Bug 155119: reassigning bugs to a product with no components gives 'browser' error; patch by Chuck Duvall <caduvall@glue.umd.edu>; r=bbaetz; a=justdave.
[SECURITY] Bug 219044: A user with 'editkeywords' privileges (i.e. usually an administrator) can inject arbitrary SQL via the URL used to edit an existing keyword.
Patch by Joel Peshkin <bugreport@peshkin.net>
r= justdave, zach a= justdave
[SECURITY] Bug 209742: Under some circumstances, a user can obtain component descriptions for a product to which he does not normally have access.
Patch by Ryan Cleary <tryanc@interdimensions.com>
r= joel, bbaetz a= justdave
[SECURITY] Bug 209376: If you know the email address of someone who has voted on a secure bug, you can access the summary of that bug even if you do not have sufficient permissions to view the bug itself.
Patch by Gervase Markham <gerv@mozilla.org>
r= justdave, bbaetz a= justdave
Bug 111522: Provide ability to specify MIME type of attachment when downloading - correction of url parameter name to avoid usage conflicts with other parts of Bugzilla
Patch by Alex Vincent <ajvincent@juno.com>
r= justdave, a= justdave
Fix for Bug 220724: Provide standalone bug submission program. Includes
a python script that submits bugs to a specified Bugzilla instance.
README, docs and an example bug are included. Work done by Eric Raymond
<esr@thyrsus.com> and myself. a=justdave
Fix for bug 221039: Separating knob in edit.html.tmpl. Splits
bug/edit.html.tmpl into bug/knob.html.tmpl. Patch by Ludovic Dubost
<ludovic@pobox.com>, r=kiko, a=justdave.
Fix for bug 111522: Provide ability to specify MIME type of attachment
when downloading. Adds a 'ctype' argument to attachment.cgi which allows
one to override the content-type when viewing an attachment. Original
patch by Alex Vincent <ajvincent@juno.com>; I changed it a tiny bit.
r=kiko, myk. a=justdave.
Bug 201294: showdependencygraph.cgi now uses the global IsOpenedState() sub instead of its own list of which states are open. This makes one less place to customize when sites change their statuses, and also includes UNCONFIRMED (which never got added when UNCONFIRMED was created).
r= gerv, a= justdave
Bug 221977: Insecure dependency in require while running with -T switch at Bugzilla/Auth.pm; patch by Dave Miller (justdave@bugzilla.org); r=gerv; a=justdave.
Bug 108528: knob is not a defined error message and it does not help a user find the error; patch by chaduv (caduvall@glue.umd.edu); r=justdave; a=justdave.
Bug 222566: Fixing wording on enter_bug.cgi when using the create-guided template; patch by Gervase Markham (gerv@mozilla.org); r=justdave; a=justdave.
Fix for bug 221391: Bugzilla Quickstart guide could exist. Provide a
QUICKSTART file, and alter README slightly to point to it. r=gerv,
justdave, a=justdave.
Fix for bug 220183: post_bug.cgi could allow setting the
status_whiteboard attribute. Added "status_whiteboard" to parsed
attribute list. r=gerv, a=justdave
Bug 65316: Typos on edit*.cgi. Change use of PutTrailer() (and the
default output, in certain cases) in the edit pages. Patch by Vlad
Dascalu <jocuri@softhome.net>, r=kiko, a=justdave
Bug 152748: Make lack of sidebar support suggest Mozilla instead of Netscape as an upgrade.
Patch by Vlad Dascalu <jocuri@softhome.net>
r= gerv, a= justdave
Bug 177449: When changing email address, old email address confirmation was case sensitive
patch by Vlad Dascalu <jocuri@softhome.net>
r= kiko, a= justdave
Bug 219216: Javascript improperly using FILTER html instead of FILTER js causing data with @ produced by javascript to show up as @
r=timeless, a=justdave
Bug 215918 - All graphs that show numeric value on x-axis are useless and misleading. We now sort numerical fields numerically. Patch by gerv; r=jouni, a=justdave.
Fix for bug 145588: adds full-text search option for more accurate finding of individual bugs via words that appear in their descriptions/comments/summaries.
r=bbaetz
a=myk
Bug 165366: When editparams is used to shutdown Bugzilla, provide a link back to editparams
Patch by Vlad Dascalu <jocuri@softhome.net>
r= kiko, a= justdave
Bug 190040: sanitycheck now has "view as buglist" links after lists of bugs as well as all listed bugs linked
Patch by GavinS <bugzilla@chimpychompy.org>
r= justdave, a= justdave
Bug 217242 CheckIfVotedConfirmed tripped Table 'fielddefs' was not locked with LOCK TABLES [for statement ``SELECT fieldid FROM fielddefs WHERE name = 'bug_status''']
r=justdave a=justdave
Fix for bug 207754 aka bugreplies: It should be possible to produce a
quoted reply to a comment. Adds a reply link that uses JS to paste in
a quoted comment into the comment textarea. Patch by me, r=caillon,
preed, bbaetz a=justdave
myk%mozilla.org [Wed, 27 Aug 2003 06:56:45 +0000 (06:56 +0000)]
Fix for bug 217029: creates appropriate date string if string is empty now that Date::Parse 2.27 doesn't do it for us auto-magically.
r=justdave
a=justdave
Bugs 171127 and 192512: bug_email.pl was still using the old groups system and also the old outgoing mail system. This patch brings it up to date.
Patch by Alex Schuilenburg <alex@schuilenburg.org>
no r= for contrib, a= justdave
Backing out changes accidently checked in with bug 174942: the "die_with_dignity" sub is supposed to remain commented out in CVS. Also adding comments with the sub to explain what it's used for.
Patch Viewer, a pretty way of viewing and manipulating patches (bug 174942). Requires PatchIterator to be installed, classes uploaded to that bug and will be soon in CPAN.
projects / thirdparty / bugzilla.git / log
