Path to this page:
Subject: CVS commit: pkgsrc/devel/bugzilla3
From: David Brownlee
Date: 2009-04-20 11:28:28
Message id: 20090420092828.CCA54175D0@cvs.netbsd.org
Log Message:
Updated devel/bugzilla3 to 3.2.3
Security fix:
* Attachment editing was vulnerable to a cross-site request forgery.
Note that this issue was only fixed for 3.2.3 and 3.3.4 even though
all versions of Bugzilla are affected (see below for an explanation).
bug fixes:
* Bugzilla is now compatible with MySQL 5.1.x versions 5.1.31
and greater. (Bug 480001)
* On Windows, Bugzilla sometimes would send mangled emails (that
would often fail to send). (Bug 467920)
* recode.pl would sometimes crash when trying to convert databases
from older versions of Bugzilla. (Bug 431201)
* Running a saved search with Unicode characters in its name would
cause Bugzilla to crash. (Bug 477513)
* Bugzilla clients like Mylyn can now update bugs again (the bug
XML format now contains a "token" element that can be used when
updating a bug). (Bug 476678)
* For installations using the shadowdb parameter, Bugzilla was
accidentally writing to the "tokens" table in the shadow database
(instead of the master database) when using the "Change Several
Bugs at Once" page. (Bug 476943)
Files: