lp:ubuntu/hoary-security/bugzilla

Branch merges

Propose for merging

No branches dependent on this one.

Related source package recipes

No recipes using this branch. (?)

Create packaging recipe

Related snap packages

Related bugs

Related blueprints

4. By Nafallo Bjälevik on 2005-05-06

* SECURITY UPDATE: cross-site scripting (XSS)
* CGI.pl:
  - Applied patch from upstream.
* template/en/default/global/code-error.html.tmpl:
  - Applied patch from upstream.
* References:
  CAN-2004-1061

3. By Francesco Paolo Lovergine on 2004-12-07

* NMU 0-days due to serious/important bug solving which prevents
  bugzilla entering testing.

[ Alexis Sukrieh ]

* Post-inst won't fail anymore when no MySQL server is
  available. Added an automatic way of setting up the MySQL server if
  /etc/mysql/debian.cnf exists, will read values from it then.
  (closes: #250638)
* Using a MySQL user with '-' inside its name won't fail anymore.
  (closes unreported bug)
* Better handling on DBI connection errors. When DBI complains about
  something, user is not confused anymore by ugly error messages.
  (closes: #154249)
* Running checksetup.pl by hand won't break the Bugzilla's installation
  anymore. User can use it as he want without running dpkg-reconfigure.
  (closes: #200707)

[ Francesco P. Lovergine ]

* Now rules removes .cvsignore file which trashes /usr/share/bugzilla/template.
* Added virtual package httpd to the list of web server.
  (closes: #213784)

2. By Rémi Perrot <email address hidden> on 2004-04-02

Duplicate table creation is now also fixed in bugzilla.postinst
(closes: #224288)

1. By Rémi Perrot <email address hidden> on 2004-04-02

Import upstream version 2.16.5