section should mention that you need an MTA installed; patch by Colin S. Ogilvie <colin.ogilvie@gmail.com>; r=vladd, a=justdave.
Patch for bug 263165: Make Bugzilla specify table type as MyISAM when creating tables; patch by Byron Jones (glob) <bugzilla@glob.com.au>, r=kiko, a=justdave.
Patch for bug 237769: use Administrator instead of root for super-user name in Windows, and change the ppm repository from Apache to the one maintained on landfill; patch by Byron Jones (glob) <bugzilla@glob.com.au>; r=vladd, a=myk.
Fix for bug 252739: moves inclusion/exclusion action names to button name instead of button value so that button values (which are also used as labels) will be localizable; patch by Marc Schumann; r=kiko,myk; a=justdave
Landing branch fix for bug 260411: MS IE breaks png alpha channel
padlock. Adds a new PNG file with a 1-bit alpha layer. File by Jason
Pyeron <jpyeron@pyerotechnics.com> r=kiko, a=myk.
Fix for bug 245075: command-line script that sends bug mail so installations can push bug mail out if it's been missed by the code that sends mail when changes are made; written by Dave Miller
Bug 257593: new charts were requiring you to log in every time a new dataset was added to the list.
Patch by Marc Schumann <wurblzap@gmail.com>
r=kiko,gerv, a=justdave
Bug 257534: Require Perl 5.8.1 or later when running on Windows with ActiveState Perl (there is no official CGI ppm build with a new
enough version for Bugzilla on any earlier version of ActiveState Perl)
Patch by Byron Jones <bugzilla@glob.com.au>
r=justdave, a=justdave
Bug 255913: mailto link on show_bug.cgi wasn't honoring emailsuffix. Bugzilla->user->email now includes emailsuffix in the result.
Patch by Marc Schumann <wurblzap@gmail.com>
r=justdave,tobias, a=justdave
Bug 252295: Ensure that the "Edit Search" link goes back to the same form the search was created on when running a saved search that was saved before we had multiple search forms.
r=gerv, a=justdave
Bug 255664: Wait until buglist is ready to be displayed before closing the "please wait" page when using server push, so any errors that occur can actually be seen by the user instead of getting a blank page.
r=myk, a=myk
projects / thirdparty / bugzilla.git / log
