Open
Bug 177773
Opened 23 years ago
Updated 13 years ago
target milestone creation shouldn't accept newline characters
Categories
(Bugzilla :: Administration, task)
Bugzilla
Administration
Tracking
()
NEW
People
(Reporter: timeless, Unassigned)
Details
Attachments
(1 file, 1 obsolete file)
|
1.53 KB,
patch
|
LpSolit
:
review-
LpSolit
:
review-
|
Details | Diff | Splinter Review |
mozilla somehow allowed me to create target milestones like milestone=5.11%0D%0A5.12
bugzilla shouldn't have accepted it without a fight.
|
||
Comment 1•21 years ago
|
||
Reassigning bugs that I'm not actively working on to the default component owner
in order to try to make some sanity out of my personal buglist. This doesn't
mean the bug isn't being dealt with, just that I'm not the one doing it. If you
are dealing with this bug, please assign it to yourself.
Assignee: justdave → administration
QA Contact: mattyt-bugzilla → default-qa
Attachment #206400 -
Flags: review?(LpSolit)
Attachment #206401 -
Flags: review?(LpSolit)
|
|
||
Comment 4•20 years ago
|
||
I don't think this is a blocker because it's not included in the headers of email, which doesn't make it a security issue. That said, it's still not a nice thing to run into, and I'll certainly take it on the branch.
Flags: blocking2.22? → blocking2.22-
OS: Windows 2000 → All
Hardware: PC → All
Target Milestone: --- → Bugzilla 2.20
|
||
Comment 5•20 years ago
|
||
Comment on attachment 206400 [details] [diff] [review]
Patch for tip
With your patch applied, I cannot edit milestones having control characters in them anymore. The reason is that the DB and versioncache contain "foo\xXYbar" but editmilestones.cgi now converts it to "foo bar" and so complains that this milestone doesn't exist. I can neither edit it nor delete it.
Looks like we have to convert existing milestones from checksetup.pl. But are we going to do that for all fields in the DB? I guess this will be pretty slow for large installations. And the benefit is rather small. mkanat? justdave?
Attachment #206400 -
Flags: review?(LpSolit) → review-
|
|
||
Comment 6•20 years ago
|
||
Comment on attachment 206401 [details] [diff] [review]
Patch for v2.20
r- per bug 101380 comment 49. And we won't fix it on branches, tip only.
Attachment #206401 -
Flags: review?(LpSolit) → review-
|
|
||
Updated•20 years ago
|
Assignee: administration → pdemarco
Target Milestone: Bugzilla 2.20 → Bugzilla 2.22
Attachment #206401 -
Attachment is obsolete: true
|
|
||
Updated•18 years ago
|
Target Milestone: Bugzilla 2.22 → Bugzilla 3.2
Attachment #206400 -
Flags: review?
|
|
||
Comment 7•17 years ago
|
||
Comment on attachment 206400 [details] [diff] [review]
Patch for tip
Validators must now be in create(), not in editmilestones.cgi.
Attachment #206400 -
Flags: review? → review-
|
|
||
Comment 8•16 years ago
|
||
Bugzilla 3.2 is restricted to security bugs only. Moreover, this bug is either assigned to nobody or got no traction for several months now. Rather than retargetting it at each new release, I'm clearing the target milestone and the bug will be retargetted to some sensible release when someone starts fixing this bug for real (Bugzilla 3.8 more likely).
Target Milestone: Bugzilla 3.2 → ---
|
|
||
Updated•16 years ago
|
Assignee: pdemarco → administration
You need to log in
before you can comment on or make changes to this bug.
Description
•