Bug 137540

Summary:

Upgrade bugs.webkit.org to Bugzilla 4.2.11

Product:

WebKit

Reporter:

David Farler <dfarler>

Component:

Tools / Tests

Assignee:

David Farler <dfarler>

Status:

RESOLVED FIXED

Severity:

Normal

CC:

dbates, ddkilzer, mrowe, ossy, wsiegrist

Priority:

Version:

528+ (Nightly build)

Hardware:

All

OS:

All

Attachments:

Description	Flags
Patch	dbates: review+

Description David Farler 2014-10-08 15:21:28 PDT

Backport patches for the following Bugzilla security bugs:
                                             
https://bugzilla.mozilla.org/show_bug.cgi?id=1074812
CVE-2014-1572                       
                                             
https://bugzilla.mozilla.org/show_bug.cgi?id=1075578
CVE-2014-1573
 
https://bugzilla.mozilla.org/show_bug.cgi?id=1064140
CVE-2014-1571

https://bugzilla.mozilla.org/show_bug.cgi?id=1054702

Comment 1 David Farler 2014-10-08 15:23:25 PDT

Created attachment 239497 [details]
Patch

Comment 2 Daniel Bates 2014-10-08 16:06:47 PDT

Comment on attachment 239497 [details]
Patch

Looks sane to me.

Comment 3 David Farler 2014-10-10 11:44:27 PDT

Rescoping this bug - we're going to upgrade straight to 4.2.11, which will include the above

Comment 4 David Farler 2014-10-10 11:47:37 PDT

We've tested 4.2 database migration and most of the WebKit-specific stuff works, with one exception: there is a quick search form leaking onto the PrettyPatch review page, which causes a harmless but annoying JS alert that you're trying to search for the empty string, although changes to the review go through. That will be fixed before uploading a patch for review.

Comment 5 David Farler 2014-10-10 11:48:08 PDT

We'll do more stress testing on the test instance, of course.

Comment 6 Csaba Osztrogonác 2014-11-04 08:50:16 PST

Already completed - https://lists.webkit.org/pipermail/webkit-dev/2014-October/026946.html