Changesets: MantisBT
|
master-2.27 aa752e21 2025-05-24 05:23 Details Diff |
Reword ERROR_FIELD_TOO_LONG message | ||
| mod - lang/strings_english.txt | Diff File | ||
|
master-2.27 37b5a519 2025-05-23 19:17 Details Diff |
New test cases for REST Issue Notes | ||
| add - tests/rest/RestIssueNotesTest.php | Diff File | ||
|
master-2.27 d08568f9 2025-05-23 19:04 Details Diff |
Document $g_max_textarea_length in Admin Guide | ||
| mod - docbook/Admin_Guide/en-US/config/html.xml | Diff File | ||
|
master-2.27 54a1b0f1 2025-05-23 18:55 Details Diff |
Config instead of constant for max longtext length Introducing $g_max_textarea_length configuration option to replace DB_FIELD_SIZE_LONGTEXT constant. |
||
| mod - bug_actiongroup_add_note_inc.php | Diff File | ||
| mod - bug_actiongroup_page.php | Diff File | ||
| mod - bug_reminder_page.php | Diff File | ||
| mod - bug_update_page.php | Diff File | ||
| mod - bugnote_add_inc.php | Diff File | ||
| mod - bugnote_edit_page.php | Diff File | ||
| mod - config_defaults_inc.php | Diff File | ||
| mod - core/constant_inc.php | Diff File | ||
| mod - core/helper_api.php | Diff File | ||
| mod - tests/soap/IssueNoteTest.php | Diff File | ||
|
master 3047c4c9 2025-05-22 08:10 translatewiki.net Details Diff |
Localisation updates from https://translatewiki.net. [skip ci] | ||
| mod - lang/strings_qqq.txt | Diff File | ||
| mod - lang/strings_serbian.txt | Diff File | ||
| mod - lang/strings_serbian_latin.txt | Diff File | ||
| mod - plugins/Gravatar/lang/strings_serbian_latin.txt | Diff File | ||
| mod - plugins/MantisCoreFormatting/lang/strings_serbian.txt | Diff File | ||
| mod - plugins/MantisCoreFormatting/lang/strings_serbian_latin.txt | Diff File | ||
| mod - plugins/MantisGraph/lang/strings_serbian.txt | Diff File | ||
| mod - plugins/MantisGraph/lang/strings_serbian_latin.txt | Diff File | ||
| mod - plugins/XmlImportExport/lang/strings_serbian.txt | Diff File | ||
| mod - plugins/XmlImportExport/lang/strings_serbian_latin.txt | Diff File | ||
|
master 8034a2c4 2025-05-15 08:07 translatewiki.net Details Diff |
Localisation updates from https://translatewiki.net. [skip ci] | ||
| mod - lang/strings_korean.txt | Diff File | ||
|
master-2.27 966554a1 2025-05-14 12:39 Details Diff |
Check password with strict string comparison Due to an incorrect use of loose instead of strict comparison in the authentication code, PHP type juggling will cause interpretation of certain MD5 hashes as numbers, specifically those matching scientific notation. On MantisBT instances configured to use the MD5 login method, user accounts having a password hash evaluating to zero (i.e. matching regex `^0+[Ee][0-9]+$`) are vulnerable, allowing an attacker knowing the victim's username to login without knowledge of their actual password, using any other password having a hash evaluating to zero, for example comito5 (0e579603064547166083907005281618). Fixes 0035967, CVE-2025-47776, GHSA-4v8w-gg5j-ph37 |
Affected Issues 0035967 |
|
| mod - core/authentication_api.php | Diff File | ||
|
master 30c0164e 2025-05-14 12:38 Details Diff |
Fix PHPDoc and static analysis warnings | ||
| mod - core/authentication_api.php | Diff File | ||
| mod - core/crypto_api.php | Diff File | ||
|
master 0fb502dd 2025-05-12 08:08 translatewiki.net Details Diff |
Localisation updates from https://translatewiki.net. [skip ci] | ||
| mod - lang/strings_luxembourgish.txt | Diff File | ||
| mod - lang/strings_serbian.txt | Diff File | ||
| mod - plugins/MantisGraph/lang/strings_serbian.txt | Diff File | ||
|
master 3ad5c636 2025-05-12 07:54 Details Diff |
Merge branch 'master-2.27' | ||
| mod - adm_config_report.php | Diff File | ||
| mod - admin/test_langs.php | Diff File | ||
| mod - bug_view_inc.php | Diff File | ||
| mod - bugnote_stats_inc.php | Diff File | ||
| mod - bugnote_view_inc.php | Diff File | ||
| mod - css/default.css | Diff File | ||
| mod - manage_tags_page.php | Diff File | ||
|
master 97aa8e50 2025-05-09 03:55 Details Diff |
Bump Apache minimum requirement to 2.4.13 - 2.2 is EOL since 2018. - 2.4.13 is required for CGIPassAuth (see issue 0026365) |
Affected Issues 0026365 |
|
| mod - docbook/Admin_Guide/en-US/Installation.xml | Diff File | ||
|
master d67405d6 2025-05-05 15:11 Details Diff |
PHPDoc | ||
| mod - core/authentication_api.php | Diff File | ||
|
master-2.27 10366604 2025-05-05 13:17 Details Diff |
Add admin check for global configs defined in DB Fixes 0036164 |
Affected Issues 0036164 |
|
| mod - admin/check/check_config_inc.php | Diff File | ||
|
master-2.27 cf28aca3 2025-05-05 13:17 Details Diff |
Allow deleting a Global config option config_delete() prevents deleting configs defined in $g_global_settings. This does not make sense: if they are not allowed to be present in the database, then it should be OK to remove them. This situation can happen, when a config that was not initially defined as global, is later added to the $g_global_settings. Fixes 0036164 |
Affected Issues 0036164 |
|
| mod - core/commands/ConfigsSetCommand.php | Diff File | ||
| mod - core/config_api.php | Diff File | ||
|
master-2.27 c33bdc55 2025-05-05 13:11 Details Diff |
PHPDoc | ||
| mod - core/config_api.php | Diff File | ||
|
master-2.27 e14679c6 2025-05-05 13:03 Details Diff |
Fix static analysis warnings, whitespace | ||
| mod - core/commands/ConfigsSetCommand.php | Diff File | ||
|
master-2.27 2ebff3d6 2025-05-05 12:58 Details Diff |
Inconsistent use of single quote in error message ERROR_INVALID_FIELD_VALUE message used `'` to quote the parameter. This is inconsistent, the double-quote `"` is used everywhere else. |
||
| mod - lang/strings_english.txt | Diff File | ||
|
master-2.27 fcfc9344 2025-05-05 12:53 Details Diff |
Fix typo and improve error message wording Issue 0035915 |
Affected Issues 0035915 |
|
| mod - lang/strings_english.txt | Diff File | ||
|
master-2.27 9aeb54fb 2025-05-05 12:52 Details Diff |
Correct error code when updating a global config Now using ERROR_CONFIG_OPT_CANT_BE_SET_IN_DB instead of incorrect ERROR_INVALID_FIELD_VALUE Fixes 0035915 |
Affected Issues 0035915 |
|
| mod - core/commands/ConfigsSetCommand.php | Diff File | ||
|
master 53b193d1 2025-05-05 08:07 translatewiki.net Details Diff |
Localisation updates from https://translatewiki.net. [skip ci] | ||
| mod - lang/strings_korean.txt | Diff File | ||
|
master-2.27 3d700f32 2025-05-04 10:38 Details Diff |
Add test case to add too-long bugnote via SOAP | ||
| mod - tests/soap/IssueNoteTest.php | Diff File | ||
|
master-2.27 d5cec6bf 2025-05-04 06:17 Details Diff |
Limit size of bugnote text fields Fixes 0035893 |
Affected Issues 0035893 |
|
| mod - bug_actiongroup_add_note_inc.php | Diff File | ||
| mod - bug_actiongroup_page.php | Diff File | ||
| mod - bug_reminder_page.php | Diff File | ||
| mod - bug_update_page.php | Diff File | ||
| mod - bugnote_add_inc.php | Diff File | ||
| mod - bugnote_edit_page.php | Diff File | ||
| mod - core/bugnote_api.php | Diff File | ||
|
master-2.27 806a6bf9 2025-05-04 05:43 Details Diff |
New functions to check longtext field size - helper_is_longtext_length_valid() - helper_ensure_longtext_length_valid() |
||
| mod - core/helper_api.php | Diff File | ||
|
master-2.27 7b19539b 2025-05-04 05:42 Details Diff |
Define constant for max longtext field size | ||
| mod - core/constant_inc.php | Diff File | ||
|
master 50b0baf2 2025-05-03 19:24 Details Diff |
Merge branch 'i35668-rest-api-unset-category' PR https://github.com/mantisbt/mantisbt/pull/2136 |
||
| mod - api/soap/mc_api.php | Diff File | ||
| mod - tests/Mantis/MantisCoreBase.php | Diff File | ||
| mod - tests/core/MantisTestCase.php | Diff File | ||
| mod - tests/rest/RestBase.php | Diff File | ||
| add - tests/rest/RestIssueUpdateCategory.php | Diff File | ||
| mod - tests/rest/RestIssueUpdateVersion.php | Diff File | ||
