Changesets: MantisBT
|
master 4dd581f6 2022-07-09 12:22 Details Diff |
Add core.php function ensure_php_extension_loaded() Returns true if given PHP extension is loaded, dies if not. Use the new function to replace an if statement checking for 'mbstring'. This will avoid code duplication, as we need to introduce the same check for 'ldap' extension to fix issue 0030771. |
Affected Issues 0030771 |
|
| mod - core.php | Diff File | ||
|
master 3c931792 2022-07-09 12:14 Details Diff |
Move core.php helper functions to end of file | ||
| mod - core.php | Diff File | ||
|
master 98adc4b2 2022-07-07 07:07 translatewiki.net Details Diff |
Localisation updates from https://translatewiki.net. | ||
| mod - lang/strings_chinese_simplified.txt | Diff File | ||
| mod - lang/strings_hindi.txt | Diff File | ||
|
master 8929b9a6 2022-06-28 10:21 KN4CK3R Committer: dregad Details Diff |
Automatic conversion of false to array is deprecated Error is triggered in ldap_api.php line 289 with PHP 8.1. Fixes 0030790, PR https://github.com/mantisbt/mantisbt/pull/1830 Signed-off-by: Damien Regad <dregad@mantisbt.org> The original patch was modified to follow coding guidelines, and the commit message rewritten. |
Affected Issues 0030790 |
|
| mod - core/ldap_api.php | Diff File | ||
|
master 3a34fe41 2022-06-24 03:43 Details Diff |
Merge tag 'release-2.25.5' Stable release 2.25.5 # Conflicts: # core/constant_inc.php |
||
| mod - .mailmap | Diff File | ||
| mod - doc/CREDITS | Diff File | ||
|
master-2.25 c9c989f5 2022-06-24 03:39 Details Diff |
Bump version to 2.25.5 | ||
| mod - core/constant_inc.php | Diff File | ||
|
master-2.25 02ac7d2c 2022-06-24 03:34 Details Diff |
Update credits | ||
| mod - doc/CREDITS | Diff File | ||
|
master-2.25 9c3ee5b1 2022-06-24 03:34 Details Diff |
Update .mailmap | ||
| mod - .mailmap | Diff File | ||
|
master 0cfde0c3 2022-06-23 11:53 Details Diff |
Merge branch 'master-2.25' | ||
| mod - composer.lock | Diff File | ||
| mod - config_defaults_inc.php | Diff File | ||
| mod - docbook/Admin_Guide/en-US/config/uploads.xml | Diff File | ||
| mod - file_download.php | Diff File | ||
|
master 9e0d41e3 2022-06-20 21:16 dependabot[bot] Committer: dregad Details Diff |
Bump phpmailer/phpmailer from 6.6.2 to 6.6.3 Bumps [phpmailer/phpmailer](https://github.com/PHPMailer/PHPMailer) from 6.6.2 to 6.6.3. - [Release notes](https://github.com/PHPMailer/PHPMailer/releases) - [Changelog](https://github.com/PHPMailer/PHPMailer/blob/master/changelog.md) - [Commits](https://github.com/PHPMailer/PHPMailer/compare/v6.6.2...v6.6.3) --- updated-dependencies: - dependency-name: phpmailer/phpmailer dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Fixes 0029025, PR https://github.com/mantisbt/mantisbt/pull/1828 |
Affected Issues 0029025 |
|
| mod - composer.lock | Diff File | ||
|
dependabot/composer/phpmailer/phpmailer-6.6.3 91eb095b 2022-06-20 21:16 dependabot[bot] Committer: community Details Diff |
Bump phpmailer/phpmailer from 6.6.2 to 6.6.3 Bumps [phpmailer/phpmailer](https://github.com/PHPMailer/PHPMailer) from 6.6.2 to 6.6.3. - [Release notes](https://github.com/PHPMailer/PHPMailer/releases) - [Changelog](https://github.com/PHPMailer/PHPMailer/blob/master/changelog.md) - [Commits](https://github.com/PHPMailer/PHPMailer/compare/v6.6.2...v6.6.3) --- updated-dependencies: - dependency-name: phpmailer/phpmailer dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> |
||
| mod - composer.lock | Diff File | ||
|
master-2.25 c9eb4900 2022-06-20 21:15 dependabot[bot] Committer: dregad Details Diff |
Bump guzzlehttp/guzzle from 6.5.7 to 6.5.8 Bumps [guzzlehttp/guzzle](https://github.com/guzzle/guzzle) from 6.5.7 to 6.5.8. - [Release notes](https://github.com/guzzle/guzzle/releases) - [Changelog](https://github.com/guzzle/guzzle/blob/6.5.8/CHANGELOG.md) - [Commits](https://github.com/guzzle/guzzle/compare/6.5.7...6.5.8) --- updated-dependencies: - dependency-name: guzzlehttp/guzzle dependency-type: direct:production update-type: version-update:semver-patch ... Fixes 0030416, PR https://github.com/mantisbt/mantisbt/pull/1827 Signed-off-by: dependabot[bot] <support@github.com> |
Affected Issues 0030416 |
|
| mod - composer.lock | Diff File | ||
|
dependabot/composer/guzzlehttp/guzzle-6.5.8 8f8f1d90 2022-06-20 21:15 dependabot[bot] Committer: community Details Diff |
Bump guzzlehttp/guzzle from 6.5.7 to 6.5.8 Bumps [guzzlehttp/guzzle](https://github.com/guzzle/guzzle) from 6.5.7 to 6.5.8. - [Release notes](https://github.com/guzzle/guzzle/releases) - [Changelog](https://github.com/guzzle/guzzle/blob/6.5.8/CHANGELOG.md) - [Commits](https://github.com/guzzle/guzzle/compare/6.5.7...6.5.8) --- updated-dependencies: - dependency-name: guzzlehttp/guzzle dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> |
||
| mod - composer.lock | Diff File | ||
|
master ce89a36b 2022-06-19 10:45 Details Diff |
Merge branch 'master-2.25' | ||
| mod - proj_doc_page.php | Diff File | ||
|
master 1e234951 2022-06-16 07:09 translatewiki.net Details Diff |
Localisation updates from https://translatewiki.net. | ||
| mod - lang/strings_bulgarian.txt | Diff File | ||
| mod - lang/strings_french.txt | Diff File | ||
| mod - lang/strings_turkish.txt | Diff File | ||
|
master e189b0c3 2022-06-15 12:38 Details Diff |
Merge branch 'master-2.25' [skip ci] | ||
|
master 0c4ba874 2022-06-15 12:33 Committer: dregad Details Diff |
Fixed wrong bugnote_user_edit_threshold on update Because there was no check for correct $g_project_override in bugnote_update.php the default value of "bugnote_user_edit_threshold" was used instead of one set for the project. This caused problem that when project had lower user rights setting than the default access denied exception was thrown when editing bugnote. Fixes 0030533, PR https://github.com/mantisbt/mantisbt/pull/1818 (cherry picked from commit 9596fdc85260eaf29e04a4d8829f4f6fc0f6c5ed) |
Affected Issues 0030533 |
|
| mod - bugnote_update.php | Diff File | ||
|
master 9596fdc8 2022-06-15 12:33 Committer: community Details Diff |
Fixed wrong bugnote_user_edit_threshold on update Because there was no check for correct $g_project_override in bugnote_update.php the default value of "bugnote_user_edit_threshold" was used instead of one set for the project. This caused problem that when project had lower user rights setting than the default access denied exception was thrown when editing bugnote. Fixes 0030533, PR https://github.com/mantisbt/mantisbt/pull/1818 |
Affected Issues 0030533 |
|
| mod - bugnote_update.php | Diff File | ||
|
master-2.25 26676219 2022-06-15 12:28 Details Diff |
Disable SVG files upload by default SVG files are not just images, they are XML files and as such could contain inline CSS or scripting which could be used as attack vector for stored XSS. Devendra Bhatla and Febin Mon Saji <febinrev811@gmail.com> both and independently reported this vulnerability. Fixes 0029135, CVE-2022-33910 |
Affected Issues 0029135 |
|
| mod - config_defaults_inc.php | Diff File | ||
| mod - docbook/Admin_Guide/en-US/config/uploads.xml | Diff File | ||
|
master 21d1b6e5 2022-06-15 12:27 Details Diff |
Fix typo | ||
| mod - core/file_api.php | Diff File | ||
|
master 0e865caa 2022-06-15 12:20 dependabot[bot] Committer: community Details Diff |
Bump phpmailer/phpmailer from 6.6.0 to 6.6.2 (#1825) Bumps [phpmailer/phpmailer](https://github.com/PHPMailer/PHPMailer) from 6.6.0 to 6.6.2. - [Release notes](https://github.com/PHPMailer/PHPMailer/releases) - [Changelog](https://github.com/PHPMailer/PHPMailer/blob/master/changelog.md) - [Commits](https://github.com/PHPMailer/PHPMailer/compare/v6.6.0...v6.6.2) --- updated-dependencies: - dependency-name: phpmailer/phpmailer dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Fixes 0029025, PR https://github.com/mantisbt/mantisbt/pull/1825 |
Affected Issues 0029025 |
|
| mod - composer.lock | Diff File | ||
|
dependabot/composer/phpmailer/phpmailer-6.6.2 4d78a896 2022-06-14 21:15 dependabot[bot] Committer: community Details Diff |
Bump phpmailer/phpmailer from 6.6.0 to 6.6.2 Bumps [phpmailer/phpmailer](https://github.com/PHPMailer/PHPMailer) from 6.6.0 to 6.6.2. - [Release notes](https://github.com/PHPMailer/PHPMailer/releases) - [Changelog](https://github.com/PHPMailer/PHPMailer/blob/master/changelog.md) - [Commits](https://github.com/PHPMailer/PHPMailer/compare/v6.6.0...v6.6.2) --- updated-dependencies: - dependency-name: phpmailer/phpmailer dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> |
||
| mod - composer.lock | Diff File | ||
|
master e4972d4f 2022-06-14 10:00 Details Diff |
CSS cleanup - removed redundant 'display: inline-block' declaration, already set in ace.css for selector '.widget-toolbar > .widget-menu > a' - merged 2 overlapping rules '.widget-toolbar > .widget-menu a.btn-xs' and '.widget-toolbar > .widget-menu .btn-xs' |
||
| mod - css/ace-mantis.css | Diff File | ||
|
master 4857770f 2022-06-14 09:51 Details Diff |
Use extra-small buttons in widget toolbar menus Fixes a regresssion introduced by 3d88f6842b0802eea38f545b45e098561d39de52 causing an increase in height of the buttons displayed inside of widget toolbar menus (e.g. "View issues" button on My View Page boxes). Using XS buttons instead of Small fixes the problem, and also improves the display with a slightly bigger font size. Fixes 0030550 |
Affected Issues 0030550 |
|
| mod - admin/test_langs.php | Diff File | ||
| mod - bug_update_page.php | Diff File | ||
| mod - my_view_inc.php | Diff File | ||
|
master 9ec018b8 2022-06-13 07:09 translatewiki.net Details Diff |
Localisation updates from https://translatewiki.net. | ||
| mod - lang/strings_bulgarian.txt | Diff File | ||
| mod - lang/strings_hindi.txt | Diff File | ||
