kpriv/pkgsrc-wip
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity
pkgsrc-wip/bugzilla/PLIST
David Brownlee 48711e5421 Update to 2.16.6 
Many changes, most notable security fixes:

Class:       Information Leak
Versions:    All versions prior to 2.16.6 and 2.18rc1
Description: If Bugzilla is configured to hide entire products from some
             users, both duplicates.cgi and the form for mass-editing a
             list of bugs in buglist.cgi can disclose the names of those
             hidden products to such users.
References:  http://bugzilla.mozilla.org/show_bug.cgi?id=234825
             http://bugzilla.mozilla.org/show_bug.cgi?id=234855

Class:       Cross-site scripting vulnerability
Versions:    All versions prior to 2.16.6 and 2.18rc1
Description: Several administration CGIs echo invalid data back to the
             user without escaping it.
Reference:   http://bugzilla.mozilla.org/show_bug.cgi?id=235265

Class:       Remote SQL injection vulnerability
Versions:    All versions prior to 2.16.6 and 2.18rc1
Description: A user with privileges to grant membership to any group
             (i.e. usually an administrator) can trick editusers.cgi
             into executing arbitrary SQL.
Reference:   http://bugzilla.mozilla.org/show_bug.cgi?id=244272

	Also treat bugzilla.conf and localconfig as CONF_FILES
2004-07-14 10:49:56 +00:00

182 lines
8.3 KiB
Text
Raw Blame History

@comment $NetBSD: PLIST,v 1.2 2004/07/14 10:49:56 absd Exp $
share/bugzilla/1x1.gif
share/bugzilla/Attachment.pm
share/bugzilla/Bug.pm
share/bugzilla/CGI.pl
share/bugzilla/RelationSet.pm
share/bugzilla/Token.pm
share/bugzilla/ant.jpg
share/bugzilla/attachment.cgi
share/bugzilla/bug_form.pl
share/bugzilla/bug_status.html
share/bugzilla/buglist.cgi
share/bugzilla/bugwritinghelp.html
share/bugzilla/bugzilla.dtd
share/bugzilla/changepassword.cgi
share/bugzilla/checksetup.pl
share/bugzilla/colchange.cgi
share/bugzilla/collectstats.pl
share/bugzilla/confirmhelp.html
share/bugzilla/createaccount.cgi
share/bugzilla/css/buglist.css
share/bugzilla/css/panel.css
share/bugzilla/defparams.pl
share/bugzilla/describecomponents.cgi
share/bugzilla/describekeywords.cgi
share/bugzilla/doeditparams.cgi
share/bugzilla/duplicates.cgi
share/bugzilla/editattachstatuses.cgi
share/bugzilla/editcomponents.cgi
share/bugzilla/editgroups.cgi
share/bugzilla/editkeywords.cgi
share/bugzilla/editmilestones.cgi
share/bugzilla/editparams.cgi
share/bugzilla/editproducts.cgi
share/bugzilla/editusers.cgi
share/bugzilla/editversions.cgi
share/bugzilla/enter_bug.cgi
share/bugzilla/globals.pl
share/bugzilla/help.html
share/bugzilla/helpemailquery.html
share/bugzilla/how_to_mail.html
share/bugzilla/importxml.pl
share/bugzilla/index.cgi
share/bugzilla/localconfig.js
share/bugzilla/long_list.cgi
share/bugzilla/move.pl
share/bugzilla/notargetmilestone.html
share/bugzilla/post_bug.cgi
share/bugzilla/process_bug.cgi
share/bugzilla/processmail
share/bugzilla/query.cgi
share/bugzilla/queryhelp.cgi
share/bugzilla/quicksearch.html
share/bugzilla/quicksearch.js
share/bugzilla/quicksearchhack.html
share/bugzilla/quips.cgi
share/bugzilla/relogin.cgi
share/bugzilla/reports.cgi
share/bugzilla/robots.txt
share/bugzilla/runtests.pl
share/bugzilla/sanitycheck.cgi
share/bugzilla/show_activity.cgi
share/bugzilla/show_bug.cgi
share/bugzilla/showattachment.cgi
share/bugzilla/showdependencygraph.cgi
share/bugzilla/showdependencytree.cgi
share/bugzilla/sidebar.cgi
share/bugzilla/syncshadowdb
share/bugzilla/template/en/default/account/cancel-token.txt.tmpl
share/bugzilla/template/en/default/account/create.html.tmpl
share/bugzilla/template/en/default/account/created.html.tmpl
share/bugzilla/template/en/default/account/email/change-new.txt.tmpl
share/bugzilla/template/en/default/account/email/change-old.txt.tmpl
share/bugzilla/template/en/default/account/email/confirm.html.tmpl
share/bugzilla/template/en/default/account/exists.html.tmpl
share/bugzilla/template/en/default/account/password/forgotten-password.txt.tmpl
share/bugzilla/template/en/default/account/password/set-forgotten-password.html.tmpl
share/bugzilla/template/en/default/account/prefs/account.html.tmpl
share/bugzilla/template/en/default/account/prefs/email.html.tmpl
share/bugzilla/template/en/default/account/prefs/footer.html.tmpl
share/bugzilla/template/en/default/account/prefs/permissions.html.tmpl
share/bugzilla/template/en/default/account/prefs/prefs.html.tmpl
share/bugzilla/template/en/default/admin/attachstatus/create.html.tmpl
share/bugzilla/template/en/default/admin/attachstatus/delete.html.tmpl
share/bugzilla/template/en/default/admin/attachstatus/edit.html.tmpl
share/bugzilla/template/en/default/admin/attachstatus/list.html.tmpl
share/bugzilla/template/en/default/attachment/content-types.html.tmpl
share/bugzilla/template/en/default/attachment/create.html.tmpl
share/bugzilla/template/en/default/attachment/created.html.tmpl
share/bugzilla/template/en/default/attachment/edit.html.tmpl
share/bugzilla/template/en/default/attachment/list.html.tmpl
share/bugzilla/template/en/default/attachment/show-multiple.html.tmpl
share/bugzilla/template/en/default/attachment/updated.html.tmpl
share/bugzilla/template/en/default/bug/activity/show.html.tmpl
share/bugzilla/template/en/default/bug/activity/table.html.tmpl
share/bugzilla/template/en/default/bug/choose-xml.html.tmpl
share/bugzilla/template/en/default/bug/choose.html.tmpl
share/bugzilla/template/en/default/bug/comments.html.tmpl
share/bugzilla/template/en/default/bug/create/comment.txt.tmpl
share/bugzilla/template/en/default/bug/create/create.html.tmpl
share/bugzilla/template/en/default/bug/create/created.html.tmpl
share/bugzilla/template/en/default/bug/create/make-template.html.tmpl
share/bugzilla/template/en/default/bug/create/user-message.html.tmpl
share/bugzilla/template/en/default/bug/dependency-graph.html.tmpl
share/bugzilla/template/en/default/bug/dependency-tree.html.tmpl
share/bugzilla/template/en/default/bug/edit.html.tmpl
share/bugzilla/template/en/default/bug/navigate.html.tmpl
share/bugzilla/template/en/default/bug/process/confirm-duplicate.html.tmpl
share/bugzilla/template/en/default/bug/process/midair.html.tmpl
share/bugzilla/template/en/default/bug/process/next.html.tmpl
share/bugzilla/template/en/default/bug/process/results.html.tmpl
share/bugzilla/template/en/default/bug/process/verify-new-product.html.tmpl
share/bugzilla/template/en/default/bug/show-multiple.html.tmpl
share/bugzilla/template/en/default/bug/votes/delete-all.html.tmpl
share/bugzilla/template/en/default/bug/votes/list-for-bug.html.tmpl
share/bugzilla/template/en/default/bug/votes/list-for-user.html.tmpl
share/bugzilla/template/en/default/filterexceptions.pl
share/bugzilla/template/en/default/global/banner.html.tmpl
share/bugzilla/template/en/default/global/choose-product.html.tmpl
share/bugzilla/template/en/default/global/code-error.html.tmpl
share/bugzilla/template/en/default/global/footer.html.tmpl
share/bugzilla/template/en/default/global/header.html.tmpl
share/bugzilla/template/en/default/global/hidden-fields.html.tmpl
share/bugzilla/template/en/default/global/message.html.tmpl
share/bugzilla/template/en/default/global/select-menu.html.tmpl
share/bugzilla/template/en/default/global/useful-links.html.tmpl
share/bugzilla/template/en/default/global/user-error.html.tmpl
share/bugzilla/template/en/default/index.html.tmpl
share/bugzilla/template/en/default/list/change-columns.html.tmpl
share/bugzilla/template/en/default/list/edit-multiple.html.tmpl
share/bugzilla/template/en/default/list/list-rdf.rdf.tmpl
share/bugzilla/template/en/default/list/list-simple.html.tmpl
share/bugzilla/template/en/default/list/list.html.tmpl
share/bugzilla/template/en/default/list/quips.html.tmpl
share/bugzilla/template/en/default/list/server-push.html.tmpl
share/bugzilla/template/en/default/list/table.html.tmpl
share/bugzilla/template/en/default/reports/components.html.tmpl
share/bugzilla/template/en/default/reports/duplicates-simple.html.tmpl
share/bugzilla/template/en/default/reports/duplicates-table.html.tmpl
share/bugzilla/template/en/default/reports/duplicates.html.tmpl
share/bugzilla/template/en/default/reports/keywords.html.tmpl
share/bugzilla/template/en/default/search/boolean-charts.html.tmpl
share/bugzilla/template/en/default/search/form.html.tmpl
share/bugzilla/template/en/default/search/knob.html.tmpl
share/bugzilla/template/en/default/search/search.html.tmpl
share/bugzilla/template/en/default/sidebar.xul.tmpl
share/bugzilla/token.cgi
share/bugzilla/userprefs.cgi
share/bugzilla/votehelp.html
share/bugzilla/votes.cgi
share/bugzilla/whineatnews.pl
share/bugzilla/xml.cgi
share/doc/bugzilla/Bugzilla-Guide.txt
share/doc/bugzilla/README
share/doc/bugzilla/UPGRADING
share/doc/bugzilla/UPGRADING-pre-2.8
share/doc/bugzilla/rel_notes.txt
share/examples/bugzilla/bugzilla.conf
share/examples/bugzilla/localconfig
@dirrm share/examples/bugzilla
@dirrm share/doc/bugzilla
@dirrm share/bugzilla/css
@dirrm share/bugzilla/template/en/default/account/email
@dirrm share/bugzilla/template/en/default/account/password
@dirrm share/bugzilla/template/en/default/account/prefs
@dirrm share/bugzilla/template/en/default/account
@dirrm share/bugzilla/template/en/default/admin/attachstatus
@dirrm share/bugzilla/template/en/default/admin
@dirrm share/bugzilla/template/en/default/attachment
@dirrm share/bugzilla/template/en/default/bug/activity
@dirrm share/bugzilla/template/en/default/bug/create
@dirrm share/bugzilla/template/en/default/bug/process
@dirrm share/bugzilla/template/en/default/bug/votes
@dirrm share/bugzilla/template/en/default/bug
@dirrm share/bugzilla/template/en/default/global
@dirrm share/bugzilla/template/en/default/list
@dirrm share/bugzilla/template/en/default/reports
@dirrm share/bugzilla/template/en/default/search
@dirrm share/bugzilla/template/en/default
@dirrm share/bugzilla/template/en
@dirrm share/bugzilla/template
@dirrm share/bugzilla
Reference in a new issue View git blame Copy permalink