This is a close cousin of bug 312933 2.20 should not be effected The "find a specific bug" form has the same leak.
Created attachment 201135 [details] [diff] [review] Patch - check can_see_product
Assignee: query-and-buglist → bugreport
Status: NEW → ASSIGNED
Attachment #201135 - Flags: review?
I would say that this is a security issue in a released version (2.21.1), yes?
This was introduced by bug 306601 that landed since 2.21.1
justdave yeah, bug that created it landed after 2.20.1 went out. justdave er, 2.21.1 justdave so there's never been a release containing it justdave just fix it We'll land the fix as soon as it is ready and drop the security flag then.
Comment on attachment 201135 [details] [diff] [review] Patch - check can_see_product r=LpSolit
Attachment #201135 - Flags: review? → review+
Checking in template/en/default/search/search-specific.html.tmpl; /cvsroot/mozilla/webtools/bugzilla/template/en/default/search/search-specific.ht ml.tmpl,v <-- search-specific.html.tmpl new revision: 1.15; previous revision: 1.14 done
Status: ASSIGNED → RESOLVED
Last Resolved: 13 years ago
Resolution: --- → FIXED
You need to log in before you can comment on or make changes to this bug.