Overview
Request 531539 accepted
- rename bugzilla.rpmlintrc to bugzilla-rpmlintrc
to follow guidelines
- put bugzilla.rpmlintrc into Sources
- update german language to 5.0.3-1
- update to 5.0.3
This release fixes one security issue and some bug fixes.
https://www.bugzilla.org/releases/5.0.3/release-notes.html
- A regression in Bugzilla 5.0.2 caused whine.pl to be unable
to send emails due to a missing subroutine. (Bug 1235395)
- The Encode module changed the way it encodes strings,
causing email addresses in emails sent by Bugzilla to be encoded,
preventing emails from being correctly delivered to recipients.
We now encode email headers correctly. (Bug 1246228)
- Fix additional taint issues with Strawberry Perl.
(Bug 987742 and bug 1089448)
- When exporting a buglist as a CSV file, fields starting with
either "=", "+", "-" or "@" are preceded by a space to not
trigger formula execution in Excel. (Bug 1259881)
- An extension which allows user-controlled data to be used as
a link in tabs could trigger XSS if the data is not correctly
sanitized. Bugzilla no longer relies on the extension to do the
sanity check. A vanilla installation is not affected as no tab
is user-controlled. (Bug 1250114)
- Extensions can now easily override the favicon used for the
Bugzilla website. (Bug 1250264)
- Security fix:
* (CVE-2016-2803)
https://www.bugzilla.org/security/4.4.11/
- rework patch fix_whine_error.patch because most now in upstream
- update german language to 5.0.2-1
- fix error "Undefined subroutine..." in whine.pl
https://bugzilla.mozilla.org/show_bug.cgi?id=1235395
- update to 5.0.2
This release fixes two security issues and some bug fixes.
https://www.bugzilla.org/releases/5.0.2/release-notes.html
- mod_perl now works correctly with mod_access_compat turned off
on Apache 2.4.
To regenerate the .htaccess files, you must first delete all
existing ones in subdirectories:
find . -mindepth 2 -name .htaccess -exec rm -f {} \;
You must then run checksetup.pl again to recreate them with
the correct syntax. (Bug 1223790)
- Emails sent by Bugzilla are now correctly encoded as UTF-8.
(Bug 714724)
- Strawberry Perl is now fully supported on Windows.
(Bug 1089448 and bug 987742)
- The XML-RPC API now works with IIS on Windows. (Bug 708252)
- Some queries should now be faster on PostgreSQL. (Bug 1184431)
- Security fixes:
* (CVE-2015-8508)
https://www.bugzilla.org/security/4.2.15/
https://bugzilla.mozilla.org/show_bug.cgi?id=1221518
* (CVE-2015-8509)
https://www.bugzilla.org/security/4.2.15/
https://bugzilla.mozilla.org/show_bug.cgi?id=1232785
- update to 5.0.1
This update fixes several vulnerabilities
https://www.bugzilla.org/releases/5.0.1/release-notes.html
- Security fixes:
* (CVE-2015-4499)
https://www.bugzilla.org/security/4.2.14/
https://bugzilla.mozilla.org/show_bug.cgi?id=1202447
- update to 5.0
https://www.bugzilla.org/releases/5.0/release-notes.html
- update german language to 5.0
- fix no acccess under apache 2.4 in bugzilla.conf
- add perl-Module-Pluggable and perl-Object-Pluggable to Requires:
because it will be removed in next perl major release.
- update to 4.4.9
- Users who are not in the insidergroup were able to determine
if some specific user made a private comment in bugs.
(Bug 1151290)
- Due to a regression caused by bug 1090275, the WebService
methods Bug.get_bugs and Bug.get_history were no longer
allowed. (Bug 1154099)
- Bugzilla now supports the new .htaccess format from Apache 2.4.
(Bug 1121477)
- A regression in Bugzilla 4.4.3 due to CVE-2014-1517 caused the
admin's password to be ignored when starting a sudo session.
(Bug 1132887)
- update bugzilla.conf with new from .htaccess
- update german language to 4.4.9
- Moved code from .htaccess file into bugzilla.conf
- Removed BOM from bugzilla.conf
- Explicitly set directory rights for gernam language pack
- Cleaned up spec file
- update to 4.4.8
- Fixing a regression caused by bug 10902750,
JSON-RPC API calls could crash in certain cases instead of
displaying the proper error message. (Bug 1124716)
- changes from 4.4.7
- The Bug.add_comment WebService method now returns the
correct ID for the newly created bug comment. (Bug 1111043)
Fixing a regression caused by CVE-2014-1571 (bug 1064140),
comments made while setting a flag from the attachment
details page are again included in the flag notification email.
(Bug 1082887)
- update german language to 4.4.8
- remove cvs check and add git check for unneeded files
- insert BuildRequires: apache, so apache dirs not owned by
this package
- insert bugzilla.conf for apache
- Update to 4.4.6
- Update to 4.4.5
- added german template
- correct and upgrade spec
- Update to upstream release 4.1.1
- Remove unwanted "CVS" directories from installation
- Remove unwanted ".cvsignore" files
- Change rpmgroup for rpmlint
- Mark shebang scripts as executable (chmod +x)
- Update to new upstream release 3.6.2
* four security fixes
Request History
matwey created request
- rename bugzilla.rpmlintrc to bugzilla-rpmlintrc
to follow guidelines
- put bugzilla.rpmlintrc into Sources
- update german language to 5.0.3-1
- update to 5.0.3
This release fixes one security issue and some bug fixes.
https://www.bugzilla.org/releases/5.0.3/release-notes.html
- A regression in Bugzilla 5.0.2 caused whine.pl to be unable
to send emails due to a missing subroutine. (Bug 1235395)
- The Encode module changed the way it encodes strings,
causing email addresses in emails sent by Bugzilla to be encoded,
preventing emails from being correctly delivered to recipients.
We now encode email headers correctly. (Bug 1246228)
- Fix additional taint issues with Strawberry Perl.
(Bug 987742 and bug 1089448)
- When exporting a buglist as a CSV file, fields starting with
either "=", "+", "-" or "@" are preceded by a space to not
trigger formula execution in Excel. (Bug 1259881)
- An extension which allows user-controlled data to be used as
a link in tabs could trigger XSS if the data is not correctly
sanitized. Bugzilla no longer relies on the extension to do the
sanity check. A vanilla installation is not affected as no tab
is user-controlled. (Bug 1250114)
- Extensions can now easily override the favicon used for the
Bugzilla website. (Bug 1250264)
- Security fix:
* (CVE-2016-2803)
https://www.bugzilla.org/security/4.4.11/
- rework patch fix_whine_error.patch because most now in upstream
- update german language to 5.0.2-1
- fix error "Undefined subroutine..." in whine.pl
https://bugzilla.mozilla.org/show_bug.cgi?id=1235395
- update to 5.0.2
This release fixes two security issues and some bug fixes.
https://www.bugzilla.org/releases/5.0.2/release-notes.html
- mod_perl now works correctly with mod_access_compat turned off
on Apache 2.4.
To regenerate the .htaccess files, you must first delete all
existing ones in subdirectories:
find . -mindepth 2 -name .htaccess -exec rm -f {} \;
You must then run checksetup.pl again to recreate them with
the correct syntax. (Bug 1223790)
- Emails sent by Bugzilla are now correctly encoded as UTF-8.
(Bug 714724)
- Strawberry Perl is now fully supported on Windows.
(Bug 1089448 and bug 987742)
- The XML-RPC API now works with IIS on Windows. (Bug 708252)
- Some queries should now be faster on PostgreSQL. (Bug 1184431)
- Security fixes:
* (CVE-2015-8508)
https://www.bugzilla.org/security/4.2.15/
https://bugzilla.mozilla.org/show_bug.cgi?id=1221518
* (CVE-2015-8509)
https://www.bugzilla.org/security/4.2.15/
https://bugzilla.mozilla.org/show_bug.cgi?id=1232785
- update to 5.0.1
This update fixes several vulnerabilities
https://www.bugzilla.org/releases/5.0.1/release-notes.html
- Security fixes:
* (CVE-2015-4499)
https://www.bugzilla.org/security/4.2.14/
https://bugzilla.mozilla.org/show_bug.cgi?id=1202447
- update to 5.0
https://www.bugzilla.org/releases/5.0/release-notes.html
- update german language to 5.0
- fix no acccess under apache 2.4 in bugzilla.conf
- add perl-Module-Pluggable and perl-Object-Pluggable to Requires:
because it will be removed in next perl major release.
- update to 4.4.9
- Users who are not in the insidergroup were able to determine
if some specific user made a private comment in bugs.
(Bug 1151290)
- Due to a regression caused by bug 1090275, the WebService
methods Bug.get_bugs and Bug.get_history were no longer
allowed. (Bug 1154099)
- Bugzilla now supports the new .htaccess format from Apache 2.4.
(Bug 1121477)
- A regression in Bugzilla 4.4.3 due to CVE-2014-1517 caused the
admin's password to be ignored when starting a sudo session.
(Bug 1132887)
- update bugzilla.conf with new from .htaccess
- update german language to 4.4.9
- Moved code from .htaccess file into bugzilla.conf
- Removed BOM from bugzilla.conf
- Explicitly set directory rights for gernam language pack
- Cleaned up spec file
- update to 4.4.8
- Fixing a regression caused by bug 10902750,
JSON-RPC API calls could crash in certain cases instead of
displaying the proper error message. (Bug 1124716)
- changes from 4.4.7
- The Bug.add_comment WebService method now returns the
correct ID for the newly created bug comment. (Bug 1111043)
Fixing a regression caused by CVE-2014-1571 (bug 1064140),
comments made while setting a flag from the attachment
details page are again included in the flag notification email.
(Bug 1082887)
- update german language to 4.4.8
- remove cvs check and add git check for unneeded files
- insert BuildRequires: apache, so apache dirs not owned by
this package
- insert bugzilla.conf for apache
- Update to 4.4.6
- Update to 4.4.5
- added german template
- correct and upgrade spec
- Update to upstream release 4.1.1
- Remove unwanted "CVS" directories from installation
- Remove unwanted ".cvsignore" files
- Change rpmgroup for rpmlint
- Mark shebang scripts as executable (chmod +x)
- Update to new upstream release 3.6.2
* four security fixes
factory-auto added opensuse-review-team as a reviewer
Please review sources
factory-auto added repo-checker as a reviewer
Please review build success
factory-auto accepted review
Check script succeeded
dimstar_suse added as a reviewer
Being evaluated by staging project "openSUSE:Factory:Staging:adi:39"
dimstar_suse accepted review
Picked openSUSE:Factory:Staging:adi:39
jengelh accepted review
pluskalm accepted review
whatever
dimstar_suse accepted review
Reviewed by staging project "openSUSE:Factory:Staging:adi:39" with result: "accepted"
dimstar_suse added factory-staging as a reviewer
Please recheck
dimstar_suse added openSUSE:Factory:Staging:adi:18 as a reviewer
Being evaluated by staging project "openSUSE:Factory:Staging:adi:18"
dimstar_suse accepted review
Picked openSUSE:Factory:Staging:adi:18
licensedigger accepted review
ok
repo-checker accepted review
cycle and install check passed
staging-bot accepted review
ready to accept
staging-bot approved review
ready to accept
dimstar_suse accepted request
Accept to openSUSE:Factory
@weberho: review reminder