head 1.26; access; symbols pkgsrc-2023Q4:1.26.0.14 pkgsrc-2023Q4-base:1.26 pkgsrc-2023Q3:1.26.0.12 pkgsrc-2023Q3-base:1.26 pkgsrc-2023Q2:1.26.0.10 pkgsrc-2023Q2-base:1.26 pkgsrc-2023Q1:1.26.0.8 pkgsrc-2023Q1-base:1.26 pkgsrc-2022Q4:1.26.0.6 pkgsrc-2022Q4-base:1.26 pkgsrc-2022Q3:1.26.0.4 pkgsrc-2022Q3-base:1.26 pkgsrc-2022Q2:1.26.0.2 pkgsrc-2022Q2-base:1.26 pkgsrc-2022Q1:1.25.0.4 pkgsrc-2022Q1-base:1.25 pkgsrc-2021Q4:1.25.0.2 pkgsrc-2021Q4-base:1.25 pkgsrc-2021Q3:1.23.0.6 pkgsrc-2021Q3-base:1.23 pkgsrc-2021Q2:1.23.0.4 pkgsrc-2021Q2-base:1.23 pkgsrc-2021Q1:1.23.0.2 pkgsrc-2021Q1-base:1.23 pkgsrc-2020Q4:1.21.0.30 pkgsrc-2020Q4-base:1.21 pkgsrc-2020Q3:1.21.0.28 pkgsrc-2020Q3-base:1.21 pkgsrc-2020Q2:1.21.0.24 pkgsrc-2020Q2-base:1.21 pkgsrc-2020Q1:1.21.0.4 pkgsrc-2020Q1-base:1.21 pkgsrc-2019Q4:1.21.0.26 pkgsrc-2019Q4-base:1.21 pkgsrc-2019Q3:1.21.0.22 pkgsrc-2019Q3-base:1.21 pkgsrc-2019Q2:1.21.0.20 pkgsrc-2019Q2-base:1.21 pkgsrc-2019Q1:1.21.0.18 pkgsrc-2019Q1-base:1.21 pkgsrc-2018Q4:1.21.0.16 pkgsrc-2018Q4-base:1.21 pkgsrc-2018Q3:1.21.0.14 pkgsrc-2018Q3-base:1.21 pkgsrc-2018Q2:1.21.0.12 pkgsrc-2018Q2-base:1.21 pkgsrc-2018Q1:1.21.0.10 pkgsrc-2018Q1-base:1.21 pkgsrc-2017Q4:1.21.0.8 pkgsrc-2017Q4-base:1.21 pkgsrc-2017Q3:1.21.0.6 pkgsrc-2017Q3-base:1.21 pkgsrc-2017Q2:1.21.0.2 pkgsrc-2017Q2-base:1.21 pkgsrc-2017Q1:1.19.0.6 pkgsrc-2017Q1-base:1.19 pkgsrc-2016Q4:1.19.0.4 pkgsrc-2016Q4-base:1.19 pkgsrc-2016Q3:1.19.0.2 pkgsrc-2016Q3-base:1.19 pkgsrc-2016Q2:1.18.0.6 pkgsrc-2016Q2-base:1.18 pkgsrc-2016Q1:1.18.0.4 pkgsrc-2016Q1-base:1.18 pkgsrc-2015Q4:1.18.0.2 pkgsrc-2015Q4-base:1.18 pkgsrc-2015Q3:1.17.0.10 pkgsrc-2015Q3-base:1.17 pkgsrc-2015Q2:1.17.0.8 pkgsrc-2015Q2-base:1.17 pkgsrc-2015Q1:1.17.0.6 pkgsrc-2015Q1-base:1.17 pkgsrc-2014Q4:1.17.0.4 pkgsrc-2014Q4-base:1.17 pkgsrc-2014Q3:1.17.0.2 pkgsrc-2014Q3-base:1.17 pkgsrc-2014Q2:1.16.0.10 pkgsrc-2014Q2-base:1.16 pkgsrc-2014Q1:1.16.0.8 pkgsrc-2014Q1-base:1.16 pkgsrc-2013Q4:1.16.0.6 pkgsrc-2013Q4-base:1.16 pkgsrc-2013Q3:1.16.0.4 pkgsrc-2013Q3-base:1.16 pkgsrc-2013Q2:1.16.0.2 pkgsrc-2013Q2-base:1.16 pkgsrc-2013Q1:1.15.0.4 pkgsrc-2013Q1-base:1.15 pkgsrc-2012Q4:1.15.0.2 pkgsrc-2012Q4-base:1.15 pkgsrc-2012Q3:1.14.0.28 pkgsrc-2012Q3-base:1.14 pkgsrc-2012Q2:1.14.0.26 pkgsrc-2012Q2-base:1.14 pkgsrc-2012Q1:1.14.0.24 pkgsrc-2012Q1-base:1.14 pkgsrc-2011Q4:1.14.0.22 pkgsrc-2011Q4-base:1.14 pkgsrc-2011Q3:1.14.0.20 pkgsrc-2011Q3-base:1.14 pkgsrc-2011Q2:1.14.0.18 pkgsrc-2011Q2-base:1.14 pkgsrc-2011Q1:1.14.0.16 pkgsrc-2011Q1-base:1.14 pkgsrc-2010Q4:1.14.0.14 pkgsrc-2010Q4-base:1.14 pkgsrc-2010Q3:1.14.0.12 pkgsrc-2010Q3-base:1.14 pkgsrc-2010Q2:1.14.0.10 pkgsrc-2010Q2-base:1.14 pkgsrc-2010Q1:1.14.0.8 pkgsrc-2010Q1-base:1.14 pkgsrc-2009Q4:1.14.0.6 pkgsrc-2009Q4-base:1.14 pkgsrc-2009Q3:1.14.0.4 pkgsrc-2009Q3-base:1.14 pkgsrc-2009Q2:1.14.0.2 pkgsrc-2009Q2-base:1.14 pkgsrc-2009Q1:1.13.0.4 pkgsrc-2009Q1-base:1.13 pkgsrc-2008Q4:1.13.0.2 pkgsrc-2008Q4-base:1.13 pkgsrc-2008Q3:1.12.0.8 pkgsrc-2008Q3-base:1.12 cube-native-xorg:1.12.0.6 cube-native-xorg-base:1.12 pkgsrc-2008Q2:1.12.0.4 pkgsrc-2008Q2-base:1.12 cwrapper:1.12.0.2 pkgsrc-2008Q1:1.10.0.4 pkgsrc-2008Q1-base:1.10 pkgsrc-2007Q4:1.10.0.2 pkgsrc-2007Q4-base:1.10 pkgsrc-2007Q3:1.9.0.8 pkgsrc-2007Q3-base:1.9 pkgsrc-2007Q2:1.9.0.6 pkgsrc-2007Q2-base:1.9 pkgsrc-2007Q1:1.9.0.4 pkgsrc-2007Q1-base:1.9 pkgsrc-2006Q4:1.9.0.2 pkgsrc-2006Q4-base:1.9 pkgsrc-2006Q3:1.8.0.4 pkgsrc-2006Q3-base:1.8 pkgsrc-2006Q2:1.8.0.2 pkgsrc-2006Q2-base:1.8 pkgsrc-2006Q1:1.6.0.2 pkgsrc-2006Q1-base:1.6 pkgsrc-2005Q4:1.5.0.2 pkgsrc-2005Q4-base:1.5 pkgsrc-2005Q3:1.3.0.2 pkgsrc-2005Q3-base:1.3 pkgsrc-2005Q2:1.2.0.4 pkgsrc-2005Q2-base:1.2 pkgsrc-2005Q1:1.2.0.2 pkgsrc-2005Q1-base:1.2 pkgsrc-2004Q4:1.1.1.1.0.2 pkgsrc-2004Q4-base:1.1.1.1 pkgsrc-base:1.1.1.1 TNF:1.1.1; locks; strict; comment @# @; 1.26 date 2022.04.25.17.24.50; author christos; state Exp; branches; next 1.25; commitid L8wROTSPm6PEBBBD; 1.25 date 2021.10.26.10.15.39; author nia; state Exp; branches; next 1.24; commitid XMBRkrafc79x2jeD; 1.24 date 2021.10.07.13.40.33; author nia; state Exp; branches; next 1.23; commitid TK9Y8OXA04EYMSbD; 1.23 date 2021.03.06.13.42.07; author taca; state Exp; branches; next 1.22; commitid EsgKeIjNkQpDIfKC; 1.22 date 2021.02.28.17.06.40; author taca; state Exp; branches; next 1.21; commitid S4RwUYF5I9Zx2vJC; 1.21 date 2017.05.21.07.16.49; author ryoon; state Exp; branches; next 1.20; commitid K1wsbRl2VeXE6eSz; 1.20 date 2017.04.17.09.57.14; author maya; state Exp; branches; next 1.19; commitid KU2CCoRd22lN4SNz; 1.19 date 2016.08.30.12.37.43; author ryoon; state Exp; branches 1.19.6.1; next 1.18; commitid eyze8ixgzQOUmkkz; 1.18 date 2015.11.03.03.27.49; author agc; state Exp; branches; next 1.17; commitid XagoUgdES8g2ZAHy; 1.17 date 2014.09.24.01.06.26; author rodent; state Exp; branches; next 1.16; commitid pEczxlPPrHmCdxRx; 1.16 date 2013.06.30.11.47.44; author ryoon; state Exp; branches; next 1.15; commitid rLGA0iHe6C3whDVw; 1.15 date 2012.12.25.21.49.05; author ryoon; state Exp; branches; next 1.14; 1.14 date 2009.04.23.10.45.21; author gavan; state Exp; branches; next 1.13; 1.13 date 2008.11.02.17.25.18; author adrianp; state Exp; branches; next 1.12; 1.12 date 2008.06.21.15.17.00; author adrianp; state Exp; branches 1.12.8.1; next 1.11; 1.11 date 2008.05.14.21.43.06; author adrianp; state Exp; branches; next 1.10; 1.10 date 2007.10.27.22.31.10; author adrianp; state Exp; branches 1.10.4.1; next 1.9; 1.9 date 2006.11.14.13.05.12; author adrianp; state Exp; branches 1.9.8.1; next 1.8; 1.8 date 2006.05.28.15.17.47; author adrianp; state Exp; branches; next 1.7; 1.7 date 2006.05.01.13.00.40; author adrianp; state Exp; branches; next 1.6; 1.6 date 2006.01.17.13.31.14; author adrianp; state Exp; branches 1.6.2.1; next 1.5; 1.5 date 2005.12.21.06.13.26; author adrianp; state Exp; branches 1.5.2.1; next 1.4; 1.4 date 2005.11.03.09.50.56; author adrianp; state Exp; branches; next 1.3; 1.3 date 2005.09.19.22.33.28; author adrianp; state Exp; branches 1.3.2.1; next 1.2; 1.2 date 2005.02.23.22.24.21; author agc; state Exp; branches; next 1.1; 1.1 date 2004.11.08.19.05.33; author adrianp; state Exp; branches 1.1.1.1; next ; 1.19.6.1 date 2017.04.17.15.52.46; author bsiegert; state Exp; branches; next ; commitid fjdxkrEEGFiv3UNz; 1.12.8.1 date 2008.11.04.11.43.24; author tron; state Exp; branches; next ; 1.10.4.1 date 2008.05.15.11.13.26; author rtr; state Exp; branches; next ; 1.9.8.1 date 2007.12.03.12.53.59; author ghen; state Exp; branches; next ; 1.6.2.1 date 2006.05.01.21.56.14; author salo; state Exp; branches; next ; 1.5.2.1 date 2006.01.22.20.20.28; author salo; state Exp; branches; next ; 1.3.2.1 date 2005.11.05.14.14.11; author salo; state Exp; branches; next ; 1.1.1.1 date 2004.11.08.19.05.33; author adrianp; state Exp; branches; next ; desc @@ 1.26 log @Update from 2.24.5 to 2.25.3 because older one does not work with php7.4.27 See: https://www.mantisbt.org/bugs/changelog_page.php @ text @$NetBSD: distinfo,v 1.25 2021/10/26 10:15:39 nia Exp $ BLAKE2s (mantisbt-2.25.3.tar.gz) = efd42a6758f7a54c02308e31c9de6d70de4d0acfb6a926b275d492152765ca02 SHA512 (mantisbt-2.25.3.tar.gz) = eebf77a365f28815305c788e2a5c7e430efc07a5e9e844a94235e1e4ebd669fa26125c034e1613a6d81f572e7f1b68871eff19b01e9419eace0dc4e395f057c1 Size (mantisbt-2.25.3.tar.gz) = 15122369 bytes @ 1.25 log @archivers: Replace RMD160 checksums with BLAKE2s checksums All checksums have been double-checked against existing RMD160 and SHA512 hashes Could not be committed due to merge conflict: devel/py-traitlets/distinfo The following distfiles were unfetchable (note: some may be only fetched conditionally): ./devel/pvs/distinfo pvs-3.2-solaris.tgz ./devel/eclipse/distinfo eclipse-sourceBuild-srcIncluded-3.0.1.zip @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.24 2021/10/07 13:40:33 nia Exp $ d3 3 a5 3 BLAKE2s (mantisbt-2.24.5.tar.gz) = 2bdcbfbff6015942053aa7b4ce28822322eff0b7ce6afd02d4296d648bc571b4 SHA512 (mantisbt-2.24.5.tar.gz) = bb84634154dd4b4a3a5549a45742501d7f852b19f5f7479239ab020ccbc8c54b0aa43f27cfbb39ce976931f483b77600b0a28f0096ac77b799656ceb35a9bea6 Size (mantisbt-2.24.5.tar.gz) = 14407448 bytes @ 1.24 log @devel: Remove SHA1 hashes for distfiles @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.23 2021/03/06 13:42:07 taca Exp $ d3 1 a3 1 RMD160 (mantisbt-2.24.5.tar.gz) = 8b3411eb2df2d97cda31fc077e9b64a990cbfa98 @ 1.23 log @devel/mantis: update to 2.24.5 2.24.5 (2021-03-05) Security and maintenance release, includes PHP 8.0 compatibility fixes. * 0027800: [bugtracker] install.php throws SYSTEM WARNINGs (dregad) * 0027928: [custom fields] Unable to edit Issues having Date custom fields on PHP 8.0 (dregad) * 0027976: [security] User cookie string is not reset upon logout (dregad) * 0027826: [bugtracker] ERROR_CATEGORY_NOT_FOUND_FOR_PROJECT thrown for Category '0' (dregad) @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.22 2021/02/28 17:06:40 taca Exp $ a2 1 SHA1 (mantisbt-2.24.5.tar.gz) = 995937c539fa61ab69419349344252777f49c232 @ 1.22 log @devel/mantis: update to 2.24.4 Update mantis package to 2.24.4. Now supports PHP 7.3 and 7.4. Changes from 2.4.1 are too many to write here, please refer . @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.21 2017/05/21 07:16:49 ryoon Exp $ d3 4 a6 4 SHA1 (mantisbt-2.24.4.tar.gz) = a91ff61ec839aa177b94c8163ce893afe47cecb7 RMD160 (mantisbt-2.24.4.tar.gz) = 9910ff0a3b9cdc9c1eda6bd8923c108cf1d82ef8 SHA512 (mantisbt-2.24.4.tar.gz) = 115ae7786061b9a535a8396ee32e8aea31ac0d934f64fa614de757cdc1547beefe1d363867be663a1d974c0d94e29708b2b65f52abd2e85eaaefa3bb32c4bf8e Size (mantisbt-2.24.4.tar.gz) = 14400419 bytes @ 1.21 log @Update to 2.4.1 * This version works with PHP 7.1.5 Changelog: 2.4.1: 0022428: [markdown] CSV and Excel exports with markdown on (vboctor) 0022906: [security] CVE-2017-7620: Open redirection vulnerability in /login_page.php (dregad) 0022909: [security] CVE-2017-7620: CSRF - Arbitrary Permalink Injection (dregad) 0022867: [markdown] Markdown formatting is broken for notes column on View Issues page (vboctor) 2.4.0: 0021558: [ui] log destination for page produces messed output (syncguru) 0022665: [documentation] Wrong documentation of option bug_resolution_fixed_threshold (atrol) 0022689: [bugtracker] HTTP_X_FORWARDED_PROTO is not honored when loading Gravatar (vboctor) 0022744: [signup] Signup is not working on mantisbt.org/bugs (vboctor) 0022740: [performance] Allowed memory size of 268435456 bytes exhausted (vboctor) 0004235: [authentication] Support Generic Authentication through Plug-ins (vboctor) 0022140: [administration] Getting error dialog when reporting issues and file upload is disabled (cproensa) 0022635: [time tracking] Empty notes with time tracking show as empty notes for users that can't view time tracking (vboctor) 0022673: [attachments] Dropzone uploads files when submitting other forms (cproensa) 0022762: [api rest] Bug in error handling when user doesn't have access level to handle issue (vboctor) @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.20 2017/04/17 09:57:14 maya Exp $ d3 4 a6 4 SHA1 (mantisbt-2.4.1.tar.gz) = 2790dc4f5458bf2792fb31614d08729859b64c87 RMD160 (mantisbt-2.4.1.tar.gz) = a1ac7172314ea7ebe0682bb73fb448b742ce2a47 SHA512 (mantisbt-2.4.1.tar.gz) = bd43af5542e44d99a848f9df79593d5510e13ada936ffa7bfb49853ab44e40788651098ae28a9ce822073b180d3d3064220654f8f078601a8b7d15103d5c7f51 Size (mantisbt-2.4.1.tar.gz) = 15948586 bytes @ 1.20 log @mantisBT: patch CVE-2017-7615, allowing any user to authenticate as admin using upstream provided patch. XXX THIS IS THE WRONG FIX, PACKAGE SHOULD BE UPDATED TO LATEST VERSION bump PKGREVISION @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.19 2016/08/30 12:37:43 ryoon Exp $ d3 4 a6 5 SHA1 (mantisbt-1.3.1.tar.gz) = baa398bd59356ed4142270b38fcdf67c6df54a4c RMD160 (mantisbt-1.3.1.tar.gz) = 828fc4f24dc17e77dacd20c12fc7917f1834a8bc SHA512 (mantisbt-1.3.1.tar.gz) = bac797f7d744b5f8911d2674779c790f6770fbbe7e28203a108cd51d8360cdd0830d3e68459a4d1892ca20c414f1ed37a8e71102bf804deba7073ea53885a1c1 Size (mantisbt-1.3.1.tar.gz) = 13444685 bytes SHA1 (patch-verify.php) = 7e312200115639ad950009d75dae92b675166eb9 @ 1.19 log @Update to 1.3.1 * Remove Apache httpd and php module dependency. This package works fine with nginx and php-fpm too * Add database option for MySQL and PostgreSQL * For MySQL, php-mysqli is recommended. Use it as MySQL option Changelog: Not available. 1.3.x is new stable branch. @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.18 2015/11/03 03:27:49 agc Exp $ d7 1 @ 1.19.6.1 log @Pullup ticket #5300 - requested by maya devel/mantis: security fix Revisions pulled up: - devel/mantis/Makefile 1.49 - devel/mantis/distinfo 1.20 - devel/mantis/patches/patch-verify.php 1.1 --- Module Name: pkgsrc Committed By: maya Date: Mon Apr 17 09:57:14 UTC 2017 Modified Files: pkgsrc/devel/mantis: Makefile distinfo Added Files: pkgsrc/devel/mantis/patches: patch-verify.php Log Message: mantisBT: patch CVE-2017-7615, allowing any user to authenticate as admin using upstream provided patch. XXX THIS IS THE WRONG FIX, PACKAGE SHOULD BE UPDATED TO LATEST VERSION bump PKGREVISION @ text @d1 1 a1 1 $NetBSD$ a6 1 SHA1 (patch-verify.php) = 7e312200115639ad950009d75dae92b675166eb9 @ 1.18 log @Add SHA512 digests for distfiles for devel category Issues found with existing distfiles: distfiles/eclipse-sourceBuild-srcIncluded-3.0.1.zip distfiles/fortran-utils-1.1.tar.gz distfiles/ivykis-0.39.tar.gz distfiles/enum-1.11.tar.gz distfiles/pvs-3.2-libraries.tgz distfiles/pvs-3.2-linux.tgz distfiles/pvs-3.2-solaris.tgz distfiles/pvs-3.2-system.tgz No changes made to these distinfo files. Otherwise, existing SHA1 digests verified and found to be the same on the machine holding the existing distfiles (morden). All existing SHA1 digests retained for now as an audit trail. @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.17 2014/09/24 01:06:26 rodent Exp $ d3 4 a6 4 SHA1 (mantisbt-1.2.17.tar.gz) = 7cfa03ca674eb6727ed6d9c3f79266a12c0a669c RMD160 (mantisbt-1.2.17.tar.gz) = 40a599a5be7868d13374d9b36bf8ce33ed55149e SHA512 (mantisbt-1.2.17.tar.gz) = afe36f6be2e17a56324c6306d8b4e57c0a25b8f0d7c4da1c59a0e8f2d1ad50c706e3369ceeb4500203446b13cf50a1b0c1f9a85843126b06b3e34572cf679c24 Size (mantisbt-1.2.17.tar.gz) = 3958728 bytes @ 1.17 log @Update to 1.2.17. pkgsrc changes: Add bash:run to USE_TOOLS and REPLACE_BASH in installed file. Replace PHP interpreter in installed *.php files. Move options framework into options.mk. Use INSTALLATION_DIRS instead of INSTALL_DATA_DIR. From doc/RELEASE: 1.2.17 Security Release (2014-03-04) ------------------------------------------------- MantisBT 1.2.17 is a security update for the stable 1.2.x branch. All installations that are currently running any 1.2.x version are strongly advised to upgrade to this release. Download it from [3]. An SQL injection vulnerability (CVE-2014-2238) in adm_config_report.php was patched. Refer to issue #17055 for detailed information. This release also includes a few bug fixes for the tracker, including News API correction for the regression issue #16940 introduced in 1.2.16, as well as updated translations in many languages. A full changelog for the 1.2.x series can be found on the official site. [1] 1.2.16 Security Release (2014-02-07) ------------------------------------------------- MantisBT 1.2.16 is a security update for the stable 1.2.x branch. All installations that are currently running any 1.2.x version are strongly advised to upgrade to this release. Download it from [3]. The following security issues were resolved: - Cross-site scripting (XSS) issue in account_sponsor_page.php, allowing a malicious user with project manager access to execute arbitrary JavaScript code (CVE-2013-4460). Affects MantisBT 1.1.0 and later. Refer to issue #16513 for detailed information. - SQL injection attacks through the SOAP API's mc_attachment_get() function (CVE-2014-1608). Affects MantisBT 1.1.0a4 and later. Refer to issue #16879 for detailed information. - Additional cases of unsanitized SQL query parameters usage were identified, potentially allowing SQL injection attacks (CVE-2014-1609). Refer to issue #16880 for detailed information. This release also includes many bug fixes and enhancements to the tracker and the SOAP api, as well as updated translations in many languages. A full changelog for the 1.2.x series can be found on the official site. [1] [1] The changelog is split between multiple releases: 1.2.17 http://www.mantisbt.org/bugs/changelog_page.php?version_id=189 1.2.16 http://www.mantisbt.org/bugs/changelog_page.php?version_id=183 @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.16 2013/06/30 11:47:44 ryoon Exp $ d5 1 @ 1.16 log @Update to 1.2.15 Changelog: MantisBT 1.2.15 is a security update for the stable 1.2.x branch. All installations that are currently running any 1.2.x version are strongly advised to upgrade to this release. - 0002971: [bugtracker] Reminders are not added to bug history (dregad) - closed. - 0015470: [bugtracker] Reminders recipient list is truncated (dregad) - closed. - 0010047: [documentation] Adding new statuses section is missing a step (dregad) - closed. - 0010118: [documentation] lang_get_current() returns wrong language if $g_default_language overwritten (dregad) - closed. - 0010372: [feature] Don't allow reminders to be sent if the user doesn't have an email address specificed (dregad) - closed. - 0013054: [installation] Installer displays a blank page if core.php encounters a critical error (dregad) - closed. - 0015357: [bugtracker] uninitialized library path (dregad) - closed. - 0015471: [bugtracker] bug_reminder.php does not handle unsent reminders (dregad) - closed. - 0015472: [bugtracker] email_bug_reminder() API's return array is always full list of recipients (dregad) - closed. - 0015481: [custom fields] Custom fields values are not sorted in the main filter (dregad) - closed. - 0015528: [printing] Custom fields user has no access to should not be displayed on print pages (dregad) - closed. - 0015538: [bugtracker] Issues list is not displayed when $g_limit_reporters is ON (dregad) - closed. - 0015540: [documentation] Wrong example code for custom status translation (atrol) - closed. - 0015558: [bugtracker] url_get() does not fall back to other methods when no data is retrieved (dregad) - closed. - 0015573: [security] CVE-2013-1883: One query can be issued via current Mantis interface to take down site (dregad) - closed. - 0015575: [documentation] Turning on $g_show_queries_list causes Mantis to crash with an error (dregad) - closed. - 0015659: [localization] Appears @@70@@ and @@80@@ in the list of resolutions in the "view Issues" page when mantis is in catalan. (dregad) - closed. - 0015691: [administration] Config report: retrieval of saved project filter from cookie does not work (dregad) - closed. - 0015453: [security] CVE-2013-1930: Close button is shown on webpage despite 'close' is not a valid status by workflow (dregad) - closed. - 0015511: [security] CVE-2013-1931: XSS vulnerability when deleting a version (atrol) - closed. - 0015698: [bugtracker] 'extract() expects parameter 1 to be array, boolean given' in '/srv/www/bugs/account_prof_edit_page.php' line 48 (dregad) - closed. - 0015704: [documentation] Wrong description of writing custom_functions (atrol) - closed. - 0015744: [bugtracker] Reminder bugnote with list of recipients not added if no text provided (dregad) - closed. - 0015451: [api soap] Incorrect invocations of SoapObjectsFactory::newSoapFault (rombert) - closed. - 0015517: [api soap] mc_project_get_versions() result can't be parsed by C# (dregad) - closed. - 0015522: [api soap] mc_project_get_issues does not report due_date (dregad) - closed. MantisBT 1.2.14 is a security update for the stable 1.2.x branch. All installations that are currently running any 1.2.x version are strongly advised to upgrade to this release. Please refer to the release notes for details. - 0015416: [security] CVE-2013-1934: XSS issue in adm_config_report.php when displaying complex value (dregad) - closed. - 0015415: [security] CVE-2013-1932: XSS vulnerability on Configuration Report page (dregad) - closed. - 0015411: [performance] Huge memory consumption for print_user_option_list() (dregad) - closed. MantisBT 1.2.13 had to be withdrawn shortly after release, as it introduced a bug (#15411) causing the View Issues page to consume significantly more memory for instances with large numbers of users (order 10k+), leading to system crashes, as well as an XSS issue (#15415) in the Configuration Report page. We recommend not to use 1.2.13, and deploy version 1.2.14 instead. - 0014871: [api soap] Add support for the built-in soap extension in addition to nusoap (rombert) - closed. - 0003693: [bugtracker] Make the username in Manage Projects a clickable link to edit that user (dregad) - closed. - 0007586: [customization] generic configuration editor cannot 'EDIT' an option (dregad) - closed. - 0010130: [filters] Filter "Assigned to" does not display usernames when project "All Projects" is selected (dregad) - closed. - 0011854: [documentation] Parameter $g_default_timezone" is not mentioned in administration_guide (dregad) - closed. - 0013298: [preferences] commas and multi-dimensional arrays in adm_config_set (dregad) - closed. - 0013680: [performance] Configuration page takes a very long time to load (dregad) - closed. - 0014009: [administration] admin/check.php fatal error on PHP 5.1.x (undefined function timezone_identifiers_list()) (dregad) - closed. - 0014559: [administration] Adding filter for "Configuration report" (dregad) - closed. - 0015199: [other] Update json api error format (rombert) - closed. - 0015201: [db postgresql] Summary page fail (dregad) - closed. - 0015384: [security] CVE-2013-1810 XSS vulnerability on summary page (dhx) - closed. - 0015247: [administration] Protected account change still sends email (dregad) - closed. - 0015248: [email] The order of sending emails is inverted when using cron (dregad) - closed. - 0015255: [bugtracker] Date filter fields are disabled when $g_use_javascript = OFF (dregad) - closed. - 0015257: [filters] Inconsistent use of numeric vs text month in date filter selection fields (dregad) - closed. - 0015258: [security] CVE-2013-1811 Reporter can change issue status to 'new' (dregad) - closed. - 0015260: [bugtracker] access_get_status_threshold() returns incorrect value for NEW (dregad) - closed. - 0015264: [custom fields] custom_field_get_id_from_name() broken since 1.2.12 (dregad) - closed. - 0015265: [custom fields] custom_field_get_id_from_name() doesn't cache result of obsolete custom field names (dregad) - closed. - 0015280: [code cleanup] Form in manage_columns_inc.php has misleading name and unnecessary multipart encoding (dregad) - closed. - 0015320: [filters] Date filters broken since 1.2.12 (rombert) - closed. - 0015360: [bugtracker] Add Missing config 'reminder_receive_threshold' in workflow threshold page (dregad) - closed. - 0015370: [bugtracker] When a bug is resolved on report, default the handler to the current user (rombert) - closed. - 0015373: [security] CVE-2013-0197 XSS vulnerability with match_type filter (dhx) - closed. - 0015382: [email] Additional improvements to email logging (dregad) - closed. - 0015388: [filters] Update the match_type parameter to be XSS-safe by itself (dregad) - closed. - 0015389: [filters] Display of match_type filter property for unknown types (dregad) - closed. - 0015356: [api soap] improve error handling in mc_issue_api.php (rombert) - closed. - 0014157: [api soap] Array to string conversion error on soap request with PHP 5.4 (rombert) - closed. - 0014672: [api soap] Slow performance of SOAP calls due to nusuoap (rombert) - closed. - 0015222: [api soap] mc_project_delete_category fails to delete category (rombert) - closed. @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.15 2012/12/25 21:49:05 ryoon Exp $ d3 3 a5 3 SHA1 (mantisbt-1.2.15.tar.gz) = 24bb24cb5ece5054c7c1638b040118fc60927a87 RMD160 (mantisbt-1.2.15.tar.gz) = 8c257614ff234c120ff2063defd824c9a014b8b2 Size (mantisbt-1.2.15.tar.gz) = 3577359 bytes @ 1.15 log @Update to 1.2.12 from 1.1.7 * Set LICENSE and pkglint * Change to 1.2.x branch * Many security fixes shall be included, but I cannot specify them... Changelog: Full log: http://www.mantisbt.org/bugs/changelog_page.php MantisBT Release Notes 1.2.12 Maintenance Release (2012-11-10) ------------------------------------------------- MantisBT 1.2.12 resolves over 70 issues mainly in the following categories: security, MS SQL and PostgreSQL databases support, Change Log page, custom fields, installation, attachments, SOAP API, XML import/export plugin, e-mail (including update of the PHPMailer library to version 5.2.1) and others. In addition, it also brings several enhancements: - filter page now allows 'OR' logic and to query by notes' authors - improved e-mail logging (see #14630) - new 'EVENT_UPDATE_BUG_STATUS_FORM' plugin event - updated Admin Guide - translations in many languages All installations that are currently running any 1.2.x or older version are advised to upgrade to this release. A full changelog for the 1.2.x series can be found on the official site. [1] 1.2.11 Maintenance Release (2012-06-08) ------------------------------------------------- MantisBT 1.2.11 is a security update for the stable 1.2.x branch. All installations that are currently running any 1.2.x or older version are advised to upgrade to this release. This release also contains numerous minor bug fixes to MantisBT, SOAP API fixes, enhancements to the admin guide and improved translations in many languages. A full changelog for the 1.2.x series can be found on the official site. [1] 1.2.10 Maintenance Release (2012-04-01) ------------------------------------------------- MantisBT 1.2.10 is a maintenance release. All installations that are currently running any 1.2.x version are advised to upgrade to this release. A full changelog for the 1.2.x series can be found on the official site. [1] 1.2.9 Maintenance Release (2012-03-03) ------------------------------------------------- MantisBT 1.2.9 release delivers 92 fixes and improvements including security fixes, new MantisBT logo, MantisTouch integration, MS SQL fixes, SOAP API improvements, and others. We recommend that all instances be upgraded to this release. A full changelog for the 1.2.x series can be found on the official site. [1] 1.2.8 Security Release (2011-09-05) ------------------------------------------------- MantisBT 1.2.8 is a security update for the stable 1.2.x branch. All installations that are currently running any 1.2.x version are advised to upgrade to this release. Paulino Calderon from Websec, High-Tech Bridge Security Research Lab and Paul Richards discovered 3 vulnerabilities: - 1x local file inclusion (LFI)/directory traversal - 2x cross site scriptin (XSS) These vulnerabilities could have very severe consequences for users of MantisBT, particularly as a result of the local file inclusion vulnerability. If an attacker can upload their own PHP script to the server as an attachment, they may be able to execute this script using the LFI vulnerability. Refer to issues #13191 and #13281 for detailed information. A full changelog for the 1.2.x series can be found on the official site. [1] 1.2.7 Security Release (2011-08-19) ------------------------------------------------- MantisBT 1.2.7 is a security update for the stable 1.2.x branch. All installations that are currently running any 1.2.x version are advised to upgrade to this release. Net.Edit0r from BlACK Hat Group posted a vulnerability report for an XSS issue in search.php. All MantisBT users (including anonymous users that are not logged in to public bug trackers) could be impacted by this vulnerability. Refer to issue #13245 for full details. This release also contains numerous minor bug fixes to MantisBT and improved translations in many languages. A full changelog for the 1.2.x series can be found on the official site. [1] 1.2.6 Maintenance Release (2011-07-26) ------------------------------------------------- MantisBT 1.2.6 is a maintenance update for the stable 1.2.x branch. It is recommended that all MantisBT users (including those still using 1.1.x or earlier versions) upgrade to this latest release. This release brings bug fixes and improvements across a range of MantisBT features, especially the SOAP API, authentication, time tracking, and billing areas. Documentation and translation updates are also included. A full changelog for the 1.2.x series can be found on the official site. [1] 1.2.5 Maintenance Release (2011-04-05) ------------------------------------------------- MantisBT 1.2.5 is a maintenance update for the stable 1.2.x branch. It is recommended that all MantisBT users (including those still using 1.1.x or earlier versions) upgrade to this latest release. This release brings improved translations in many languages as well as numerous bug fixes across a range of MantisBT features. A full changelog for the 1.2.x series can be found on the official site. [1] 1.2.4 Security Release (2010-12-15) ------------------------------------------------- MantisBT 1.2.4 is a security update for the stable 1.2.x branch. All installations that are currently running any 1.2.x version are advised to upgrade to this release. Gjoko Krstic of Zero Science Lab reported multiple vulnerabilities in the admin/upgrade_unattended.php script. Issue #12607 provides more detail on the vulnerabilities discovered. We thank Gjoko for his detailed assistance with testing, patching and answering questions. Please note that the /admin/ directory should be removed from all MantisBT installations after the installation or upgrade has been completed. This is particularly true for MantisBT installations accessible over the Internet. Also included with 1.2.4 are some bug fixes relating to fonts in the MantisGraph plugin, SOAP API, CSV export, custom field values, relationship graphs, fields on the manage user page, built-in time tracking and the allow_reporter_close feature. This release includes updated translations for many languages and improved installation documentation in doc/INSTALL. A full changelog for the 1.2.x series can be found on the official site. [1] 1.2.3 Security Release (2010-09-14) ------------------------------------------------- MantisBT 1.2.3 is a security update for the stable 1.2.x branch. All installations that are currently running any 1.2.x version are advised to upgrade to this release. Issue #12312 covers an XSS vulnerability in the upstream NuSOAP library. The fix has been applied to the library included in MantisBT releases, and a patch has been submitted upstream for future releases of NuSOAP. See http://www.mantisbt.org/bugs/view.php?id=12312 for further details. Also included with 1.2.3 are another round of XSS fixes to MantisBT, improved excel export, translation updates, and bug fixes to the SOAP API, installation, plugin system, and email notifications. A full changelog for the 1.2.x series can be found on the official site. [1] 1.2.2 Security Release (2010-07-29) ------------------------------------------------- MantisBT 1.2.2 is a security update for the stable 1.2.x branch. All installations that are currently running any 1.2.x version are advised to upgrade to this release. Issue #11952 covers a security fix to the display of inline attachments, where "Arbitrary inline attachment rendering could lead to cross-domain scripting or other browser attacks". See http://www.mantisbt.org/bugs/view.php?id=11952 for further details and information. Also included with 1.2.2 are a range of translation updates, regression fixes, and bug fixes, including multiple SOAP API-related bugs and regressions. A full changelog for the 1.2.x series can be found on the official site. [1] 1.2.1 Maintenance Release (2010-04-23) ------------------------------------------------- MantisBT 1.2.1 is a maintenance update for the stable 1.2.x branch. All installations that are currently running any 1.1.x or 1.2.0 version are advised to upgrade to this release. Included with 1.2.1 are a range of bug fixes, translation updates, and general improvements over the initial 1.2.0 release. Highlights include an improved installation, a fixed upgrade path from 1.1.x, fixes to the URL and path detection, and updates to the plugin event system. A full changelog for the 1.2.x series can be found on the official site. [1] 1.2.0 Stable Release (2010-02-22) ------------------------------------------------- This release marks the first official release in the 1.2.x series of MantisBT. 1.2.0 is a major feature release for MantisBT, and includes many bugfixes and enhancements over the 1.1.x stable branch. All users of 1.1.x are highly encouraged to upgrade as soon as possible. There are many new features added to 1.2.0, including: - Converted the MantisBT Manual to Docbook format, and added a new Developer's Guide manual, both of which are compiled and included in every release - Implemented a plugin system with many plugins already released [2] - Global categories available to all projects, as well as project categories inheriting from parent projects to child projects; both are optional - Tracked change history for textarea fields (Description, etc) and bug notes - Customizable sets of columns for View Issues page and export formats - Combined simple and advanced views into a single, configurable view that allows selecting exactly what fields to show or hide - Improved roadmap and changelog pages, including version release dates, and permalinks to individual versions - Marking versions as obsolete to hide them from the roadmap and changelog - More configuration options for rebranding MantisBT installations - Improved support for PostgreSQL databases - Improved support for UTF-8 localizations and content - Implemented custom search providers for Firefox and Internet Explorer - Implemented localized timestamps using according to user-preferred timezones There have also been many improvements to the codebase beyond adding features: - Migrated to parameterised database queries throughout the codebase for both performance and security improvements - Added PHPDoc compatible documentation to all internal API's - Removed many hardcoded references to access levels and other enumerations, for improved customizability. - Migrated away from DATETIME fields to integer timestamps for timezone usage - All 3rd party code is now contained within the library/ path, including documentation on library versions and any patches applied - Initial support for MySQL 6 and PHP 5.3 @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.14 2009/04/23 10:45:21 gavan Exp $ d3 3 a5 3 SHA1 (mantisbt-1.2.12.tar.gz) = ef7305da952cdd60157d03e589db5170bf1b6845 RMD160 (mantisbt-1.2.12.tar.gz) = ce621d97b1a89213572905ac7eacfbbc3c41d0e0 Size (mantisbt-1.2.12.tar.gz) = 3538177 bytes @ 1.14 log @Update to 1.1.7 2009.04.20 - 1.1.7 =================================== Bugfix maintenance release, cleaning up most of the remaining issues with 1.1.x series. - 0006848: [administration] Bugs in manage_config_*_set.php (grangeway) - resolved. - 0009986: [administration] APPLICATION ERROR #2800 using "Delete Project Specific Settings" (jreese) - resolved. - 0010235: [api soap] mc_issue_attachment_add corrupts attachments (giallu) - resolved. - 0009888: [bugtracker] Issue History Problem... build, os, os_version, and platform are not looking right and are not effected by language files. (jreese) - resolved. - 0009999: [bugtracker] APPLICATION ERROR #2800 - While submit a new bug (jreese) - resolved. - 0009606: [custom fields] Custom fields not enforced. (thraxisp) - resolved. - 0009979: [custom fields] Function gpc_isset always return false for a custom date field (thraxisp) - resolved. - 0010035: [custom fields] Custom multi-selection list fields don't allow deselection (thraxisp) - resolved. - 0010154: [custom fields] Custom field enum values are getting the first and last characters truncated when displayed. (thraxisp) - resolved. - 0010011: [customization] date_submitted is not set properly in bug object (thraxisp) - resolved. - 0010200: [email] \n not replaced in registration e-mail (siebrand) - resolved. - 0010231: [feature] Assigned bug status cannot be changed to new? (jreese) - resolved. - 0010299: [html] Invalid HTML (jreese) - resolved. - 0010270: [localization] escaped double quotes in localization files (siebrand) - resolved. - 0010187: [security] Using dession destroy and unset for logout (jreese) - resolved. - 0010192: [sub-projects] Repeated Target versions (jreese) - resolved. - 0010038: [tagging] Problems attaching tags in Chrome (jreese) - resolved. - 0010050: [time tracking] All leves have access to billing reports - Access level required to run reports does not function (giallu) - resolved. 2008.12.09 - 1.1.6 =================================== This release fixes once and for all the caching troubles from previous stable releases, some access permissions bugs, and a few various other issues. This release also improves the existing source control integration by allowing remote checkins. - 0009893: [administration] Users can change status on ViewOnly Tasks (jreese) - resolved. - 0009815: [bugtracker] gpc_get_string_array() sometimes returns non-arrays (thraxisp) - resolved. - 0009869: [bugtracker] application error 2800 still in version 1.1.5 (jreese) - resolved. - 0009888: [bugtracker] Issue History Problem... build, os, os_version, and platform are not looking right and are not effected by language files. (jreese) - resolved. - 0009890: [bugtracker] Case of extension for inline image is not ignored (jreese) - resolved. - 0009900: [customization] Allowing update issue status disables the function to administrator (thraxisp) - resolved. - 0008847: [integration] Revamp SVN and CVS integration (jreese) - resolved. - 0009651: [other] Version copy from parent project copies incorrect date (jreese) - resolved. - 0009928: [other] Inconsistent uses of file extension configuration settings. (jreese) - resolved. 2008.11.21 - 1.1.5 =================================== This release solves more issues relating to the security fixes introduced by 1.1.3, as well as various other minor bugs. - 0009713: [authentication] Users are unable to confirm registration (jreese) - resolved. - 0009017: [bugtracker] SYSTEM WARNING implode() [function.implode]: Bad arguments. (jreese) - resolved. - 0009738: [bugtracker] Browser caching should be enabled on bug_change_status_page.php (jreese) - resolved. - 0009748: [bugtracker] Port 9737: bugnote_add.php contains undefined t_note_type (vboctor) - resolved. - 0009754: [bugtracker] Failed to report issue (APPLICATION ERROR #2800) (jreese) - resolved. - 0009714: [csv] Error message/warning, if HTTP_USER_AGENT is not set (jreese) - resolved. - 0009808: [db mysql] Linking Sub-Projects to a project -> APPLICATION ERROR #200 (jreese) - resolved. - 0009760: [other] Mantis checks $g_allow_browser_caching setting incorrectly (jreese) - resolved. - 0009780: [tagging] Changing project in Tag Details view gives "APPLICATION ERROR #200" (jreese) - resolved. - 0009803: [tagging] Tags field in filter should not be shown when user has no access to tags (jreese) - resolved. @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.13 2008/11/02 17:25:18 adrianp Exp $ d3 3 a5 3 SHA1 (mantisbt-1.1.7.tar.gz) = f22948ddeb76b85a3fb30072b937b1836ca16441 RMD160 (mantisbt-1.1.7.tar.gz) = 6d13570e7e99195aa869419149b513be696b1d3a Size (mantisbt-1.1.7.tar.gz) = 2417784 bytes @ 1.13 log @Update to 1.1.4 2008.10.18 - 1.1.4 =================================== We had to withdraw 1.1.3 because of a serious flaw affecting the bug_report* pages. This new release fixes that problem and a newly discovered security issue . - 0009704: [security] Remote Code Execution in manage_proj_page.php (giallu) - r esolved. - 0009691: [bugtracker] Failed to report issue.(Always APPLICATION ERROR #2800) (jreese) - resolved. - 0009690: [other] Wrong parameter count for session_set_cookie_params() (jreese ) - resolved. - 0009693: [webpage] Generated HTML contains multiple hostnames when proxied (jr eese) - resolved. 2008.10.09 - 1.1.3 =================================== In this release we fixed a couple of nasty bugs sneaked into 1.1.2, where sendin g bugnotes email notifications would fail and browser caching was not functional . We also refined the implementation of form security tokens and closed a couple o f security issues, an information disclosure (with no CVE) and a session hijacki ng (CVE-2008-3102). - 0009321: [security] Users can get title and status of issues that they don't h ave access to. (vboctor) - resolved. - 0009533: [security] Mantis should use secure sessions on https connections (jr eese) - resolved. - 0009286: [administration] stray "2" in manage_user_prune.php (vboctor) - resol ved. - 0009664: [authentication] Logout without unsetting session cookie (jreese) - r esolved. - 0009323: [bugtracker] Browser caching broken since 1.1.2 (jreese) - resolved. - 0009470: [bugtracker] Tags filter not filling into text field when selecting f rom list using Internet Explorer (jreese) - resolved. - 0009493: [custom fields] Removing custom fields from project causes applicatio n error 2800 (giallu) - resolved. - 0009309: [email] Problems with e-mail notifications about bugnotes [PATCH] (gi allu) - resolved. - 0004678: [filters] Filter combos don't fill up on if switched to 'All Projects ' - closed. - 0009430: [graphs] bug_graph_bystatus shows heading by_category (thraxisp) - re solved. - 0009431: [localization] no localization for usage of open, resolved, closed in bug_graph_bystatus.php (thraxisp) - resolved. - 0008882: [other] Gravatar causes annoying security popups on IE when using Man tis over HTTPS/SSL (jreese) - resolved. - 0009361: [other] php session fail created cause mantis app error. (jreese) - r esolved. - 0009560: [other] Wrong behaviour in Session API (session_save_path error messa ge) (jreese) - resolved. - 0009672: [other] Fixing form error by going back fails because of security tok en (jreese) - resolved. - 0009343: [scripting] form security token prevents changing relationship while resolving bug (jreese) - resolved. @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.12 2008/06/21 15:17:00 adrianp Exp $ d3 3 a5 3 SHA1 (mantis-1.1.4.tar.gz) = 7e64529508d3e35b98ae49c12b808998e669ef76 RMD160 (mantis-1.1.4.tar.gz) = e67d3aa48e65498b7a75909a5976f21db9554d75 Size (mantis-1.1.4.tar.gz) = 2584719 bytes @ 1.12 log @Update to 1.1.2 - 0008974: [security] XSS Vulnerability in filters (thraxisp) - closed. - 0008975: [security] CSRF Vulnerabilities in user_create (jreese) - closed. - 0008976: [security] Remote Code Execution in adm_config (giallu) - closed. - 0009154: [security] arbitrary file inclusion through user preferences page (giallu) - closed. - 0008123: [administration] Adding a user requires "$g_lost_password_feature = ON" (giallu) - closed. - 0008924: [bugtracker] Port 8245: Target Version value lost in update issue page (giallu) - closed. - 0008886: [change log] Change Log shows duplicate entries (jreese) - closed. - 0008880: [db postgresql] Problem with date formatting in db_prepare_date function (giallu) - closed. - 0009176: [db postgresql] Port 0008699: Get Time Tracking Information return a SQL query error (vboctor) - closed. - 0009177: [filters] Port 0008916: Monitor by filter ignores show_monitor_list_threshold (vboctor) - closed. - 0008830: [installation] set_time_limit() doesn't work in PHP safe mode (daryn) - closed. - 0008858: [integration] DokuWiki integration: EMail notification on wiki page changes not working (vboctor) - closed. - 0008774: [localization] Complete Hungarian retranslation (vboctor) - closed. - 0009186: [localization] Port 0009046: French translation for $s_bug_assign_to_button (vboctor) - closed. - 0009178: [other] Fix memleak in string api (vboctor) - closed. - 0009208: [other] Several actions on bug update page lead into System Warning and App. Error (daryn) - closed. - 0008931: [relationships] Circle Relations cause roadmap to malfunction (jreese) - closed. - 0008853: [roadmap] Issue appears more than once in the Roadmap for a release. (jreese) - closed. - 0007764: [scripting] APPLICATION WARNING #100: Configuration option 'category_enum_string' not found (vboctor) - closed. - 0009183: [time tracking] Port 0008357: "Total time for issue" is shown even for users under threshold (vboctor) - closed. - 0009184: [time tracking] Port 0008849: Emails ignore time tracking view threshold (vboctor) - closed. - 0009185: [time tracking] Port 0008621: The expand icon is inverted for the Time tracking section (vboctor) - closed. @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.11 2008/05/14 21:43:06 adrianp Exp $ d3 3 a5 3 SHA1 (mantis-1.1.2.tar.gz) = 291026ca4135961faf97597280cdc2a766b89e3c RMD160 (mantis-1.1.2.tar.gz) = 251a7daee876468ebe63e72df72824a85680dcc8 Size (mantis-1.1.2.tar.gz) = 2582860 bytes @ 1.12.8.1 log @Pullup ticket #2569 - requested by adrianp mantis: security update Revisions pulled up: - devel/mantis/Makefile 1.33 - devel/mantis/distinfo 1.13 --- Module Name: pkgsrc Committed By: adrianp Date: Sun Nov 2 17:25:18 UTC 2008 Modified Files: pkgsrc/devel/mantis: Makefile distinfo Log Message: Update to 1.1.4 2008.10.18 - 1.1.4 =================================== We had to withdraw 1.1.3 because of a serious flaw affecting the bug_report* pages. This new release fixes that problem and a newly discovered security issue. - 0009704: [security] Remote Code Execution in manage_proj_page.php (giallu) - resolved. - 0009691: [bugtracker] Failed to report issue.(Always APPLICATION ERROR #2800) (jreese) - resolved. - 0009690: [other] Wrong parameter count for session_set_cookie_params() (jreese) - resolved. - 0009693: [webpage] Generated HTML contains multiple hostnames when proxied (jreese) - resolved. 2008.10.09 - 1.1.3 =================================== In this release we fixed a couple of nasty bugs sneaked into 1.1.2, where sending bugnotes email notifications would fail and browser caching was not functional. We also refined the implementation of form security tokens and closed a couple of security issues, an information disclosure (with no CVE) and a session hijacking (CVE-2008-3102). - 0009321: [security] Users can get title and status of issues that they don't have access to. (vboctor) - resolved. - 0009533: [security] Mantis should use secure sessions on https connections (jreese) - resolved. - 0009286: [administration] stray "2" in manage_user_prune.php (vboctor) - resolved. - 0009664: [authentication] Logout without unsetting session cookie (jreese) - resolved. - 0009323: [bugtracker] Browser caching broken since 1.1.2 (jreese) - resolved. - 0009470: [bugtracker] Tags filter not filling into text field when selecting from list using Internet Explorer (jreese) - resolved. - 0009493: [custom fields] Removing custom fields from project causes application error 2800 (giallu) - resolved. - 0009309: [email] Problems with e-mail notifications about bugnotes [PATCH] (giallu) - resolved. - 0004678: [filters] Filter combos don't fill up on if switched to 'All Projects' - closed. - 0009430: [graphs] bug_graph_bystatus shows heading by_category (thraxisp) - resolved. - 0009431: [localization] no localization for usage of open, resolved, closed in bug_graph_bystatus.php (thraxisp) - resolved. - 0008882: [other] Gravatar causes annoying security popups on IE when using Mantis over HTTPS/SSL (jreese) - resolved. - 0009361: [other] php session fail created cause mantis app error. (jreese) - resolved. - 0009560: [other] Wrong behaviour in Session API (session_save_path error message) (jreese) - resolved. - 0009672: [other] Fixing form error by going back fails because of security token (jreese) - resolved. - 0009343: [scripting] form security token prevents changing relationship while resolving bug (jreese) - resolved. @ text @d1 1 a1 1 $NetBSD$ d3 3 a5 3 SHA1 (mantis-1.1.4.tar.gz) = 7e64529508d3e35b98ae49c12b808998e669ef76 RMD160 (mantis-1.1.4.tar.gz) = e67d3aa48e65498b7a75909a5976f21db9554d75 Size (mantis-1.1.4.tar.gz) = 2584719 bytes @ 1.11 log @Mantis 1.1.1 Released This is a maintenance release for the 1.1.x branch. It includes a fix for PHP 4 support (#8681 stripos), several fixes for SOAP API, a security fix, and other minor bug fixes. Mantis 1.1.0 Released After 4 alpha releases, 3 release candidates and over 400 features and bug fixes, Mantis 1.1.0 gold is finally released. The highlights of the Mantis 1.1.0 release include: 1. Inclusion of MantisConnect (SOAP API) out of the box 2. Wiki integration (dokuwiki, mediawiki, xwiki), 3. Email queuing, 4. Gravatar integration, 5. DB2 support, 6. Tagging, 7. Filtering perma links, 8. Time tracking, 9. Twitter integration, 10. UTF8 support, 11. Generic configuration page, 12. Show last visited issues, 13. XHTML compliance, 14. Authenticated RSS @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.10 2007/10/27 22:31:10 adrianp Exp $ d3 3 a5 3 SHA1 (mantis-1.1.1.tar.gz) = 218e6ff41288f55a20f05e86a2791b01658213b4 RMD160 (mantis-1.1.1.tar.gz) = 30dc40ed6a236bbb80f50225201cb6c2e7ecfb3e Size (mantis-1.1.1.tar.gz) = 2526314 bytes @ 1.10 log @Update to 1.0.8 - 0007902: [bugtracker] constant_inc is missing statement in 1.0.7 (vboctor) - 0008020: [installation] Port 7907: Allow using system adodb (giallu) - 0008029: [localization] Spelling mistake in value of string $s_by_severity file lang/strings_spanish.txt (giallu) - 0008019: [other] Port 5333: Invalid zip file core/adodb/adodb-time.zip in CVS (giallu) - 0007939: [rss] Port 7738: Replace non free RSS creation class (vboctor) 2007.04.04 - 1.0.7 - 0007743: [security] Port: CVE-2006-6574 (vboctor) - 0007772: [security] email notifications bypass security on custom fields (vboctor) - 0007784: [security] XSS vulnerabilities (vboctor) - 0007774: [custom fields] custom fields not stored correctly in bug history (vboctor) - 0007783: [filters] Port: Dynamic filter selection (XMLHTTPRequest) broken when using IE7 (vboctor) @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.9 2006/11/14 13:05:12 adrianp Exp $ d3 3 a5 3 SHA1 (mantis-1.0.8.tar.gz) = 979947bc1f39d8471e48b3c914c46a91d6af3c38 RMD160 (mantis-1.0.8.tar.gz) = 02e349a05d8d5c190d943ee4dc430a6adaffe1a0 Size (mantis-1.0.8.tar.gz) = 1549854 bytes @ 1.10.4.1 log @pullup ticket #2382 - requested by adrianp mantis: update for bug and security fixes revisions pulled up: - pkgsrc/devel/mantis/Makefile 1.30 - pkgsrc/devel/mantis/PLIST 1.11 - pkgsrc/devel/mantis/distinfo 1.11 Module Name: pkgsrc Committed By: adrianp Date: Wed May 14 21:43:06 UTC 2008 Modified Files: pkgsrc/devel/mantis: Makefile PLIST distinfo Log Message: Mantis 1.1.1 Released This is a maintenance release for the 1.1.x branch. It includes a fix for PHP 4 support (#8681 stripos), several fixes for SOAP API, a security fix, and other minor bug fixes. Mantis 1.1.0 Released After 4 alpha releases, 3 release candidates and over 400 features and bug fixes, Mantis 1.1.0 gold is finally released. The highlights of the Mantis 1.1.0 release include: 1. Inclusion of MantisConnect (SOAP API) out of the box 2. Wiki integration (dokuwiki, mediawiki, xwiki), 3. Email queuing, 4. Gravatar integration, 5. DB2 support, 6. Tagging, 7. Filtering perma links, 8. Time tracking, 9. Twitter integration, 10. UTF8 support, 11. Generic configuration page, 12. Show last visited issues, 13. XHTML compliance, 14. Authenticated RSS @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.10 2007/10/27 22:31:10 adrianp Exp $ d3 3 a5 3 SHA1 (mantis-1.1.1.tar.gz) = 218e6ff41288f55a20f05e86a2791b01658213b4 RMD160 (mantis-1.1.1.tar.gz) = 30dc40ed6a236bbb80f50225201cb6c2e7ecfb3e Size (mantis-1.1.1.tar.gz) = 2526314 bytes @ 1.9 log @Update to 1.0.6 2006.10.28 - 1.0.6 - 0007466: [security] Port: 6719: Manager of a project can assign the Administrator role to a user. (vboctor) - 0007543: [security] Port 5163: Default value for $g_bug_reminder_threshold should be higher than "reporter" (vboctor) - 0007467: [administration] Port 6637: Disabled projects don't appear under parent project (vboctor) - 0007527: [localization] Port 7526: japanese_utf8 is more suitable than japanese_sjis ($g_language_auto_map) (vboctor) - 0007470: [localization] [all lang] Port latest localization files from Mantis 1.1 to Mantis 1.0.x (vboctor) - 0007530: [localization] Port:: New Languages: bulgarian, catalan, czech_utf8, french_utf8, italian_utf8, polish_utf8, russian_utf8, slovene_utf8 (vboctor) - 0007412: [other] Update Mantis to refer to new website (vboctor) 2006.07.23 - 1.0.5 - 0007301: [upgrade] Login page inaccessible after upgrade to 1.0.4 (thraxisp) 2006.07.22 - 1.0.4 - 0007051: [bugtracker] Fix for #6869 / #7034 removes quoted "?" from arguments (thraxisp) - 0007298: [bugtracker] Port: bugnote_delete.php redirection fails (vboctor) - 0007299: [bugtracker] Port: Save login feature does not work (vboctor) - 0007300: [bugtracker] Port: Remember login always redirects to main_page.php (vboctor) - 0007143: [other] Port: checkin.php needs array_unique() (vboctor) @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.8 2006/05/28 15:17:47 adrianp Exp $ d3 3 a5 3 SHA1 (mantis-1.0.6.tar.gz) = 940a505d2a30e98679b156c503a96dc579ff0b01 RMD160 (mantis-1.0.6.tar.gz) = 05b6cb89cf943447a887e9d8d52f927aaa316e16 Size (mantis-1.0.6.tar.gz) = 1638568 bytes @ 1.9.8.1 log @Pullup ticket 2232 - requested by adrianp security update for mantis - pkgsrc/devel/mantis/Makefile 1.28 - pkgsrc/devel/mantis/PLIST 1.10 - pkgsrc/devel/mantis/distinfo 1.10 Module Name: pkgsrc Committed By: adrianp Date: Sat Oct 27 22:31:10 UTC 2007 Modified Files: pkgsrc/devel/mantis: Makefile PLIST distinfo Log Message: Update to 1.0.8 - 0007902: [bugtracker] constant_inc is missing statement in 1.0.7 (vboctor) - 0008020: [installation] Port 7907: Allow using system adodb (giallu) - 0008029: [localization] Spelling mistake in value of string $s_by_severity file lang/strings_spanish.txt (giallu) - 0008019: [other] Port 5333: Invalid zip file core/adodb/adodb-time.zip in CVS (giallu) - 0007939: [rss] Port 7738: Replace non free RSS creation class (vboctor) 2007.04.04 - 1.0.7 - 0007743: [security] Port: CVE-2006-6574 (vboctor) - 0007772: [security] email notifications bypass security on custom fields (vboctor) - 0007784: [security] XSS vulnerabilities (vboctor) - 0007774: [custom fields] custom fields not stored correctly in bug history (vboctor) - 0007783: [filters] Port: Dynamic filter selection (XMLHTTPRequest) broken when using IE7 (vboctor) @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.9 2006/11/14 13:05:12 adrianp Exp $ d3 3 a5 3 SHA1 (mantis-1.0.8.tar.gz) = 979947bc1f39d8471e48b3c914c46a91d6af3c38 RMD160 (mantis-1.0.8.tar.gz) = 02e349a05d8d5c190d943ee4dc430a6adaffe1a0 Size (mantis-1.0.8.tar.gz) = 1549854 bytes @ 1.8 log @Update to 1.0.3 > - 7037: [security] Port: Login with disabled account possible (vboctor) > - 7034: [bugtracker] Port: bug in string_sanitize_url() (vboctor) > - 7028: [db mssql] Port: "Prune Accounts" function doesn't work with MS SQL (vboctor) > - 7029: [db mssql] Port: MS SQL Error on View Filters Page (vboctor) > - 7030: [db mssql] Port: installtion fails - administrator have no rights on db (vboctor) > - 7032: [db mssql] Port: Error on opening Change Log (vboctor) > - 7039: [db mssql] Notice: Only variables should be assigned by reference in coreadodbadodb.inc.php on line 2931 (vboctor) > - 7035: [feature] Port: Global Profiles list not sorted (vboctor) > - 7038: [filters] Port: SYSTEM WARNING: Argument 1 to array_multisort() is expected to be an array or a sort flag (vboctor) > - 7031: [installation] Port: is_writable never success in install.php (vboctor) > - 7041: [installation] Port: newbie admins may be redirected to blank page (vboctor) > - 7033: [printing] Port: wrong strpos function call (vboctor) > - 7027: [upgrade] Port: fixed_in_version is renamed to Fixed_in_version during database migration (vboctor) @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.7 2006/05/01 13:00:40 adrianp Exp $ d3 3 a5 3 SHA1 (mantis-1.0.3.tar.gz) = a77e2f9b3bc24abd2c7e238a768130ca1dc37167 RMD160 (mantis-1.0.3.tar.gz) = 46565f06374c3d8c49e102c32f943ebbda15d74d Size (mantis-1.0.3.tar.gz) = 1426811 bytes @ 1.7 log @Update to 1.0.2 > 2006.04.18 - 1.0.2 > - 0006902: [security] XSS in mantis bug track system .... (thraxisp) > - 0006859: [bugtracker] Can send reminders to all recipients (thraxisp) > > 2006.02.18 - 1.0.1 > - 0006722: [installation] Remaining mysqli_ install problems (ref. #0006672): my sqli_real_escape_string() expects parameter 1 to be link (thraxisp) > - 0006672: [installation] install.php assumes mysql extension, fails with mysqli extension (thraxisp) > - 0006668: [filters] Parse error while saving new filter: Call to undefined function: string_strip_tags() (thraxisp) > > 2006.02.04 - 1.0.0 > - 0006044: [security] 'Return' _GET is not checked (thraxisp) > - 0006650: [security] ADOdb can be exploited to execute arbitrary SQL code (vboctor) > - 0006659: [security] Cross site scripting vulnerability (thraxisp) > - 0006634: [filters] Filter does not work with profiles (vboctor) @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.6 2006/01/17 13:31:14 adrianp Exp $ d3 3 a5 3 SHA1 (mantis-1.0.2.tar.gz) = 2bbc9135f69c7a7e812be40c56bc65d0d11ec349 RMD160 (mantis-1.0.2.tar.gz) = 8b029a63d647e6dfbf98c0fd22c1aa64c1fc940c Size (mantis-1.0.2.tar.gz) = 1486561 bytes @ 1.6 log @Update to 1.0.0rc5 0006509: [security] Port: Additional XSS Vulnerabilities in Filter (thraxisp) 0006557: [security] XSS Vulnerability in manage_user (TKADV2005-11-002) (thraxisp) 0006563: [security] Port XSS Vulnerability in project documents (TKADV2005-11-02) (thraxisp) 0006569: [security] XSS Vulnerability in saved queries (TKADV2005-11-002) (thraxisp) 0006594: [bugtracker] config_flush_cache does not work correctly (thraxisp) 0006585: [documentation] don't see the documentation (thraxisp) 0006501: [filters] Categories can't be selected for filter-setting (thraxisp) @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.5 2005/12/21 06:13:26 adrianp Exp $ d3 3 a5 3 SHA1 (mantis-1.0.0rc5.tar.gz) = 2e5fb40a696d134a23f73c18935e5c8aecf9248b RMD160 (mantis-1.0.0rc5.tar.gz) = baa96e7774753403e6bcd803274258e32a9607b8 Size (mantis-1.0.0rc5.tar.gz) = 1452263 bytes @ 1.6.2.1 log @Pullup ticket 1490 - requested by adrianp security update for mantis Revisions pulled up: - pkgsrc/devel/mantis/Makefile 1.20 - pkgsrc/devel/mantis/PLIST 1.7 - pkgsrc/devel/mantis/distinfo 1.7 Module Name: pkgsrc Committed By: adrianp Date: Mon May 1 13:00:40 UTC 2006 Modified Files: pkgsrc/devel/mantis: Makefile PLIST distinfo Log Message: Update to 1.0.2 > 2006.04.18 - 1.0.2 > - 0006902: [security] XSS in mantis bug track system .... (thraxisp) > - 0006859: [bugtracker] Can send reminders to all recipients (thraxisp) > > 2006.02.18 - 1.0.1 > - 0006722: [installation] Remaining mysqli_ install problems (ref. > #0006672): my sqli_real_escape_string() expects parameter > 1 to be link (thraxisp) > - 0006672: [installation] install.php assumes mysql extension, fails > with mysqli extension (thraxisp) > - 0006668: [filters] Parse error while saving new filter: Call to > undefined function: string_strip_tags() (thraxisp) > > 2006.02.04 - 1.0.0 > - 0006044: [security] 'Return' _GET is not checked (thraxisp) > - 0006650: [security] ADOdb can be exploited to execute arbitrary SQL > code (vboctor) > - 0006659: [security] Cross site scripting vulnerability (thraxisp) > - 0006634: [filters] Filter does not work with profiles (vboctor) @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.7 2006/05/01 13:00:40 adrianp Exp $ d3 3 a5 3 SHA1 (mantis-1.0.2.tar.gz) = 2bbc9135f69c7a7e812be40c56bc65d0d11ec349 RMD160 (mantis-1.0.2.tar.gz) = 8b029a63d647e6dfbf98c0fd22c1aa64c1fc940c Size (mantis-1.0.2.tar.gz) = 1486561 bytes @ 1.5 log @Update mantis from 1.0.0rc3 to 1.0.0rc4 From the ChangeLog: - 0006421: [security] Private bugs show up in public RSS feed (vboctor) - 0006458: [security] Port #6457: SQL Injection in manage user page (TKADV2005-11-002) (vboctor) - 0006461: [security] Port #6460: HTTP Header CRLF Injection (TKADV2005-11-002) (vboctor) - 0006485: [security] XSS Vulnerability in filters (TKADV2005-11-002) (thraxisp) - 0006489: [security] Port Injection Vulnerabilities in Filters (TKADV2005-11-002) (thraxisp) - 0006492: [security] Port #6453: Make note private has no effect when resolving bug (thraxisp) - 0006432: [bugtracker] error processing does not work! (jlatour) - 0006379: [filters] Filter returns private issues when it should not (thraxisp) - 0006254: [localization] strings_korean_utf8.txt has UTF-8 byte-order marker (ryandesign) - 0006268: [localization] strings_chinese_simplified_utf8.txt has UTF-8 byte-order marker (ryandesign) - 0006304: [localization] [PATCH] Major overhaul of strings_dutch.txt (jlatour) - 0006358: [localization] Updated Dutch localization (Wanderer) - 0006474: [localization] Calls to htmlspecialchars should take into account the current charset (jlatour) @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.4 2005/11/03 09:50:56 adrianp Exp $ d3 3 a5 3 SHA1 (mantis-1.0.0rc4.tar.gz) = e875599e71ea7ac8b240dd39436e83fe5b2aeef7 RMD160 (mantis-1.0.0rc4.tar.gz) = 55ab3f5c215c6dc8ba698ea0747b3dd44337d1f3 Size (mantis-1.0.0rc4.tar.gz) = 1451665 bytes @ 1.5.2.1 log @Pullup ticket 1050 - requested by Adrian Portelli security update for mantis Revisions pulled up: - pkgsrc/devel/mantis/Makefile 1.15, 1.16 - pkgsrc/devel/mantis/distinfo 1.6 - pkgsrc/devel/mantis/files/mantis.conf 1.2 Module Name: pkgsrc Committed By: adrianp Date: Mon Jan 9 21:00:39 UTC 2006 Modified Files: pkgsrc/devel/mantis: Makefile pkgsrc/devel/mantis/files: mantis.conf Log Message: Bump to nb1 for adodb security issue (adodb is included with mantis) Use included files/mantis.conf to block apache access to core/adodb --- Module Name: pkgsrc Committed By: adrianp Date: Tue Jan 17 13:31:14 UTC 2006 Modified Files: pkgsrc/devel/mantis: Makefile distinfo Log Message: Update to 1.0.0rc5 0006509: [security] Port: Additional XSS Vulnerabilities in Filter (thraxisp) 0006557: [security] XSS Vulnerability in manage_user (TKADV2005-11-002) (thraxisp) 0006563: [security] Port XSS Vulnerability in project documents (TKADV2005-11-02) (thraxisp) 0006569: [security] XSS Vulnerability in saved queries (TKADV2005-11-002) (thraxisp) 0006594: [bugtracker] config_flush_cache does not work correctly (thraxisp) 0006585: [documentation] don't see the documentation (thraxisp) 0006501: [filters] Categories can't be selected for filter-setting (thraxisp) @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.6 2006/01/17 13:31:14 adrianp Exp $ d3 3 a5 3 SHA1 (mantis-1.0.0rc5.tar.gz) = 2e5fb40a696d134a23f73c18935e5c8aecf9248b RMD160 (mantis-1.0.0rc5.tar.gz) = baa96e7774753403e6bcd803274258e32a9607b8 Size (mantis-1.0.0rc5.tar.gz) = 1452263 bytes @ 1.4 log @Update to 1.0.0rc3 (from 1.0.0rc2) From the Changelog: - 0006273: [security] File Inclusion Vulnerability (vboctor) - 0006275: [security] SQL injection (vboctor) - 0006234: [filters] Filter sometimes returns no results (thraxisp) - 0006295: [filters] Old filters and view_state problems. (thraxisp) - 0006288: [filters] Patch against CVS HEAD for Saved filter problem with view_state (thraxisp) - 0006296: [filters] Filter sql includes unnecessary links to custom_field_string_table for date custom fields (thraxisp) - 0006297: [filters] sorting on custom field, bring MySQL to deadlock loop (thraxisp) @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.3 2005/09/19 22:33:28 adrianp Exp $ d3 3 a5 3 SHA1 (mantis-1.0.0rc3.tar.gz) = 610620f5bcc9b947a6afc4aaef66ed24b8e9de0c RMD160 (mantis-1.0.0rc3.tar.gz) = 18b6c2fa6cde2e751fb724d8538ef723d460f27e Size (mantis-1.0.0rc3.tar.gz) = 1499835 bytes @ 1.3 log @Update mantis to 1.0.0rc2 Many updates and bugfixes including security updates - upgrade is recommended For a full list of changes: http://www.mantisbt.org/changelog.php @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.2 2005/02/23 22:24:21 agc Exp $ d3 3 a5 3 SHA1 (mantis-1.0.0rc2.tar.gz) = b755e7e699cefdb504fd50df0c8f8cbbb54b0785 RMD160 (mantis-1.0.0rc2.tar.gz) = 9ce67054dcd199455e42be39e8443c58b3187c75 Size (mantis-1.0.0rc2.tar.gz) = 1499486 bytes @ 1.3.2.1 log @Pullup ticket 894 - requested by Adrian Portelli security update for mantis Revisions pulled up: - pkgsrc/devel/mantis/Makefile 1.10 - pkgsrc/devel/mantis/PLIST 1.6 - pkgsrc/devel/mantis/distinfo 1.4 Module Name: pkgsrc Committed By: rillig Date: Sun Oct 23 15:40:39 UTC 2005 Modified Files: pkgsrc/devel/mantis: PLIST Log Message: Sorted PLIST. --- Module Name: pkgsrc Committed By: adrianp Date: Thu Nov 3 09:50:56 UTC 2005 Modified Files: pkgsrc/devel/mantis: Makefile distinfo Log Message: Update to 1.0.0rc3 (from 1.0.0rc2) From the Changelog: - 0006273: [security] File Inclusion Vulnerability (vboctor) - 0006275: [security] SQL injection (vboctor) - 0006234: [filters] Filter sometimes returns no results (thraxisp) - 0006295: [filters] Old filters and view_state problems. (thraxisp) - 0006288: [filters] Patch against CVS HEAD for Saved filter problem with view_state (thraxisp) - 0006296: [filters] Filter sql includes unnecessary links to custom_field_string_table for date custom fields (thraxisp) - 0006297: [filters] sorting on custom field, bring MySQL to deadlock loop (thraxisp) @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.4 2005/11/03 09:50:56 adrianp Exp $ d3 3 a5 3 SHA1 (mantis-1.0.0rc3.tar.gz) = 610620f5bcc9b947a6afc4aaef66ed24b8e9de0c RMD160 (mantis-1.0.0rc3.tar.gz) = 18b6c2fa6cde2e751fb724d8538ef723d460f27e Size (mantis-1.0.0rc3.tar.gz) = 1499835 bytes @ 1.2 log @Add RMD160 digests. @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.1.1.1 2004/11/08 19:05:33 adrianp Exp $ d3 3 a5 3 SHA1 (mantis-0.19.1.tar.gz) = 4e3fb34ec5fb12766a45b54b0168ef4c41e365e8 RMD160 (mantis-0.19.1.tar.gz) = 77db3581ad5aca7bdb8c4acf120fe27cec11e315 Size (mantis-0.19.1.tar.gz) = 1206305 bytes @ 1.1 log @Initial revision @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.3 2004/10/25 17:13:51 adrianp Exp $ d4 1 @ 1.1.1.1 log @Mantis is a web-based bugtracking system. It is written in the PHP scripting language and requires the MySQL database and a webserver. Mantis has been installed on Windows, MacOS, OS/2, and a variety of Unix operating systems. Almost any web browser should be able to function as a client. It is released under the terms of the GNU General Public License (GPL). Mantis is free to use and modify. It is free to redistribute as long as you abide by the distribution terms of the GPL. @ text @@