Search Changesets

MantisBT: master a1d21602

2019-10-07 13:50:06

translatewiki.net

Details Diff
Localisation updates from https://translatewiki.net.
Attach Issues:
mod - lang/strings_bulgarian.txt Diff File
mod - lang/strings_finnish.txt Diff File
mod - lang/strings_swedish.txt Diff File
mod - lang/strings_ukrainian.txt Diff File
mod - plugins/Gravatar/lang/strings_bulgarian.txt Diff File

MantisBT: master 85533dbe

2019-10-01 10:35:30

translatewiki.net

Details Diff
Localisation updates from https://translatewiki.net.
Attach Issues:
mod - lang/strings_chinese_traditional.txt Diff File
mod - lang/strings_finnish.txt Diff File
mod - lang/strings_german.txt Diff File

MantisBT: dependabot/composer/phpmailer/phpmailer-6.1.1 f6d8646d

2019-09-30 02:05:06

dependabot-preview[bot]

Details Diff
Bump phpmailer/phpmailer from 6.0.7 to 6.1.1

Bumps [phpmailer/phpmailer](https://github.com/PHPMailer/PHPMailer) from 6.0.7 to 6.1.1.
- [Release notes](https://github.com/PHPMailer/PHPMailer/releases)
- [Changelog](https://github.com/PHPMailer/PHPMailer/blob/master/changelog.md)
- [Commits](https://github.com/PHPMailer/PHPMailer/compare/v6.0.7...v6.1.1)

Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
Attach Issues:
mod - composer.lock Diff File

MantisBT: master d6b7b35b

2019-09-30 02:05:06

dependabot-preview[bot]

Details Diff
Bump phpmailer/phpmailer from 6.0.7 to 6.1.1

Bumps [phpmailer/phpmailer](https://github.com/PHPMailer/PHPMailer) from 6.0.7 to 6.1.1.
- [Release notes](https://github.com/PHPMailer/PHPMailer/releases)
- [Changelog](https://github.com/PHPMailer/PHPMailer/blob/master/changelog.md)
- [Commits](https://github.com/PHPMailer/PHPMailer/compare/v6.0.7...v6.1.1)

Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
Affected Issues
0026265
mod - composer.lock Diff File

MantisBT: master-1.3.x 1f6fd21a

2019-09-26 12:38:01

vboctor

Details Diff
Update release to 1.3.20
Attach Issues:
mod - core/constant_inc.php Diff File
mod - docbook/Admin_Guide/en-US/Revision_History.xml Diff File
mod - docbook/Developers_Guide/en-US/Revision_History.xml Diff File

MantisBT: master-2.22 cf7df5af

2019-09-26 12:35:42

vboctor

Details Diff
Update release to 2.22.1
Attach Issues:
mod - core/constant_inc.php Diff File
mod - docbook/Admin_Guide/en-US/Revision_History.xml Diff File
mod - docbook/Developers_Guide/en-US/Revision_History.xml Diff File

MantisBT: master 5a9ea9bb

2019-09-26 07:58:41

cproensa

Details Diff
Fix rest issues with project specific filter id

The current project must be set for correctly checking permissions and
retrieving the filter.

Fixes: 0026195
Affected Issues
0026195
mod - api/rest/restcore/issues_rest.php Diff File

MantisBT: master 354c348c

2019-09-23 11:55:38

translatewiki.net

Details Diff
Localisation updates from https://translatewiki.net.
Attach Issues:
mod - lang/strings_german.txt Diff File
mod - lang/strings_hungarian.txt Diff File
mod - lang/strings_polish.txt Diff File
mod - lang/strings_zazaki.txt Diff File

MantisBT: master e75b9463

2019-09-22 06:33:55

dregad

Details Diff
Merge branch 'master-2.22'
Attach Issues:
mod - core/constant_inc.php Diff File
mod - core/html_api.php Diff File
mod - core/http_api.php Diff File
mod - core/layout_api.php Diff File

MantisBT: master-2.22 e3ebfb20

2019-09-22 06:32:54

dregad

Details Diff
Add integrity hashes for CSS resources

- bootstrap
- font-awesome
- bootstrap-datetimpicker

Issue 0026168
Affected Issues
0026168
mod - core/constant_inc.php Diff File
mod - core/layout_api.php Diff File

MantisBT: master-2.22 b7611645

2019-09-22 06:24:07

dregad

Details Diff
Allow integrity hashes for CSS CDN resources

Fixes 0026168
Affected Issues
0026168
mod - core/html_api.php Diff File

MantisBT: master-2.22 14cd147d

2019-09-22 06:20:01

dregad

Details Diff
Replace maxcdn by stackpath in CSP headers
Attach Issues:
mod - core/http_api.php Diff File

MantisBT: master-1.3.x 040b81dc

2019-09-22 05:13:41

dregad

Details Diff
Travis: ignore errors caused by 'apt-get update'
Attach Issues:
mod - scripts/travis_before_script.sh Diff File

MantisBT: master eb8494d8

2019-09-22 04:21:40

dregad

Details Diff
Merge branch 'master-2.22'
Attach Issues:
mod - core/constant_inc.php Diff File
mod - core/layout_api.php Diff File
rm - js/bootstrap-3.4.0.min.js Diff File
add - js/bootstrap-3.4.1.min.js Diff File

MantisBT: master 4c52fa00

2019-09-22 00:21:21

cproensa

Details Diff
Use max length property of custom field in inputs

When a string, or text, type custom field has a max length defined, we
should use that for the rendered input in the form, to limit the width
of the input.

Fixes: 0026141
Affected Issues
0026141
mod - core/cfdefs/cfdef_standard.php Diff File

MantisBT: master 20e2e5fd

2019-09-21 20:44:11

dregad

Details Diff
Remove unused variable
Attach Issues:
mod - core/html_api.php Diff File

MantisBT: master c5b85055

2019-09-21 20:38:40

dregad

Details Diff
Remove unused language string

Follow-up on ea3c13cc573b68bc715c069ad354091881f86f01, that string was
missed.
Attach Issues:
mod - plugins/MantisGraph/lang/strings_eo.txt Diff File

MantisBT: master 1436e536

2019-09-21 20:21:09

cproensa

Details Diff
Clean up duplicated query call

Move the call to `file_get_visible_attachments()` outside of the loop,
to avoid duplicated database queries.

Fixes: 0026167
Affected Issues
0026167
mod - api/soap/mc_issue_api.php Diff File

MantisBT: master 668a9b1e

2019-09-21 20:17:21

cproensa

Details Diff
Cache custom fields in mc_issue_api

Preload custom field data into cache to avoid repeated database queries.

Fixes: 0026166
Affected Issues
0026166
mod - api/soap/mc_issue_api.php Diff File

MantisBT: master fa538d1d

2019-09-21 12:14:53

dregad

Details Diff
Merge branch 'master-2.22'
Attach Issues:
mod - config_defaults_inc.php Diff File
mod - core/graphviz_api.php Diff File

MantisBT: master-1.3.x 7092573f

2019-09-21 12:10:24

dregad

Details Diff
Prevent arbitrary shell command execution

Prior to this, Administrators were able to edit 'dot_tool' and
'neato_tool' config options from the Manage Configuration Page

These can now only be set in the config_inc.php file.

Fixes 0026162, CVE-2019-15715

Backported from fc7668c8e45db55fc3a4b991ea99d2b80861a14c.
Affected Issues
0026162
mod - config_defaults_inc.php Diff File

MantisBT: master 5fb97960

2019-09-21 12:02:59

dregad

Details Diff
Escape GraphViz command before calling proc_open()

Fixes 0026091, CVE-2019-15715
Affected Issues
0026091
mod - core/graphviz_api.php Diff File

MantisBT: master-1.3.x cebfb9ac

2019-09-21 12:02:59

dregad

Details Diff
Escape GraphViz command before calling proc_open()

Fixes 0026162, CVE-2019-15715

(cherry picked from commit 5fb979604d88c630343b3eaf2b435cd41918c501)
Affected Issues
0026162
mod - core/graphviz_api.php Diff File

MantisBT: master 72ff745b

2019-09-20 11:04:53

dregad

Details Diff
Change Bootstrap & FontAwesome CDN

According to the official download pages, these libraries switched from
Max CDN to StackPath (as the latter bought the former).
Attach Issues:
mod - core/layout_api.php Diff File

MantisBT: master 1e2a3018

2019-09-20 11:00:03

dregad

Details Diff
Update Bootstrap to 3.4.1

Original css files were modified to remove the # on the source map file.
This prevents warnings in the browser console.

Fixes 0026160, CVE-2019-8331
Affected Issues
0026160
mod - core/constant_inc.php Diff File
rm - js/bootstrap-3.4.0.min.js Diff File
add - js/bootstrap-3.4.1.min.js Diff File
 First  Prev  1 2 3 4 5 6 ... 70 ... 140 ... 210 ... 280 ... 350 ... 420 ... 490 ... 560 ... 630 ... 659 660 661  Next  Last