[ANN] Release of Bugzilla 5.0rc1, 4.4.7, 4.2.12, and 4.0.16

  Today we are announcing the first Release Candidate for Bugzilla 5.0,
in addition to one new stable release and two security-only updates for
the 4.2.x and 4.0.x series.

  Bugzilla 5.0rc1 is our first Release Candidate for Bugzilla 5.0.
This release has received QA testing, and should be considerably
more stable than the development releases before it. It is still not
considered fully stable, and so you should understand that if you use
it, you use it at your own risk.

  If feedback from this release candidate indicates that it is mostly
stable, then Bugzilla 5.0 will be released in a few weeks. If feedback
indicates that more extensive fixes are needed, there may be another
release candidate after this one.

  Bugzilla 4.4.7 is our latest stable release. It contains various
useful bug fixes and security improvements for the 4.4 branch.

  Bugzilla 4.2.12 and 4.0.16 are security updates for the 4.2
branch and the 4.0 branch, respectively.

Download
--------
Bugzilla is available at:

  https://www.bugzilla.org/download/


Security Advisory
-----------------
There is a security advisory describing the security issues
fixed in these releases, at:

  https://www.bugzilla.org/security/4.0.15/


Release Notes & Changes
-----------------------
Before installing or upgrading, you should read the Release Notes for
this version of Bugzilla:

  5.0rc1: https://www.bugzilla.org/releases/5.0/release-notes.html
  4.4.7:  https://www.bugzilla.org/releases/4.4.7/release-notes.html
  4.2.12: https://www.bugzilla.org/releases/4.2.12/release-notes.html
  4.0.16: https://www.bugzilla.org/releases/4.0.16/release-notes.html

It is VERY IMPORTANT to read the Release Notes if you are
upgrading from one major version to another (like 4.2.x to 4.4.x).

To see a list of all changes between your version of Bugzilla and
the current version of Bugzilla, you can use the chart at:

  https://www.bugzilla.org/status/changes.html


The Bugzilla Update
-------------------
You can see the latest updates from the Bugzilla Project and
the status of Bugzilla development on The Bugzilla Update:

  https://bugzillaupdate.wordpress.com/

Also, you can follow the Bugzilla Project on Twitter for frequent
updates on new features being developed in Bugzilla, our current
release plans, and much more:

  https://twitter.com/#!/bugzilla


Report Bugs
-----------
If you find a bug in Bugzilla, please report it! Instructions are
at this URL:

  https://www.bugzilla.org/developers/reporting_bugs.html


Support
-------
You can ask questions for free on the mailing lists (or in IRC)
about Bugzilla, or you can hire a paid consultant to help you out:

  Free Support: https://www.bugzilla.org/support/
  Paid Support: https://www.bugzilla.org/support/consulting.html


About Bugzilla
--------------
  Bugzilla is a "Defect Tracking System" or "Bug-Tracking System."
Defect Tracking Systems allow individuals or groups of developers
to keep track of outstanding bugs in their product effectively.
Most commercial defect-tracking software vendors charge enormous
licensing fees. Despite being "free", Bugzilla has many features
its expensive counterparts lack. Consequently, Bugzilla has quickly
become a favorite of thousands of organizations across the globe, and
is widely regarded as one of the top defect-tracking systems available.

  See https://www.bugzilla.org/about/ for more details.

--
David Lawrence
Release Manager, Bugzilla Project
0
David
1/21/2015 10:49:56 PM
mozilla.support.bugzilla 10182 articles. 0 followers. Post Follow

0 Replies
1653 Views

Similar Articles

[PageSpeed] 31
Get it on Google Play
Get it on Apple App Store

Reply:

Similar Artilces:

Security advisory for Bugzilla 5.0rc1, 4.4.7, 4.2.12, and 4.0.16
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Summary ======= Bugzilla is a Web-based bug-tracking system used by a large number of software projects. The following security issues have been discovered in Bugzilla: * A user with editcomponents permissions could possibly inject system commands in product names and possibly other attributes. * Methods from imported modules could possibly be executed using the WebService API. All affected installations are encouraged to upgrade as soon as possible. Vulnerability Details ===================== Class: Command I...

Security advisory for Bugzilla 5.0rc1, 4.4.7, 4.2.12, and 4.0.16
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Summary ======= Bugzilla is a Web-based bug-tracking system used by a large number of software projects. The following security issues have been discovered in Bugzilla: * A user with editcomponents permissions could possibly inject system commands in product names and possibly other attributes. * Methods from imported modules could possibly be executed using the WebService API. All affected installations are encouraged to upgrade as soon as possible. Vulnerability Details ===================== Class: Command I...

[ANN] Release of Bugzilla 4.5.4, 4.4.4, 4.2.9, and 4.0.13
Today we are releasing 4.4.4, 4.2.9, 4.0.13, and the unstable development snapshot 4.5.4. All releases fix a regression discovered since the last release. Bugzilla 4.4.4 is our latest stable release. Bugzilla 4.4.4, 4.2.9 and 4.0.13 are bug fix updates for the 4.4, 4.2, and the 4.0 branches, respectively. Note that 4.5.4 is an unstable development release and should not be used in production environments. We are not yet feature-frozen at this time so the features you see in 4.5.4 might not accurately represent the behavior that 5.0 will have. Note that when Bugzilla...

[ANN] Release of Bugzilla 4.5.3, 4.4.3, 4.2.8, and 4.0.12
Today we are releasing 4.4.3, 4.2.8, 4.0.12, and the unstable development snapshot 4.5.3. All of today's releases contain security fixes. We recommend all Bugzilla administrators to read the Security Advisory linked below. Bugzilla 4.4.3 is our latest stable release. It contains various useful bug fixes, performance improvements and security fixes for the 4.4 branch. Bugzilla 4.2.8 and 4.0.12 are security updates for the 4.2 branch and the 4.0 branches, respectively. 4.2.8 also contains several bug fixes. Note that 4.5.3 is an unstable development release a...

[ANN] Release of Bugzilla 4.5.1, 4.4.1, 4.2.7, and 4.0.11
Today we are releasing 4.4.1, 4.2.7, 4.0.11, and the unstable development snapshot 4.5.1. Initially, we released new tarballs and diffs for these releases to the download site but found a new bug shortly after. New tarballs and diffs have been uploaded to the site which we recommend everyone update to if you downloaded the first version. To make sure you have the fixed version, md5sum values are provided further down in the announcement. All of today's releases contain security fixes. We recommend all Bugzilla administrators to read the Security Advisory linked below. ...

[ANN] Release of Bugzilla 4.5.5, 4.4.5, 4.2.10, and 4.0.14
Today we are releasing 4.4.5, 4.2.10, 4.0.14, and the unstable development snapshot 4.5.5. All releases fix a security issue found since the last release. Bugzilla 4.4.5 is our latest stable release. Bugzilla 4.4.5, 4.2.10 and 4.0.14 are security updates for the 4.4, 4.2, and the 4.0 branches, respectively. Note that 4.5.5 is an unstable development release and should not be used in production environments. We are not yet feature-frozen at this time so the features you see in 4.5.5 might not accurately represent the behavior that 5.0 will have. Note that when Bugzilla 5...

[ANN] Release of Bugzilla 5.0.2, 4.4.11, and 4.2.16
Today we are releasing 5.0.2, 4.4.11, and 4.2.16. All releases fix two security issues found since the last releases. Bugzilla 5.0.2 is our latest stable release. It contains several important bug fixes for the 5.0 branch. Bugzilla 4.4.11 and 4.2.16 are security fix updates for the 4.4 branch and the 4.2 branch, respectively. Download -------- Bugzilla is available at: https://www.bugzilla.org/download/ Release Notes & Changes ----------------------- Before installing or upgrading, you should read the Release Notes for this version of Bugzilla: 5.0.2...

[ANN] Release of Bugzilla 4.5.6, 4.4.6, 4.2.11, and 4.0.15
Today we are releasing 4.4.6, 4.2.11, 4.0.15, and the unstable development snapshot 4.5.6. All releases fix several security issues found since the last release. Bugzilla 4.4.6 is our latest stable release. Bugzilla 4.4.6, 4.2.11 and 4.0.15 are security updates for the 4.4, 4.2, and the 4.0 branches, respectively. Note that 4.5.6 is an unstable development release and should not be used in production environments. We are not yet feature-frozen at this time so the features you see in 4.5.5 might not accurately represent the behavior that 5.0 will have. Note that when Bug...

[ANN] Release of Bugzilla 5.0rc2, 4.4.8, 4.2.13, and 4.0.17
Today we are announcing the second Release Candidate for Bugzilla 5.0, in addition to one new stable release and two bug fix updates for the 4.2.x and 4.0.x series. Bugzilla 5.0rc2 is our second Release Candidate for Bugzilla 5.0. This release has received QA testing, and should be considerably more stable than the development releases before it. It is still not considered fully stable, and so you should understand that if you use it, you use it at your own risk. If feedback from this release candidate indicates that it is mostly stable, then Bugzilla 5.0 will be released in...

[ANN] Release of Bugzilla 5.0rc3, 4.4.9, 4.2.14, and 4.0.18
Today we are announcing the third Release Candidate for Bugzilla 5.0, in addition to one new stable release and two bug fix updates for the 4.2.x and 4.0.x series. Bugzilla 5.0rc3 is our third Release Candidate for Bugzilla 5.0. This release has received QA testing, and should be considerably more stable than the development releases before it. It is still not considered fully stable, and so you should understand that if you use it, you use it at your own risk. If feedback from this release candidate indicates that it is mostly stable, then Bugzilla 5.0 will be released in a...

[ANN] Release of Bugzilla 4.4rc1, 4.2.4, 4.0.9, and 3.6.12
Today we are releasing 4.2.4, 4.0.9, 3.6.12, and the release candidate 4.4rc1. All of today's releases contain security fixes. We recommend all Bugzilla administrators to read the Security Advisory linked below. Bugzilla 4.2.4 is our latest stable release. It contains various useful bug fixes and security fixes for the 4.2 branch. Bugzilla 4.0.9 and 3.6.12 are security updates for the 4.0 branch and the 3.6 branch, respectively. 4.0.9 contains several useful bug fixes and 3.6.12 contains one as well. Bugzilla 4.4rc1 is our first Release Candidate for Bugzilla 4.4...

[ANN] Release of Bugzilla 4.3.2, 4.2.2, 4.0.7, and 3.6.10
Today we are releasing 4.2.2, 4.0.7, 3.6.10, and the unstable development snapshot 4.3.2. All of today's releases contain security fixes. We recommend all Bugzilla administrators to read the Security Advisory linked below. Bugzilla 4.2.2 is our latest stable release. It contains various useful bug fixes and security fixes for the 4.2 branch. Bugzilla 4.0.7 and 3.6.10 are security updates for the 4.0 branch and the 3.6 branch, respectively. 4.0.7 also contains several bug fixes. Note that 4.3.2 is an unstable development release and should not be used in producti...

Security advisory for Bugzilla 4.5.3, 4.4.3, 4.2.8, and 4.0.12
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Summary ======= Bugzilla is a Web-based bug-tracking system used by a large number of software projects. The following security issues have been discovered in Bugzilla: * The login form had no CSRF protection, meaning that an attacker could force the victim to log in using the attacker's credentials. * Dangerous control characters can be inserted into Bugzilla, notably into bug comments, which can then be used to execute local commands. All affected installations are encouraged to upgrade as soon as possible. Vuln...

[ANN] Release of Bugzilla 4.5.2 and 4.4.2
Today we are releasing 4.4.2 and the unstable development snapshot 4.5.2. Bugzilla 4.4.2 is our latest stable release. It contains various useful bug fixes for the 4.4 branch. Note that 4.5.2 is an unstable development release and should not be used in production environments. We are not yet feature-frozen at this time so the features you see in 4.5.2 might not accurately represent the behavior that 5.0 will have. Note that when Bugzilla 5.0 is released, the Bugzilla 4.0.x series will reach end of life. If you are using that series, we encourage you to upgrade to 4.4.2 ...

Security advisory for Bugzilla 4.5.5, 4.4.5, 4.2.10, and 4.0.14
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Summary ======= Bugzilla is a Web-based bug-tracking system used by a large number of software projects. The following security issue has been discovered in Bugzilla: * An attacker can get access to some bug information using the victim's credentials using a specially crafted HTML page. All affected installations are encouraged to upgrade as soon as possible. Vulnerability Details ===================== Class: Cross Site Request Forgery Versions: 3.7.1 to 4.0.13, 4.1.1 to 4.2.9, 4.3.1 to 4.4.4, 4.5.1 to 4.5...

[ANN] Release of Bugzilla 5.0.1, 4.4.10, and 4.2.15
Today we are releasing 5.0.1, 4.4.10, and 4.2.15. All releases fix a security issue found since the last release. Bugzilla 5.0.1 is our latest stable release. It contains several important bug fixes for the 5.0 branch. Bugzilla 4.4.10 and 4.2.15 are bug fix updates for the 4.4 branch and the 4.2 branch, respectively. Download -------- Bugzilla is available at: https://www.bugzilla.org/download/ Security Advisory ----------------- There is a security advisory describing the security issue fixed in these releases, at: https://www.bugzilla.org/security/4.2....

bugzilla upgrade from bugzilla 4.0.2 to 4.4.5
Hi When i ugrade bugzilla from 4.0.2 to 4.4.5 i am getin the below error Not a reference at Bugzilla/DB/Schema.pm line 2786. How to resolve this. i have few custom fields in my bugzilla 4.0.2 New parameter: default_search_limit The following parameters are no longer used in Bugzilla, and so have been moved from your parameters file into ./data/old-params.txt: usebugaliases, allow_attach_url, specific_search_allow_empty_words Removing existing compiled templates... Precompiling templates...done. Fixing file permissions... Populating new field_visibility table... Deleting...

[ANN] Release of Bugzilla 4.4rc2, 4.2.5, 4.0.10, and 3.613
Today we are releasing 4.2.5, 4.0.10, 3.6.13, and the release candidate 4.4rc2. All of today's releases contain one or more security fixes. We recommend all Bugzilla administrators to read the Security Advisory linked below. Bugzilla 4.2.5 is our latest stable release. It contains various useful bug fixes and a security fix for the 4.2 branch. Bugzilla 4.0.10 and 3.6.13 are security updates for the 4.0 branch and the 3.6 branch, respectively. 4.0.10 contains several useful bug fixes and 3.6.13 contains only security fixes. Bugzilla 4.4rc2 is our second Release Ca...

Security advisory for Bugzilla 4.5.6, 4.4.6, 4.2.11, and 4.0.15 #2
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Summary ======= Bugzilla is a Web-based bug-tracking system used by a large number of software projects. The following security issues have been discovered in Bugzilla: * The 'realname' parameter is not correctly filtered on user account creation, which could lead to user data override. * Several places were found in the Bugzilla code where cross-site scripting attacks could be used to access sensitive information. * Private comments can be shown to flagmail recipients who aren't in the insider group * Specially...

[ANN] Release of Bugzilla 4.1.3, 4.0.2, 3.6.6, and 3.4.12
Today we are releasing 4.0.2, 3.6.6, 3.4.12, and the unstable development snapshot 4.1.3. All of today's releases contain security fixes. We recommend all Bugzilla administrators read the Security Advisory linked below. 4.0.2 is our latest stable release, containing various useful bug fixes and performance improvements. 3.6.6 and 3.4.12 are security updates for those series. Note that 4.1.3 is an unstable development release and should not be used in production environments. We are feature-frozen at this point, however, so the features you see in 4.1.3 shoul...

[ANN] Release of Bugzilla 4.1.2, 4.0.1, 3.6.5, and 3.4.11
Today we are releasing 4.0.1, 3.6.5, 3.4.11, and the unstable development snapshot 4.1.2. Many users had difficulty installing Bugzilla 4.0, 3.6.4, and 3.4.10, due to a bug related to the "Math::Random::Secure" library. These releases fix that bug among other issues. Note that 4.1.2 is an unstable development release and should not be used in production environments. However, we are getting very close to feature freeze for 4.2, so now is the time to give us feedback on 4.1.2 if you want its behavior to change significantly before we release. Download -------...

Security advisory for Bugzilla 4.5.6, 4.4.6, 4.2.11, and 4.0.15
Summary ======= Bugzilla is a Web-based bug-tracking system used by a large number of software projects. The following security issues have been discovered in Bugzilla: * The 'realname' parameter is not correctly filtered on user account creation, which could lead to user data override. * Several places were found in the Bugzilla code where cross-site scripting attacks could be used to access sensitive information. * Private comments can be shown to flagmail recipients who aren't in the insider group * Specially formatted values in a CSV search results export c...

Upgrading bugzilla 4.0.4 to Bugzilla 4.4.9
Hi All, My current Bugzilla version is 4.0.4 , Now i need to upgrade to 4.4.9 . Is it possible to directly upgrade to 4.4.9 or should i need to apply all the patched. Please revert ASAP. Regards Santhosh Guten Tag santhosh kumar, am Mittwoch, 15. Juli 2015 um 15:06 schrieben Sie: > Is it possible to directly upgrade to 4.4.9 or should i need to apply all= the patched. You can upgrade directly to the most current stable version, which is 5.0.0 by the way, not 4.4.9 anymore. https://www.bugzilla.org/docs/4.4/en/html/upgrade.html > Please revert ASAP. This ...

Web resources about - [ANN] Release of Bugzilla 5.0rc1, 4.4.7, 4.2.12, and 4.0.16 - mozilla.support.bugzilla


Bugzilla - Wikipedia, the free encyclopedia
Bugzilla is a Web -based general-purpose bugtracker and testing tool originally developed and used by the Mozilla project, and licensed under ...

Bugzilla Main Page
This is the bug tracker for MediaWiki and its extensionsand site-specific problems on Wikimedia's wiki sites. Welcome to Bugzilla. To see what's ...

Critical Bugzilla vulnerability could give hackers access to undisclosed software flaws
Hackers could have had an inside track on unpatched flaws in major software projects because of a critical vulnerability in Bugzilla, a system ...

Bugzilla 0-day can reveal 0-day bugs in OSS giants like Mozilla, Red Hat
C Security firm Check Point Software Technologies used a flaw it discovered in the Perl programming language to hack into the popular Bugzilla ...

Mozilla loses more user info, this time data of 97,000 customers goes out through Bugzilla
... has come to light regarding the loss of another 97,000 emails and passwords that were left exposed. The latest issue comes via Bugzilla, and ...

Bugzilla, my first wiki
Bugzilla introduced me to the world of wikis. It took me a while to understand the power of wikis. But I remember years ago when I first used ...

Mozilla's Bugzilla Hacked, Exposing Firefox Zero-Days
The good news in this bad situation is that Firefox is already patched for all the issues.

Bugzilla Zero-Day Exposes Zero-Day Bugs
A previously unknown security flaw in Bugzilla — a popular online bug-tracking tool used by Mozilla and many of the open source Linux distributions ...

Critical Bugzilla vulnerability could give hackers access to undisclosed software flaws
Hackers could have had an inside track on unpatched flaws in major software projects because of a critical vulnerability in Bugzilla, a system ...

Bugzilla API - ProgrammableWeb
Bugzilla is the bug tracking and reporting system created and used by Mozilla. It is also available for use by other projects and organizations. ...

Resources last updated: 2/16/2016 6:34:08 AM