public inbox for gnats-cvs@sourceware.org
help / color / mirror / Atom feed
* gnats/contrib/gnatsweb ChangeLog gnatsweb.pl
@ 2001-06-26 12:13 yngves
0 siblings, 0 replies; 10+ messages in thread
From: yngves @ 2001-06-26 12:13 UTC (permalink / raw)
To: gnats-cvs
CVSROOT: /cvs/gnats
Module name: gnats
Changes by: yngves@sources.redhat.com 2001-06-26 12:13:31
Modified files:
contrib/gnatsweb: ChangeLog gnatsweb.pl
Log message:
(help_page): Fix a serious security hole where an attacker would be
able to read any file on the system or run any command to which the
web server process user had access to by submitting a rogue help_file
parameter in the URL. help_file is now hardcoded to 'gnatsweb.html'.
Patches:
http://sources.redhat.com/cgi-bin/cvsweb.cgi/gnats/contrib/gnatsweb/ChangeLog.diff?cvsroot=gnats&r1=2.23&r2=2.24
http://sources.redhat.com/cgi-bin/cvsweb.cgi/gnats/contrib/gnatsweb/gnatsweb.pl.diff?cvsroot=gnats&r1=2.33&r2=2.34
^ permalink raw reply [flat|nested] 10+ messages in thread
* gnats/contrib/gnatsweb ChangeLog gnatsweb.pl
@ 2001-10-20 2:27 yngves
0 siblings, 0 replies; 10+ messages in thread
From: yngves @ 2001-10-20 2:27 UTC (permalink / raw)
To: gnats-cvs
CVSROOT: /cvs/gnats
Module name: gnats
Changes by: yngves@sources.redhat.com 2001-10-20 02:27:23
Modified files:
contrib/gnatsweb: ChangeLog gnatsweb.pl
Log message:
* gnatsweb.pl (get_viewpr_url): Properly escape the 'view
audit-trail' command.
Patches:
http://sources.redhat.com/cgi-bin/cvsweb.cgi/gnats/contrib/gnatsweb/ChangeLog.diff?cvsroot=gnats&r1=2.27&r2=2.28
http://sources.redhat.com/cgi-bin/cvsweb.cgi/gnats/contrib/gnatsweb/gnatsweb.pl.diff?cvsroot=gnats&r1=2.38&r2=2.39
^ permalink raw reply [flat|nested] 10+ messages in thread
* gnats/contrib/gnatsweb ChangeLog gnatsweb.pl
@ 2001-04-04 17:37 yngves
0 siblings, 0 replies; 10+ messages in thread
From: yngves @ 2001-04-04 17:37 UTC (permalink / raw)
To: gnats-cvs
CVSROOT: /cvs/gnats
Module name: gnats
Changes by: yngves@sources.redhat.com 2001-04-04 17:37:04
Modified files:
contrib/gnatsweb: ChangeLog gnatsweb.pl
Log message:
* gnatsweb.pl (query_page): Shift 'number' out of the array of
selectable column names (@fieldnames) to prevent user from
selecting it. That would cause the 'number' column to be
repeated twice, since NUMBER_FIELD is explicitly added to the
search format in submitquery. The best solution would be to
remove the explicit addition, but that messes up column sorting.
However, since the only drawback of the current fix is that we
force the inclusion of PR numbers in the query results listing,
this doesn't seem to matter much.
Patches:
http://sources.redhat.com/cgi-bin/cvsweb.cgi/gnats/contrib/gnatsweb/ChangeLog.diff?cvsroot=gnats&r1=2.22&r2=2.23
http://sources.redhat.com/cgi-bin/cvsweb.cgi/gnats/contrib/gnatsweb/gnatsweb.pl.diff?cvsroot=gnats&r1=2.32&r2=2.33
^ permalink raw reply [flat|nested] 10+ messages in thread
* gnats/contrib/gnatsweb ChangeLog gnatsweb.pl
@ 2001-04-04 15:16 yngves
0 siblings, 0 replies; 10+ messages in thread
From: yngves @ 2001-04-04 15:16 UTC (permalink / raw)
To: gnats-cvs
CVSROOT: /cvs/gnats
Module name: gnats
Changes by: yngves@sources.redhat.com 2001-04-04 15:16:29
Modified files:
contrib/gnatsweb: ChangeLog gnatsweb.pl
Log message:
* gnatsweb.pl (display_query_results): Use the provided 'nonempty'
routine to pad empty cells with 's instead of the if used in
the last checkin. This only takes care of the cases where the empty
cells are not at the end of a row.
* gnatsweb.pl (display_query_results): When there are one or more
empty cells at the end of a query result row, the remaining cells
are padded with 's.
Patches:
http://sources.redhat.com/cgi-bin/cvsweb.cgi/gnats/contrib/gnatsweb/ChangeLog.diff?cvsroot=gnats&r1=2.20&r2=2.21
http://sources.redhat.com/cgi-bin/cvsweb.cgi/gnats/contrib/gnatsweb/gnatsweb.pl.diff?cvsroot=gnats&r1=2.30&r2=2.31
^ permalink raw reply [flat|nested] 10+ messages in thread
* gnats/contrib/gnatsweb ChangeLog gnatsweb.pl
@ 2001-03-28 15:35 yngves
0 siblings, 0 replies; 10+ messages in thread
From: yngves @ 2001-03-28 15:35 UTC (permalink / raw)
To: gnats-cvs
CVSROOT: /cvs/gnats
Module name: gnats
Changes by: yngves@sources.redhat.com 2001-03-28 15:35:39
Modified files:
contrib/gnatsweb: ChangeLog gnatsweb.pl
Log message:
* gnatsweb.pl (display_query_results): Add an if clause in order to
print an if a field is empty. This is needed because most
browsers won't render the border of an empty field.
* gnatsweb.pl: Make output more amenable to CSS stylesheet formatting.
Add paragraph tags and enclose stuff that doesn't belong inside
paragraphs in DIV tags. Use heading tags instead of font size tags for
headings. Also correct some rather bad HTML problems with missing
endtags for paragraph and table tags all over the place. These caused
Netscape Navigator to refuse to use stylesheet styling in query results
table cells. This should also improve browser rendering performance.
Improved HTML source code formatting by adding lots of \n's
* gnatsweb.pl (main_page): Remove Matt's and Kenneth's e-mail
addresses. They do not seem to be valid anymore.
* gnatsweb.pl (main_page): Collect the two query buttons on one
line in order to conserve vertical space.
Patches:
http://sources.redhat.com/cgi-bin/cvsweb.cgi/gnats/contrib/gnatsweb/ChangeLog.diff?cvsroot=gnats&r1=2.19&r2=2.20
http://sources.redhat.com/cgi-bin/cvsweb.cgi/gnats/contrib/gnatsweb/gnatsweb.pl.diff?cvsroot=gnats&r1=2.29&r2=2.30
^ permalink raw reply [flat|nested] 10+ messages in thread
* gnats/contrib/gnatsweb ChangeLog gnatsweb.pl
@ 2001-03-24 1:14 gerald
0 siblings, 0 replies; 10+ messages in thread
From: gerald @ 2001-03-24 1:14 UTC (permalink / raw)
To: gnats-cvs
CVSROOT: /cvs/gnats
Module name: gnats
Changes by: gerald@sources.redhat.com 2001-03-24 01:14:52
Modified files:
contrib/gnatsweb: ChangeLog gnatsweb.pl
Log message:
* gnatsweb.pl (login_page_javascript): Use correct <SCRIPT LANGUAGE>.
Fix the Javascript code and improve the warning messages if cookies
are not enabled.
Patches:
http://sources.redhat.com/cgi-bin/cvsweb.cgi/gnats/contrib/gnatsweb/ChangeLog.diff?cvsroot=gnats&r1=2.18&r2=2.19
http://sources.redhat.com/cgi-bin/cvsweb.cgi/gnats/contrib/gnatsweb/gnatsweb.pl.diff?cvsroot=gnats&r1=2.28&r2=2.29
^ permalink raw reply [flat|nested] 10+ messages in thread
* gnats/contrib/gnatsweb ChangeLog gnatsweb.pl
@ 2001-03-22 12:28 yngves
0 siblings, 0 replies; 10+ messages in thread
From: yngves @ 2001-03-22 12:28 UTC (permalink / raw)
To: gnats-cvs
CVSROOT: /cvs/gnats
Module name: gnats
Changes by: yngves@sources.redhat.com 2001-03-22 12:28:37
Modified files:
contrib/gnatsweb: ChangeLog gnatsweb.pl
Log message:
gnatsweb.pl (display_query_results): Apply escapeHTML to
$fieldcontents before printing.
Patches:
http://sources.redhat.com/cgi-bin/cvsweb.cgi/gnats/contrib/gnatsweb/ChangeLog.diff?cvsroot=gnats&r1=2.17&r2=2.18
http://sources.redhat.com/cgi-bin/cvsweb.cgi/gnats/contrib/gnatsweb/gnatsweb.pl.diff?cvsroot=gnats&r1=2.27&r2=2.28
^ permalink raw reply [flat|nested] 10+ messages in thread
* gnats/contrib/gnatsweb ChangeLog gnatsweb.pl
@ 2001-03-21 1:09 gerald
0 siblings, 0 replies; 10+ messages in thread
From: gerald @ 2001-03-21 1:09 UTC (permalink / raw)
To: gnats-cvs
CVSROOT: /cvs/gnats
Module name: gnats
Changes by: gerald@sources.redhat.com 2001-03-21 01:09:27
Modified files:
contrib/gnatsweb: ChangeLog gnatsweb.pl
Log message:
* gnatsweb.pl ($VERSION): Bump to 3.95.
Patches:
http://sources.redhat.com/cgi-bin/cvsweb.cgi/gnats/contrib/gnatsweb/ChangeLog.diff?cvsroot=gnats&r1=2.16&r2=2.17
http://sources.redhat.com/cgi-bin/cvsweb.cgi/gnats/contrib/gnatsweb/gnatsweb.pl.diff?cvsroot=gnats&r1=2.26&r2=2.27
^ permalink raw reply [flat|nested] 10+ messages in thread
* gnats/contrib/gnatsweb ChangeLog gnatsweb.pl
@ 2001-03-21 1:02 gerald
0 siblings, 0 replies; 10+ messages in thread
From: gerald @ 2001-03-21 1:02 UTC (permalink / raw)
To: gnats-cvs
CVSROOT: /cvs/gnats
Module name: gnats
Changes by: gerald@sources.redhat.com 2001-03-21 01:02:18
Modified files:
contrib/gnatsweb: ChangeLog gnatsweb.pl
Log message:
* gnatsweb.pl: New configuration variable $site_stylesheet.
(page_start_html): Use it.
Patches:
http://sources.redhat.com/cgi-bin/cvsweb.cgi/gnats/contrib/gnatsweb/ChangeLog.diff?cvsroot=gnats&r1=2.15&r2=2.16
http://sources.redhat.com/cgi-bin/cvsweb.cgi/gnats/contrib/gnatsweb/gnatsweb.pl.diff?cvsroot=gnats&r1=2.25&r2=2.26
^ permalink raw reply [flat|nested] 10+ messages in thread
* gnats/contrib/gnatsweb ChangeLog gnatsweb.pl
@ 2001-03-15 14:37 gerald
0 siblings, 0 replies; 10+ messages in thread
From: gerald @ 2001-03-15 14:37 UTC (permalink / raw)
To: gnats-cvs
CVSROOT: /cvs/gnats
Module name: gnats
Changes by: gerald@sources.redhat.com 2001-03-15 14:37:09
Modified files:
contrib/gnatsweb: ChangeLog gnatsweb.pl
Log message:
* gnatsweb.pl (decode_attachment): Editing bugs with attached files
used to bomb out trying to chomp a constant string.
Patches:
http://sources.redhat.com/cgi-bin/cvsweb.cgi/gnats/contrib/gnatsweb/ChangeLog.diff?cvsroot=gnats&r1=2.14&r2=2.15
http://sources.redhat.com/cgi-bin/cvsweb.cgi/gnats/contrib/gnatsweb/gnatsweb.pl.diff?cvsroot=gnats&r1=2.24&r2=2.25
^ permalink raw reply [flat|nested] 10+ messages in thread
end of thread, other threads:[~2001-10-20 2:27 UTC | newest]
Thread overview: 10+ messages (download: mbox.gz / follow: Atom feed)
-- links below jump to the message on this page --
2001-06-26 12:13 gnats/contrib/gnatsweb ChangeLog gnatsweb.pl yngves
-- strict thread matches above, loose matches on Subject: below --
2001-10-20 2:27 yngves
2001-04-04 17:37 yngves
2001-04-04 15:16 yngves
2001-03-28 15:35 yngves
2001-03-24 1:14 gerald
2001-03-22 12:28 yngves
2001-03-21 1:09 gerald
2001-03-21 1:02 gerald
2001-03-15 14:37 gerald
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for read-only IMAP folder(s) and NNTP newsgroup(s).