aboutsummaryrefslogtreecommitdiff
Commit message (Expand)AuthorAgeFilesLines
* Bumped version to 4.4.8release-4.4.8bugzilla-4.4.8bugzilla-4.4-stableDavid Lawrence2015-01-272-3/+3
* Bug 1125186: Release notes for 4.4.8David Lawrence2015-01-271-0/+11
* Bug 1124716: regression caused by bug 1090275 to whitelist webservice methods...David Lawrence2015-01-231-1/+1
* Bug 1116614: checksetup "use lib" called too late. r=gerv, a=glob.Albert Ting2015-01-221-2/+3
* Bump version post-releaseDavid Lawrence2015-01-212-2/+2
* Bumped version to 4.4.7release-4.4.7bugzilla-4.4.7David Lawrence2015-01-212-4/+4
* Bug 1090275: WebServices modules should maintain a whitelist of methods that ...David Lawrence2015-01-2110-0/+80
* Bug 1079065: [SECURITY] Always use the 3 arguments form for open() to prevent...Gervase Markham2015-01-2112-18/+18
* Fix an obsolete IDFrédéric Buclin2015-01-191-1/+1
* Bug 1118984: Release notes for 4.4.7David Lawrence2015-01-191-0/+19
* Bug 1085182: Bugzilla::Bug->check must check that a bug ID is defined when it...Frédéric Buclin2015-01-051-5/+7
* Bug 1106653: Truncate the field-* and type-* values in error messagesFrédéric Buclin2014-12-231-2/+4
* Bug 1111043: Bug.add_comment returns the wrong comment IDFrédéric Buclin2014-12-171-12/+3
* Bug 1101151: OS sniffing should detect Windows 10 from "Windows NT 6.4" inste...David Lawrence2014-11-201-0/+1
* Bug 1097798: Do not display the resolution in the dependency tree for open bu...Frédéric Buclin2014-11-191-2/+5
* Bug 1001462: Bug.search causes error when using simple token auth and specify...David Lawrence2014-11-122-19/+21
* Bug 1082106: $dbh->bz_add_columns creates a foreign key constraint causing fa...David Lawrence2014-11-041-3/+6
* Bug 1087400: CGI 4.05 throws tons of "CGI::param called in list context" warn...Frédéric Buclin2014-10-271-0/+1
* Bug 1088483: Remove references to the "enable bug tagging" preference from th...Frédéric Buclin2014-10-271-5/+0
* Bug 1033068: The "unknown_action" error message could confuse the userFrédéric Buclin2014-10-221-2/+3
* Bug 1082882: custom date field not recognized as date type in advanced searchDavid Lawrence2014-10-211-14/+23
* Bug 1083737: Validate the smtpserver parameterFrédéric Buclin2014-10-212-2/+16
* Bug 1082887: comments made when setting a flag from the attachment details pa...Byron Jones2014-10-161-4/+9
* Bug 1009406 - A user with local editcomponents privs cannot update the inclus...Simon Green2014-10-081-2/+17
* Bump version post-releaseDavid Lawrence2014-10-062-2/+2
* Bump version to 4.4.6release-4.4.6bugzilla-4.4.6David Lawrence2014-10-062-3/+3
* Bug 1054702: CSV export vulnerable to formulae injectionSimon Green2014-10-062-4/+8
* Bug 1064140: [SECURITY] Private comments can be shown to flagmail recipients ...Simon Green2014-10-063-18/+38
* Bug 1074980: Forbid the { foo => $cgi->param() } syntax to prevent data overrideFrédéric Buclin2014-10-061-1/+32
* Bug 1075578: [SECURITY] Improper filtering of CGI argumentsFrédéric Buclin2014-10-0610-44/+45
* Bug 1072490: Release notes for 4.4.6David Lawrence2014-10-061-0/+6
* Bug 1069760 - Cannot use 'component' in a templateSimon Green2014-10-013-18/+18
* Fix bustage due to bug 1061247Frédéric Buclin2014-10-011-0/+1
* Bug 1061247 - Successfully using a password change token should invalidate al...Reed Loden2014-09-301-0/+2
* Bug 1070317 - Bugzilla::Flag's attribute modification_date is affected by the...Dylan William Hardison2014-09-301-2/+3
* Bug 1069363: "show user list again" link does not include is_enabled for show...David Lawrence2014-09-221-1/+3
* Bug 252555: Remove the ANSI mode when running MySQLVishant Gautam2014-09-151-3/+4
* Bug 1036242: "TypeError: bug_status is undefined" when creating a bugMatt Tyson2014-09-101-4/+8
* Bug 1046213: datetime_from() generates wrong dates if year < 1901Frédéric Buclin2014-09-081-3/+7
* Bug 768892 - Specific Search without search words yields invalid_column_name ...Simon Green2014-09-081-1/+1
* Bug 1040728 - testserver.pl on Ubuntu 12.04 with Apache2 invalidly gives erro...Dylan William Hardison2014-09-031-1/+1
* Bug 1008766 - Fix typo in documentationSimon Green2014-08-241-1/+1
* Bug 1053802: Groups used for the comment_taggers_group and debug_group parame...Frédéric Buclin2014-08-193-5/+3
* Bug 1046145: It is no longer possible to cancel an email address change when ...Frédéric Buclin2014-08-061-1/+1
* Bump version post-releaseDavid Lawrence2014-07-242-4/+2
* Bump version to 4.4.5 (corrected)release-4.4.5bugzilla-4.4.5David Lawrence2014-07-242-0/+2
* Bug 1036213 - (CVE-2014-1546) add '/**/' before jsonrpc.cgi callback to avoid...Simon Green2014-07-241-2/+3
* Bump version to 4.4.5David Lawrence2014-07-242-3/+3
* Bug 1042087 - Release notes for 4.4.5David Lawrence2014-07-241-0/+6
* Bug 1024987 - contrib/bz_webservice_demo.pl fails after User Token login updaterojanu2014-06-171-53/+42