RESOLVED FIXED137540
Upgrade bugs.webkit.org to Bugzilla 4.2.11 
https://bugs.webkit.org/show_bug.cgi?id=137540
Summary Upgrade bugs.webkit.org to Bugzilla 4.2.11
David Farler
Reported 2014-10-08 15:21:28 PDT
Backport patches for the following Bugzilla security bugs: https://bugzilla.mozilla.org/show_bug.cgi?id=1074812 CVE-2014-1572 https://bugzilla.mozilla.org/show_bug.cgi?id=1075578 CVE-2014-1573 https://bugzilla.mozilla.org/show_bug.cgi?id=1064140 CVE-2014-1571 https://bugzilla.mozilla.org/show_bug.cgi?id=1054702
Attachments
Patch (15.48 KB, patch)
2014-10-08 15:23 PDT, David Farler 		dbates: review+
DetailsFormatted DiffDiff
Show Obsolete (1) View All Add attachment proposed patch, testcase, etc.
David Farler
Comment 1 2014-10-08 15:23:25 PDT
Created attachment 239497 [details] Patch
Daniel Bates
Comment 2 2014-10-08 16:06:47 PDT
Comment on attachment 239497 [details] Patch Looks sane to me.
David Farler
Comment 3 2014-10-10 11:44:27 PDT
Rescoping this bug - we're going to upgrade straight to 4.2.11, which will include the above
David Farler
Comment 4 2014-10-10 11:47:37 PDT
We've tested 4.2 database migration and most of the WebKit-specific stuff works, with one exception: there is a quick search form leaking onto the PrettyPatch review page, which causes a harmless but annoying JS alert that you're trying to search for the empty string, although changes to the review go through. That will be fixed before uploading a patch for review.
David Farler
Comment 5 2014-10-10 11:48:08 PDT
We'll do more stress testing on the test instance, of course.
Csaba Osztrogonác
Comment 6 2014-11-04 08:50:16 PST
Already completed - https://lists.webkit.org/pipermail/webkit-dev/2014-October/026946.html
Note You need to log in before you can comment on or make changes to this bug.