| non port: devel/bugzilla3/Makefile |
|
SVNWeb
|
Number of commits found: 23 |
|
Wed, 31 Jul 2013
|
[ 06:54 az  ]   (Only the first 10 of 67 ports in this commit are shown above.  )
- Convert to new Uses/perl5.mk framework
- Resolve issues with implicit lang/perl in extract and patch dependencies
- Trim Makefile header
Reviewed by: bapt@ (exp-run)
Approved by: bapt@ (portmrg@)
|
|
Thu, 20 Jun 2013
|
[ 21:54 ohauer ] (Only the first 10 of 11 ports in this commit are shown above. )
- use OPTION_GROUP in all devel/bugzilla ports
- s/CONFLICTS/CONFLICTS_INSTALL/
- use easier CONFLICT notation (future proof)
- trim Makefile.common header
- update russian/bugzilla42 language template to version 4.2.6
|
|
Thu, 23 May 2013
|
[ 21:49 ohauer ]
- update bugzilla42 to version 4.2.6 (bugfix release)
- remove RUN_DEPENDS for (already expired) perl 5.10
- update german/bugzilla42
- set expiration date for bugzilla3
The following important fixes/changes have been made in this release:
o MySQL 5.6 is now supported. (Bug 852560)
o A regression introduced in Bugzilla 4.2.4 made Oracle crash when
installing Bugzilla for the first time. (Bug 858911)
o If a custom field depends on a product, component or classification,
the "mandatory" bit was ignored on bug creation. (Bug 782210)
o Queries involving flags were broken in several ways.
These queries have been fixed. (Bug 828344)
o Tabular reports involving the empty resolution did not link bug
counts correctly. (Bug 212471)
o The Bug.search WebService method was returning all visible bugs
when called with no arguments, ignoring the max_search_results
and search_allow_no_criteria parameters. (Bug 859118)
Release Notes:
http://www.bugzilla.org/releases/4.2.6/release-notes.html
|
|
Wed, 20 Feb 2013
|
[ 06:16 ohauer ]
- update bugzilla ports to latest version
Bugzilla 4.0.10 and 3.6.13 are security updates for the 4.0
branch and the 3.6 branch, respectively. 4.0.10 contains several
useful bug fixes and 3.6.13 contains only security fixes.
Security: CVE-2013-0785
CVE-2013-0786
|
|
Wed, 14 Nov 2012
|
[ 21:31 ohauer ]
- adjust required PgSQL module for bugzilla42
From Release Notes:
PostgreSQL 9.2 requires DBD::Pg 2.19.3. (Bug 799721)
No revision bump, p5-DBD-Pg-2.19.3
a) not on per default
b) in the tree since a view months
- add deprecation message to bugzilla3
From the announcement:
Note that when Bugzilla 4.4 is released, the Bugzilla 3.6.x series
will reach end of life. If you are using that series, we encourage
you to upgrade to 4.2.4 now.
http://groups.google.com/group/mozilla.support.bugzilla/browse_thread/thread/d8dcc99be0f89421
Feature safe: yes
|
[ 19:29 ohauer ]
- bugzilla security updates to version(s)
3.6.11, 4.0.8, 4.2.4
Summary
=======
The following security issues have been discovered in Bugzilla:
* Confidential product and component names can be disclosed to
unauthorized users if they are used to control the visibility of
a custom field.
* When calling the 'User.get' WebService method with a 'groups'
argument, it is possible to check if the given group names exist
or not. (Only the first 15 lines of the commit message are shown above )
|
|
Sat, 1 Sep 2012
|
[ 20:16 ohauer ] (Only the first 10 of 17 ports in this commit are shown above. )
- update bugzilla bugzilla3 and bugzilla42
- use new bugzilla@ address (members skv@, tota@, ohauer@)
- patch russian/japanese/german bugzilla and bugzilla templates
so the reflect the security updates in the original templates
- patch german/bugzilla42 templates
- adopt new Makefile header
vuxml: 6ad18fe5-f469-11e1-920d-20cf30e32f6d
CVE: CVE-2012-3981
https://bugzilla.mozilla.org/show_bug.cgi?id=785470
https://bugzilla.mozilla.org/show_bug.cgi?id=785522
https://bugzilla.mozilla.org/show_bug.cgi?id=785511
|
|
Sat, 18 Aug 2012
|
[ 14:29 ohauer ] (Only the first 10 of 188 ports in this commit are shown above. )
- remove www/apache20 and devel/apr0
- s/USE_APACHE= 20+/USE_APACHE= 22+/
- unify s/YES/yes/
- cleanup APACHE_VERSION <= 22 usage
- add entry to MOVED
with hat apache@
|
|
Sat, 28 Jul 2012
|
[ 16:25 ohauer ]
- pkgng: cosmetic fix against lstat messages
|
|
Fri, 27 Jul 2012
|
[ 21:34 ohauer ]
- security update bugzilla
new Versions: 3.6.10, 4.0.7, 4.2.2
4.2.2
This release fixes two security issues. See the Security Advisory for details.
In addition, the following important fixes/changes have been made in this
release:
o A regression introduced in Bugzilla 4.0 caused some login names to be
ignored
when entered in the CC list of bugs. (Bug 756314)
o Some queries could trigger an invalid SQL query if strings entered by the
user
contained leading or trailing whitespaces. (Bug 760075)
o The auto-completion form for keywords no longer automatically selects the
first keyword in the list when the field is empty. (Bug 764517)(Only the first 15 lines of the commit message are shown above )
|
|
Tue, 24 Jul 2012
|
[ 20:41 ohauer ]
- convert to options NG
Approved by: skv@ (implicit)
|
[ 19:24 ohauer ]
- fix broken mod_perl include
apache version detect was not enabled,
the time SITE_PERL was removed from *_DEPENDS
|
|
Tue, 3 Jul 2012
|
[ 17:38 az ] (Only the first 10 of 13 ports in this commit are shown above. )
graphics/ImageMagick can change package name via PKGNAMESUFFIX.
We should not rely on this.
Reported by: Jarrod Sayers <jarrod at downtools.com.au>
Pointy hat: az@
|
|
Sun, 1 Jul 2012
|
[ 14:43 crees ]
Update devel/p5-chart --> devel/p5-Chart to fix INDEX build
Pointyhat: sunpoet
|
|
Fri, 29 Jun 2012
|
[ 10:15 az ]
- Remove SITE_PERL from *_DEPENDS
Approved by: portmgr@ (bapt@)
|
|
Sat, 21 Apr 2012
|
[ 17:37 ohauer ] (Only the first 10 of 11 ports in this commit are shown above. )
- security update to bugzilla 3.0.9 and 4.0.6
- update russian/bugzilla3-ru template
- patch german templates so revision match and no warning is displayed
- add vuxml entry
Approved by: skv (implicit)
Security: https://bugzilla.mozilla.org/show_bug.cgi?id=728639
https://bugzilla.mozilla.org/show_bug.cgi?id=745397
CVE-2012-0465
CVE-2012-0466
|
|
Mon, 6 Feb 2012
|
[ 12:08 skv ]
Update to 3.6.8
Changes:
http://www.bugzilla.org/releases/3.6.8/release-notes.html#v36_point
Security:
http://www.vuxml.org/freebsd/309542b5-50b9-11e1-b0d8-00151735203a.html
|
|
Thu, 5 Jan 2012
|
[ 17:25 ohauer ]
- update to version 3.6.7
- CVE-2011-3657
- CVE-2011-3667
Summary
=======
The following security issues have been discovered in Bugzilla:
* When viewing tabular or graphical reports as well as new charts,
an XSS vulnerability is possible in debug mode.
* The User.offer_account_by_email WebService method lets you create
a new user account even if the active authentication method forbids
users to create an account.
* A CSRF vulnerability in post_bug.cgi and in attachment.cgi could
lead to the creation of unwanted bug reports and attachments.
All affected installations are encouraged to upgrade as soon as possible.
Full Release Notes:
http://www.bugzilla.org/security/3.4.12/
Approved by: skv@ (explicit)
|
|
Mon, 17 Oct 2011
|
[ 04:35 dougb ] (Only the first 10 of 26 ports in this commit are shown above. )
Remove references to mysql 323 and 40, most commonly of the form:
IGNORE_WITH_MYSQL= 323 40
|
|
Sat, 13 Aug 2011
|
[ 18:25 skv ]
Update to 3.6.6
Changes: http://www.bugzilla.org/releases/3.6.6/release-notes.html
Security:
http://www.vuxml.org/freebsd/dc8741b9-c5d5-11e0-8a8e-00151735203a.html
|
|
Sat, 11 Jun 2011
|
[ 04:27 tota ]
- Update to 3.6.5
- Cleanup CONFLICTS/PORTSCOUT among Makefiles and Makefile.common
|
|
Tue, 7 Jun 2011
|
[ 16:00 skv ]
- Remove obsolete devel/bugzilla2
- Tune devel/bugzilla* : add PORTSCOUT, LATEST_LINK, CONFLICTS, LICENSE
|
[ 13:30 skv ] (Only the first 10 of 12 ports in this commit are shown above. )
- Copy devel/bugzilla to devel/bugzilla3; russian/bugzilla-ru to
russian/bugzilla3-ru
- Update devel/bugzilla, russian/bugzilla-ru to 4.0.1
- Update devel/bugzilla3, russian/bugzilla3-ru to 3.6.5
Changes: http://www.bugzilla.org/releases/4.0.1/release-notes.html
http://www.bugzilla.org/releases/3.6.5/release-notes.html
|
Number of commits found: 23 |
As an Amazon Associate I earn from qualifying purchases.