First enable the import plugin Log into Mantis click Manage click Manage Plugins find Mantis CSV Importer 1.4.0 and click Install Import your data save your bug list as a CSV file – be sure to save one file per project otherwise you will have to reassign the bugs to the correct project one by one. …
Author Archives: admin
Bugzilla 5.0 is right around the corner
Bugzilla 5.0 is right around the corner and honestly we’re a little excited. Are you an early adopter? Bugzilla 5.0rc2 is available now if you like to live on the bleeding edge. There aren’t any changes expected between now and when 5.0 is officially released in a couple of weeks. If you are interested in …
GHOST Attack
Another exploit has been discovered which affects many Linux servers. The moniker is GHOST. During a code audit performed internally at Qualys, we discovered a buffer overflow in the __nss_hostname_digits_dots() function of the GNU C Library (glibc). This bug is reachable both locally and remotely via the gethostbyname*() functions, so we decided to analyze it …
Attack of the Poodle
A new security attack (dubbed the POODLE attack) makes continued use of SSLv3 dangerous. So effective immediately, we are dropping support for SSLv3. Browser users will likely see minimal-to-no impact. If you are having an issue please try a newer version of your browser. Extremely old browsers (specifically IE 6 users on Windows XP) will no …
Github Integration
This integration will allow you to use GetHub commit comments to update bugs This will cause any commit comments to be added to bugs references by the comment. E.g. the commit comment “This fixes bug 123” will cause “This fixes bug 123” to be added as a comment to bug 123. You must configure both …
September Downtime Complete
It took a few hours longer than planned due to the SAN reporting some issues after restarting, but we are back up and running.
XML-RPC Client
From time to time we’ve had people wonder if the XML-RPC API is turned on for their Bugzilla installation. The answer is yes in all cases. Nevertheless it is difficult to verify as Bugzilla will not give you a meaningful response if you go to https://<mybugzilla>/xmlrpc.cgi in your browser. Other clients want to verify some …
September Downtime Notice
We have scheduled a 6 hour downtime window on Sunday Sept 28 starting at 02:00 GMT. During this downtime we will be performing some major infrastructure upgrades including: New redundant routers, switches and firewalls. 10Gbps Internet connectivity to multiple carriers. New redundant 8Gbps fiber channel switching fabrics (A and B side fabrics) for storage. 5 …
All Bugzilla Accounts Upgraded to 4.4.5
Bugzilla 4.4.5 is a security release which addresses the following issue: Adobe does not properly restrict the SWF file format, which allows remote attackers to conduct cross-site request forgery (CSRF) attacks against Bugzilla’s JSONP endpoint, possibly obtaining sensitive bug information, via a crafted OBJECT element with SWF content satisfying the character-set requirements of a callback API. For more details see: https://bugzilla.mozilla.org/show_bug.cgi?id=1036213 …
Bugzilla API for Haskell
Version 0.2.1.1 of this package has been released. A Haskell interface to the Bugzilla native REST API This package is designed to provide an easy-to-use, typesafe interface to querying Bugzilla from Haskell. See: http://hackage.haskell.org/package/bugzilla-0.2.1.1 Or at Github: https://github.com/sethfowler/hsbugzilla