This is the place holder for the next feature release.
- 0005896: [administration] Allow developers to let other users monitor issues (vboctor) - resolved. - 0009200: [bugtracker] Support a threshold access level for users to show up in reminder picker (vboctor) - resolved. - 0009847: [administration] Make it easier to manage user for installations with large number of users (vboctor) - resolved. - 0009849: [roadmap] Ability to link to a roadmap while specifying a project name / version name (vboctor) - resolved. - 0009848: [change log] Ability to link to a changelog while specifying a project name / version name (vboctor) - resolved. - 0009787: [bugtracker] Update default status colors to use a better color palette (jreese) - resolved. - 0009245: [api soap] target_version not passed through via SOAP (vboctor) - resolved. - 0009715: [printing] No Target Version in the word/excel/ie export (vboctor) - resolved. - 0009724: [bugtracker] Issue history is missing (vboctor) - resolved. - 0009792: [db mssql] SQL function DESCRIBE does not exist for MSSQL 2000 (thraxisp) - resolved. - 0009772: [administration] Add logging event to allow for plugins to log to custom sources (vboctor) - resolved. - 0009762: [bugtracker] THIS INSTALLATION: All database queries seem to fail with "SYSTEM WARNING: preg_match()" (jreese) - resolved. - 0009743: [bugtracker] sorting doesn't work in the View Issues page (vboctor) - resolved. - 0009749: [integration] Integrate the IE and Firefox search plugin into Mantis out-of-the-box (vboctor) - resolved. - 0009737: [bugtracker] bugnote_add.php contains undefined t_note_type (vboctor) - resolved. - 0009746: [bugtracker] Bugnotes are messed up when some are invisible (private) (vboctor) - resolved. - 0009747: [upgrade] upgrade_unattended.php refers to upgrade_inc.php which no longer exists (vboctor) - resolved. - 0009728: [administration] Project-Manager cannot update Project-Categories (jreese) - resolved. - 0009712: [administration] Applications should be able to check for latest updates against Mantis (vboctor) - resolved. - 0009709: [roadmap] Support linking to a roadmap for a specific version (vboctor) - resolved. - 0009708: [change log] Support linking to a changelog for a specific version (vboctor) - resolved. - 0009705: [localization] [update] lang/string_swedish.txt (siebrand) - resolved. - 0009610: [localization] Fixed Japanese translation (siebrand) - resolved. - 0009688: [other] Issue ID in note link (vboctor) - resolved. - 0009683: [other] Redirect error on login (grangeway) - resolved. - 0009524: [security] Mantis should use secure sessions on https connections (grangeway) - resolved. - 0009476: [other] Can not update bug when using Internet Explorer 7 (IE7) (jreese) - resolved. - 0009519: [other] disabled projects; duplicate of 5514 (jreese) - resolved. - 0009475: [other] Error 403 and 401 trying to update bug catery from "View issues" page (daryn) - resolved. - 0005853: [localization] [CJK] In CJK languages, 'Report Issue' pages, the width of the left column is too small. (siebrand) - resolved. - 0009473: [localization] Errors reported by admin/test_langs.php (siebrand) - resolved. - 0009424: [localization] Polish translation - missing strings (siebrand) - resolved. - 0009671: [localization] Missing field names in strings_german.txt (siebrand) - resolved. - 0009677: [administration] SQL Error when deleting a project with no categories (jreese) - resolved. - 0009676: [administration] The "Inherit Global Categories" checkbox does not work when creating a new project (jreese) - resolved. - 0009661: [filters] It should be possible to switch off short_url usage (vboctor) - resolved. - 0009665: [authentication] Logout without unsetting session cookie (jreese) - resolved. - 0009506: [plug-ins] Plugin schema option "InsertData" is not a valid callback for call_user_func_array() (jreese) - resolved. - 0009547: [other] "Update Category" command in "View Issues" not working (jreese) - resolved. - 0004195: [email] Mails do not show national characters correctly (siebrand) - resolved. - 0004742: [localization] [all lang] Mix languages in messages (siebrand) - resolved. - 0008227: [db mysql] MySQL compatibility (siebrand) - resolved. - 0007727: [localization] Hungarian letters with "hungarumlaut" aren't displayed (siebrand) - resolved. - 0006155: [localization] [all lang] Using different language can cause mantis posted issues not to be viewable. (siebrand) - resolved. - 0008857: [localization] Typo in account registration e-mail (siebrand) - resolved. - 0009388: [localization] Russian translation fixes and additions (siebrand) - resolved. - 0009546: [localization] Updated french strings for promotion (siebrand) - resolved. - 0009613: [localization] Update of Lithuanian translation (siebrand) - resolved. - 0009614: [localization] $g_language_auto_map for portugese localization contains spelling error in config_defaults_inc.php (siebrand) - resolved. - 0009518: [bugtracker] Error 203 after editing a bugnote (thraxisp) - resolved. - 0009501: [filters] view_filters_page.php misses target_version (daryn) - resolved. - 0009596: [localization] Update of Icelandic translation (vboctor) - resolved. - 0008588: [feature] adaptable status legend (thraxisp) - resolved. - 0005424: [administration] user_is_name_unique(): "Real Name" and "Real Name" (first name has one space, second name two) (thraxisp) - resolved. - 0007880: [administration] Create new user with same name is allowed. Editting the user reports an error. (thraxisp) - resolved. - 0009548: [administration] dangerous probem with categories for issues moved from one project to another (jreese) - resolved. - 0009563: [news] Headline field blank error / escaping errors when adding / updating News entries (vboctor) - resolved. - 0009532: [news] News items with paragraph breaks adds \r\n (jreese) - resolved. - 0009559: [authentication] Wrong behaviour in Session API (session_save_path error message) (jreese) - resolved. - 0009508: [filters] Adding Filters with Apostrophe saves Backslash in the database (daryn) - resolved. - 0006661: [filters] Sorting on two custom fields results in SQL errors (daryn) - resolved. - 0008914: [rss] Since the 0008908 issue I can't read the RSS Flow (grangeway) - closed. [62 issues]
We had to withdraw 1.1.3 because of a serious flaw affecting the bug_report*
pages. This new release fixes that problem and a newly discovered security issue.
- 0009704: [security] Remote Code Execution in manage_proj_page.php (giallu) - closed. - 0009690: [other] Wrong parameter count for session_set_cookie_params() (jreese) - closed. - 0009691: [bugtracker] Failed to report issue.(Always APPLICATION ERROR #2800) (jreese) - closed. - 0009693: [webpage] Generated HTML contains multiple hostnames when proxied (jreese) - closed. [4 issues]
In this release we fixed a couple of nasty bugs sneaked into 1.1.2, where sending bugnotes email notifications would fail and browser caching was not functional.
We also refined the implementation of form security tokens and closed a couple of security issues, an information disclosure (with no CVE) and a session hijacking (CVE-2008-3102).
- 0009323: [bugtracker] Browser caching broken since 1.1.2 (jreese) - closed. - 0009664: [security] Logout without unsetting session cookie (jreese) - closed. - 0009321: [security] Users can get title and status of issues that they don't have access to. (vboctor) - closed. - 0008882: [other] Gravatar causes annoying security popups on IE when using Mantis over HTTPS/SSL (jreese) - closed. - 0009286: [administration] stray "2" in manage_user_prune.php (vboctor) - closed. - 0009309: [email] Problems with e-mail notifications about bugnotes [PATCH] (giallu) - closed. - 0009470: [bugtracker] Tags filter not filling into text field when selecting from list using Internet Explorer (jreese) - closed. - 0009493: [custom fields] Removing custom fields from project causes application error 2800 (giallu) - closed. - 0009533: [security] Mantis should use secure sessions on https connections (jreese) - closed. - 0009431: [localization] no localization for usage of open, resolved, closed in bug_graph_bystatus.php (thraxisp) - closed. - 0009430: [graphs] bug_graph_bystatus shows heading by_category (thraxisp) - closed. - 0009560: [other] Wrong behaviour in Session API (session_save_path error message) (jreese) - closed. - 0009361: [other] php session fail created cause mantis app error. (jreese) - closed. - 0009343: [scripting] form security token prevents changing relationship while resolving bug (jreese) - closed. - 0009672: [other] Fixing form error by going back fails because of security token (jreese) - closed. - 0004678: [filters] Filter combos don't fill up on if switched to 'All Projects' - closed. [16 issues]
This is the second alpha release on the road to version 1.2.0, and includes
the same security fixes we released in 1.1.2.
As usual with alpha releases, it is intended to be a technology preview aimed
at early adopters, testers, translators etc.
We do not recommend using it in production environments.
- 0009133: [security] "APPLICATION ERROR #19" when switching project in revision 5250 (thraxisp) - closed. - 0008980: [security] Port: Remote Code Execution in adm_config (giallu) - closed. - 0008977: [security] Port 0008974: XSS Vulnerability in filters (thraxisp) - closed. - 0008764: [security] Remove mantis version number from publicly searchable pages (grangeway) - closed. - 0009187: [security] arbitrary file inclusion through user preferences page (giallu) - closed. - 0009247: [security] A reporter can update an incidence (jreese) - closed. - 0009322: [security] Port of 0009321: Users can get title and status of issues that they don't have access to. (vboctor) - closed. - 0009364: [administration] SYSTEM WARNING message received when deleting a project (jreese) - closed. - 0009115: [administration] Removing user's access to a private project doesn't work (vboctor) - closed. - 0009040: [administration] Missing category_id column (vboctor) - closed. - 0006235: [administration] Impossible to select a user with empty user name (grangeway) - closed. - 0009258: [api soap] Adding bug throws fault for undefined "due_date" field (vboctor) - closed. - 0008606: [api soap] Problem with categories (planser) - closed. - 0009228: [bugtracker] THIS INSTALLATION: sorting of notes does not work any more (jreese) - closed. - 0009141: [bugtracker] summary_page error when DB is empty (giallu) - closed. - 0009349: [bugtracker] Tagging/untagging an issue should update it's last modified date (vboctor) - closed. - 0009060: [bugtracker] “Open and assigned to me:” and “Open and reported by me:” links on the “Main” page are incorrect. (grangeway) - closed. - 0009348: [bugtracker] Monitoring/unmonitoring an issue should update it's last modified date (vboctor) - closed. - 0009347: [bugtracker] Due Date should be disabled by default (vboctor) - closed. - 0009346: [bugtracker] Due Date is shown in history even if user doesn't have access to view due dates (vboctor) - closed. - 0009395: [bugtracker] Summary page generates incorrect filter links for categories (daryn) - closed. - 0009275: [bugtracker] Tags filter not filling into text field when selecting from list using Internet Explorer (jreese) - closed. - 0009223: [bugtracker] auto-assigned in parent project categories doesn't work (jreese) - closed. - 0009461: [bugtracker] History of status changes broken (grangeway) - closed. - 0009251: [bugtracker] Issue history contains the '@' symbol as the old value when certain fields of the bug report are modified (grangeway) - closed. - 0009001: [change log] memory exhausted on changelog (giallu) - closed. - 0009087: [change log] Renaming a version doesn't update the corresponding issue fields (jreese) - closed. - 0009285: [custom fields] bad named function in /core/excel_api.php file (vboctor) - closed. - 0008675: [db postgresql] Incorrect use of boolean in postgres 8.2.4 (grangeway) - closed. - 0009387: [db postgresql] Cannot create new user (invalid input syntax for type boolean: "2") (jreese) - closed. - 0006236: [db postgresql] Escaping error in PostgreSQL (grangeway) - closed. - 0008699: [db postgresql] Get Time Tracking Information return a SQL query error (grangeway) - closed. - 0008933: [documentation] Bad link in source code. (grangeway) - closed. - 0007508: [filters] Custom fields should have a additional flag, if they should be avaliable as filter or not. (daryn) - closed. - 0009345: [documentation] Document PHP extensions required by Mantis (vboctor) - closed. - 0003786: [feature] deleting a category that is in use should issue a warning (jreese) - closed. - 0009099: [filters] using advanced filtering leads to APPLICATION ERROR 0000401 (daryn) - closed. - 0009370: [documentation] User Documentation link is wrong (jreese) - closed. - 0008916: [filters] Monitor by filter ignores show_monitor_list_threshold (daryn) - closed. - 0009104: [filters] Last page of search results not showing because of error 401 (daryn) - closed. - 0008160: [filters] filter for notes (daryn) - closed. - 0009166: [graphs] JPGraph - Array keys Should be checked with isset() - especially when error reporting is E_ALL (grangeway) - closed. - 0009043: [installation] Invalid link to login page after installation (bug + patch) (jreese) - closed. - 0009281: [localization] czech translation (vboctor) - closed. - 0009312: [integration] wiki integration and undefined function auth_is_user_authenticated (with patch) (jreese) - closed. - 0009377: [installation] Installation: upgrade_list.php does not exist (grangeway) - closed. - 0009288: [integration] Twitter updates don't show category correctly (always []) (vboctor) - closed. - 0008827: [localization] Some modifications in strings_french.txt (vboctor) - closed. - 0009100: [news] RSS Feeds do no include date posted (grangeway) - closed. - 0008192: [integration] Twitter message has wrong escaping for quotation marks (vboctor) - closed. - 0009094: [other] Insert page break between issues when exporting Microsoft Word DOC format (vboctor) - closed. - 0009170: [other] Fix for 0008981 (protection against multiple submissions) broken IE and Opera support (vboctor) - closed. - 0003241: [other] On Excel, no column headings display. (vboctor) - closed. - 0008372: [performance] Control Page Overload (grangeway) - closed. - 0009392: [other] Remove ?> from the end of config_defaults_inc.php and config_inc.php to avoid errors due to blank lines (vboctor) - closed. - 0008908: [other] Incorrectl dropdown menu while $g_show_extended_project_browser is on (grangeway) - closed. - 0009265: [plug-ins] Add an event to allow adding links to View Issues page (vboctor) - closed. - 0009138: [other] Submit Report doesn't work (grangeway) - closed. - 0002963: [performance] manage_proj_edit_page executes more than 5000 queries (grangeway) - closed. - 0009267: [plug-ins] URL for updating plugin settings is wrong. (jreese) - closed. - 0009448: [plug-ins] Move the Freemind feature to a plugin (vboctor) - closed. - 0006731: [rss] Date not shown in RSS (grangeway) - closed. - 0008761: [scripting] compress_handler called before defined (grangeway) - closed. - 0009237: [sql] When using g_limit_reporters produces SQL error for reporters (daryn) - closed. - 0009332: [relationships] Remove auth_get_current_user_id from relationship_api.php (vboctor) - closed. - 0009451: [tagging] Tags with single quotes and double quotes are escaped more than once (vboctor) - closed. - 0008353: [tagging] Handling accentuated tags (giallu) - closed. - 0008843: [time tracking] Ignores tracking_reporting_threshold (daryn) - closed. - 0008357: [time tracking] "Total time for issue" is shown even for users under threshold (daryn) - closed. - 0008849: [time tracking] Emails ignore time tracking view threshold (daryn) - closed. - 0007953: [time tracking] Time Tracking assigment lost, when changing issue status without note text (daryn) - closed. - 0009383: [webpage] Wrong URL directory path computed (CSS & images and JS not accessible) (grangeway) - closed. - 0003838: [webpage] HTML Beautification (rainmkr) - closed. - 0006796: [webpage] Webpages generated do not produce "Valid HTML" (grangeway) - closed. [74 issues]
This release focused on fixing few security issues; also includes assorted fixes for translations, usability and compatibility (most notably, with postgres) and a nasty memory leak on the string API causing incomplete rendering of pages. All users are advised to upgrade.
- 0009207: [tagging] Several actions lead into Application Error #19 (schoenfeld) - resolved. - 0004570: [filters] Option to show all users in All Projects filter - closed. - 0008830: [installation] set_time_limit() doesn't work in PHP safe mode (daryn) - closed. - 0009181: [time tracking] Port 0008362: Note text is mandatory for time tracking while closing bug (daryn) - closed. - 0009180: [time tracking] Port 0007971: time tracking information only saved on added comment (daryn) - closed. - 0009179: [time tracking] Port 0007953: Time Tracking assigment lost, when changing issue status without note text (daryn) - closed. - 0009182: [bugtracker] Port 0008509: Empty Note is added when updating issue (daryn) - closed. - 0009082: [localization] Hungarian translate error (Bithunter) - closed. - 0008976: [security] Remote Code Execution in adm_config (giallu) - closed. - 0009154: [security] arbitrary file inclusion through user preferences page (giallu) - closed. - 0008975: [security] CSRF Vulnerabilities in user_create (jreese) - closed. - 0008974: [security] XSS Vulnerability in filters (thraxisp) - closed. - 0008858: [integration] DokuWiki integration: EMail notification on wiki page changes not working (vboctor) - closed. - 0008924: [bugtracker] Port 8245: Target Version value lost in update issue page (giallu) - closed. - 0008886: [change log] Change Log shows duplicate entries (jreese) - closed. - 0008880: [db postgresql] Problem with date formatting in db_prepare_date function (giallu) - closed. - 0009186: [localization] Port 0009046: French translation for $s_bug_assign_to_button (vboctor) - closed. - 0009185: [time tracking] Port 0008621: The expand icon is inverted for the Time tracking section (vboctor) - closed. - 0009184: [time tracking] Port 0008849: Emails ignore time tracking view threshold (vboctor) - closed. - 0009183: [time tracking] Port 0008357: "Total time for issue" is shown even for users under threshold (vboctor) - closed. - 0008774: [localization] Complete Hungarian retranslation (vboctor) - closed. - 0008853: [roadmap] Issue appears more than once in the Roadmap for a release. (jreese) - closed. - 0008931: [relationships] Circle Relations cause roadmap to malfunction (jreese) - closed. - 0009178: [other] Fix memleak in string api (vboctor) - closed. - 0009177: [filters] Port 0008916: Monitor by filter ignores show_monitor_list_threshold (vboctor) - closed. - 0009176: [db postgresql] Port 0008699: Get Time Tracking Information return a SQL query error (vboctor) - closed. - 0008123: [administration] Adding a user requires "$g_lost_password_feature = ON" (giallu) - closed. - 0007764: [scripting] APPLICATION WARNING #100: Configuration option 'category_enum_string' not found (vboctor) - closed. - 0009208: [other] Several actions on bug update page lead into System Warning and App. Error (daryn) - closed. [29 issues]
mantisbt - 1.2.0a1 (released 2008-04-18) ================== - 0008791: [custom fields] Custom fields in all projects instead of only the linked (vboctor) - resolved. - 0007808: [feature] Strike a resolved bug in notes and links (jreese) - resolved. - 0008706: [email] Bad email headers for notifications (giallu) - closed. - 0008938: [authentication] Allow site administrators to customize or disable reauthentication timeout. (jreese) - closed. - 0008577: [email] Long utf-8 encoded subject fails (phpmailer bug) (giallu) - closed. - 0008799: [graphs] Top logo (mantis_logo.gif) and URL it points to shall be configurable (jreese) - closed. - 0009046: [localization] French translation for $s_bug_assign_to_button (Bithunter) - closed. - 0008621: [time tracking] The expand icon is inverted for the Time tracking section (vboctor) - closed. - 0008995: [security] CSRF Vulnerabilities in user_create (thraxisp) - closed. - 0008565: [other] Formatting of summary in My View is not consistent with View Issues page (vboctor) - closed. - 0007463: [bugtracker] Issue with many child issues produced performance problem (grangeway) - closed. - 0007716: [db mssql] Can not handel Querry with over 3000 bugs (grangeway) - closed. - 0008486: [tools] No database stat of tag table displayed (zakman) - closed. - 0008576: [email] Wrong links to comments in email notifications (grangeway) - closed. - 0008660: [administration] Provide a way to hide/show users with global access in manage project page (vboctor) - closed. - 0008578: [webpage] Wrong style class used in if ... else (vboctor) - closed. - 0008518: [custom fields] Enumerated Custom Field limited to 255 (grangeway) - closed. - 0008569: [installation] Errors when default language = auto ? (grangeway) - closed. - 0006666: [other] SIGSEGV in pcre_config (grangeway) - closed. - 0008136: [bugtracker] Some texts may cause php crash without error message (grangeway) - closed. - 0008710: [custom fields] display past years in Custom date field (vboctor) - closed. - 0008740: [other] print_all_bug_page_word.php uses raw SQL rather than API (vboctor) - closed. - 0003911: [bugtracker] Mantis violates RFC2616 when redirecting (giallu) - closed. - 0008748: [db mysql] phpMyAdmin reports a warning message (thraxisp) - closed. - 0008778: [bugtracker] Add newly reported issues to last visited (vboctor) - closed. - 0007712: [db mysql] mantis_config_table (thraxisp) - closed. - 0008797: [localization] Improve the german translation to avoid baby talk (MartinFuchs) - closed. - 0008795: [localization] strtoupper() fail on localized strings (thraxisp) - closed. - 0008766: [plug-ins] Move text processing and formatting to an official plugin (jreese) - closed. - 0007158: [feature] Change Mantis top logo link to internal link (giallu) - closed. - 0007130: [customization] Unbranding Mantis (jreese) - closed. - 0008826: [localization] german localization (and maybe other languages, too): blocking and blocked relation text is swapped (MartinFuchs) - closed. - 0008536: [webpage] Top header logos are all distorted to the same size (giallu) - closed. - 0008873: [other] Bug print / Word export should include the URL for downloading attachments (vboctor) - closed. - 0008865: [db mysql] Wrong format for insert into Database (jreese) - closed. - 0008874: [customization] Provide the ability to add "build" column to View Issues, Print Issues, and CSV export (vboctor) - closed. - 0008787: [feature] WikkaWiki Integration (vboctor) - closed. - 0008771: [bugtracker] Port 0008738: Allow bugs to have no category (jreese) - closed. - 0008757: [integration] Add wiki integration for TWiki (vboctor) - closed. - 0008369: [email] Making phpMail work with Gmail (giallu) - closed. - 0008535: [other] Replace RSS icon with Universal feed icon (jreese) - closed. - 0008491: [feature] Would like label for 'check for more issues' (giallu) - closed. - 0008890: [bugtracker] Add group action for updating "product build" field for multiple issues (vboctor) - closed. - 0008923: [bugtracker] Ability for users and administrators to customize columns for View Issues, Print Issues, CSV, and Excel (vboctor) - closed. - 0008922: [bugtracker] Support including 'description', 'steps_to_reproduce', 'additional_information' as columns (vboctor) - closed. - 0008245: [bugtracker] Target Version value lost in update issue page (giallu) - closed. - 0008927: [filters] "Create Permalink" is controlled by $g_view_filters (vboctor) - closed. - 0008891: [administration] change version's released property's default value to unreleased (jreese) - closed. - 0008435: [feature] Implement Global and Inheriting Categories Structure (jreese) - closed. - 0008771: [bugtracker] Port 0008738: Allow bugs to have no category (jreese) - closed. - 0008969: [bugtracker] Can't switch off Inherit Global Categories (jreese) - closed. - 0008937: [bugtracker] Users with privileges below Administrator cannot see subprojects. (jreese) - closed. - 0008887: [graphs] Graph legend displays default status names (thraxisp) - closed. - 0008514: [other] Support a dynamic and lightweight plugin system (jreese) - closed. - 0008346: [documentation] Use DocBook for Mantis manual (giallu) - closed. - 0008965: [api soap] Adding/Updating/Deleting versions using SOAP API requires ADMINISTRATOR rights (vboctor) - closed. - 0008875: [integration] Refactor Wiki integration engines to achieve better consistency (jreese) - closed. - 0004491: [relationships] Deleting duplicate relationshilp left value in 'duplicate_id' field (vboctor) - closed. - 0008970: [bugtracker] project delete failed due to category changes (jreese) - closed. - 0008920: [bugtracker] Visual mark to differentiate "none" and "normal" priorities (vboctor) - closed. - 0003816: [sponsorships] Include total sponsorships for an issue in csv export (vboctor) - closed. - 0008981: [bugtracker] Multiple bug submissions (vboctor) - closed. - 0007214: [printing] Export issues from mantis to a freemind mindmap (vboctor) - closed. - 0001910: [bugtracker] Provide ability to make version obsolete (vboctor) - closed. - 0007634: [custom fields] Support relative default for Date Custom Fields (e.g. {tomorrow}, {+2 days}, {next week}) (vboctor) - closed. - 0009004: [custom fields] Support enumeration custom fields exposed as radio buttons (vboctor) - closed. - 0009025: [javascript] Enhance Collapse API for Extensiblity and Plugin Usage (jreese) - closed. - 0008651: [change log] Display release date in changelog for released version (jreese) - closed. - 0009050: [other] Add support for "Copy Columns From/To" when customizing columns to view in View Issues, Print Issues, CSV, Excel (vboctor) - closed. [69 issues]
- 0008064: [graphs] Problem with JpGraph (thraxisp) - resolved. - 0008756: [security] "Most active bugs" summary XSS vulnerability (giallu) - closed. - 0008681: [upgrade] Mantis 1.1.0 has a dependency on stripos which was added in PHP 5 (vboctor) - closed. - 0008684: [installation] UPGRADING file missing in doc (thraxisp) - closed. - 0008707: [filters] "My View" shows warnings about "sort" / "dir" not defined (vboctor) - closed. - 0008708: [graphs] graph fails with error claiming bad colour name (thraxisp) - closed. - 0008758: [localization] Application error 18 with russian language (vboctor) - closed. - 0008742: [localization] "actiongroup_error_issue_is_readonly" isn't defined (vboctor) - closed. - 0008732: [graphs] Many options on bug_graph_page.php broken, inconsistent, incomplete (thraxisp) - closed. - 0008721: [upgrade] css and icon paths incorrect (vboctor) - closed. - 0008695: [api soap] Error with attachments - Method DISK (planser) - closed. - 0008692: [localization] Russian translation update. (vboctor) - closed. - 0008662: [bugtracker] Unneeded executable bits on mantis modules (giallu) - closed. - 0008738: [bugtracker] Could not create bug if project have not categorys and g_default_bug_category is empty (vboctor) - closed. - 0008683: [api soap] mc_projects_get_user_accessible raises SYSTEM NOTICE, but it should not (vboctor) - closed. - 0008759: [api soap] Improve error handler to report location of errors (vboctor) - closed. - 0008767: [api soap] incorrect date and time handling in mc_project_version_add and mc_project_version_update (planser) - closed. - 0008770: [email] Sending queued emails is still attempted even if email notifications are turned OFF, causing errors (vboctor) - closed. [18 issues]
This is Mantis 1.1.0 Gold Release. All users with pre-release 1.1.0x releases and with 1.0.x releases are encouraged to upgrade to this release. For users who are using non-latin character sets, a manual upgrade process is necessary.
- 0006948: [filters] Not able to filter by project (vboctor) - resolved. - 0008679: [security] XSS Vulnerability in view.php , Attached Files (vboctor) - closed. - 0008645: [roadmap] Issue appears more than once in the Roadmap for a release. (jreese) - closed. - 0008617: [api soap] mc_version() should return the Mantis version (vboctor) - closed. - 0008602: [api soap] Provide a SOAP friendly error handler (vboctor) - closed. - 0008604: [api soap] Wrong URL in E-Mail notifications by changes via webservice (vboctor) - closed. - 0008661: [bugtracker] Possible crash condition leading to blank or incomplete page (giallu) - closed. - 0008644: [api soap] Many errors of type SYSTEM NOTICE are thrown (planser) - closed. - 0008437: [localization] Update to italian translation (giallu) - closed. - 0008591: [api soap] Error in api/soap/mc_filter_api.php#mc_filter_get() (planser) - closed. - 0008567: [installation] cannot install on shared webserver, core/*.php inconsistent use of require_once($t_core_dir) (vboctor) - closed. - 0008674: [email] Php script for sending mail via cronjob raise error when lang set to auto (vboctor) - closed. - 0008499: [graphs] Many graphs show "not enough data to create graph" after upgrading from 1.1.0a2 (jreese) - closed. [14 issues]
This is the third release candidate for Mantis 1.1.0, we believe we are now very close to the final release. This release has several fixes relating to SOAP API, DB2, and others. All users running 1.1.0x releases are encouraged to update to this release.
- 0008509: [bugtracker] Empty Note is added when updating issue (giallu) - closed. - 0008238: [filters] urldecode() error on creating PermaLink (MartinFuchs) - closed. - 0008063: [other] mantis_version shouldn't be in the configuration file (jreese) - closed. - 0008511: [email] send_emails.php is missing <?php at the start of the file (giallu) - closed. - 0008525: [api soap] mc_projects_get_user_accessible() shouldn't return ALL_PROJECTS (vboctor) - closed. - 0008524: [integration] core/checkin.php is missing toplevel <? causing the script to fail. (vboctor) - closed. - 0008566: [api soap] mc_project_version_add() doesn't set the date_order field correctly (vboctor) - closed. - 0007646: [bugtracker] Show content link should change to Hide content when clicked (giallu) - closed. - 0008494: [api soap] Remove backward compatibility code from SOAP API (vboctor) - closed. - 0008589: [bugtracker] file_download.php doesn't work with attachment names that contain accentuated characters when using Firefox (vboctor) - closed. - 0008541: [api soap] $g_mc_error_when_version_not_found is not defined (vboctor) - closed. - 0008564: [db db2] Attempting installation of MANTIS400, table not being created (slashsplat) - closed. - 0008519: [api soap] Name collision between NuSoap SoapClient and PHP 5 Soap extension (vboctor) - closed. - 0008263: [scripting] smaller issue in email address recognition (jreese) - closed. - 0008592: [api soap] Error in api/soap/mc_file_api.php#mc_file_add() (vboctor) - closed. [15 issues]
This is the second release candidate for 1.1.0 release. It is recommended that all users with 1.1.0x releases upgrade to this version. This is mainly a bug fixes release.
- 0008453: [bugtracker] Sub-project My View highlights all issues as recent (jreese) - resolved. - 0007787: [feature] Robust threading of e-mails using MIME headers (giallu) - closed. - 0008480: [security] XSS Vulnerability in Tag details, Attach Tags (jreese) - closed. - 0008463: [localization] re-authentication button does not appear in user's language (jreese) - closed. - 0008467: [security] Users can login using the MD5 hash of the password (vboctor) - closed. - 0008446: [localization] Update Estonian Language (vboctor) - closed. - 0008454: [time tracking] time tracking sum on request wrong (vboctor) - closed. - 0008443: [tagging] creating new tags for multi-selection (jreese) - closed. - 0007497: [other] Summary page is little of Garble (vboctor) - closed. - 0007999: [other] Project list view corrupted (vboctor) - closed. - 0008459: [localization] Update catalan translation (vboctor) - closed. - 0008461: [signup] signup_page and lost_pwd_page don't work if anonymous access not enabled (vboctor) - closed. - 0008254: [integration] Gravatar integration should handle empty email addresses (giallu) - closed. - 0008378: [other] Select custom avatar for default Gravatar image. (giallu) - closed. - 0005612: [other] Redirect time ignored in preferences (giallu) - closed. - 0008476: [other] Add a service to disposable email address checker (zakman) - closed. - 0008475: [printing] Function used two times in the same file (only one is necessary) (vboctor) - closed. - 0008468: [localization] $s_select_option is missing in german language (vboctor) - closed. - 0008457: [administration] Removing a userdefined field from project results in APPLICATION ERROR #203 (vboctor) - closed. - 0008493: [api soap] Attachments created via SOAP API don't honor attachments_file_permissions config option (vboctor) - closed. - 0008492: [api soap] Add attachment succeeds but creates broken attachment if upload path not found (vboctor) - closed. - 0008489: [localization] Update Japanese Localization for 1.1.0rc2 (vboctor) - closed. - 0008490: [administration] Undefined variable: t_version in manage_proj_ver_copy.php (vboctor) - closed. - 0008465: [filters] collapse filter section as default (giallu) - closed. - 0008241: [customization] Disable Roadmap (vboctor) - closed. - 0008500: [other] Empty entry in "Category" drop down (vboctor) - closed. [26 issues]
Mantis 1.1.0rc1 is the first release candidate for Mantis 1.1.0 release. This release follows for alpha releases. It includes features like db2 support, XWiki integration and tagging. It also has security improvements and some localization updates. All users of Mantis 1.1.0aX are encouraged to upgrade.
Installations that use non-latin character sets should check the website for the upgrade path.
The code is branched along with this release, hence, the 1.1.0 branch will take fixes that are needed to release 1.1.0 gold. New features will go into CVS HEAD which will go into 1.2.0 release.
- 0008396: [tagging] Don't allow creating tags if user can't attach them (jreese) - closed. - 0008188: [other] Consistent use of collapse_api.php (DGtlRift) - closed. - 0006850: [localization] obsolete MANTIS_ERROR (giallu) - closed. - 0008231: [bugtracker] Summary "By Date" shows suspicious totals (giallu) - closed. - 0008233: [bugtracker] Long standing issues report on summary page (giallu) - closed. - 0008246: [upgrade] Add support for running arbitrary functions (thraxisp) - closed. - 0008206: [integration] Add (gr)avatars for users (giallu) - closed. - 0008252: [feature] Gravatars and case sensitivity of email addresses (giallu) - closed. - 0008283: [other] $g_show_notices and $g_show_warnings should be marked as obsolete (vboctor) - closed. - 0008285: [other] File Download generates an E_NOTICE (vboctor) - closed. - 0008286: [security] Add .htaccess to block access to core/, doc/, lang/, packages/ (vboctor) - closed. - 0008291: [administration] check.php: Use of undefined constant db_is_connected - assumed 'db_is_connected' (vboctor) - closed. - 0008292: [other] my_view_inc: syntax error (vboctor) - closed. - 0008237: [graphs] Error in dependency graphs (vboctor) - closed. - 0008269: [roadmap] Reporting a new issue, ADMIN/MANAGER/DEVELOPER should see field "Target Version" (jreese) - closed. - 0008311: [tagging] System Notice: Undefined index 'tag_select' in view_all_bug_page.php (jreese) - closed. - 0008274: [tagging] Implement Keyword Tagging Features (jreese) - closed. - 0008312: [security] Install script shouldn't include password in the form (jreese) - closed. - 0008324: [administration] Rendering of "Manage Users" menu link ignores $g_manage_user_threshold (giallu) - closed. - 0007846: [relationships] APPLICATION ERROR #1802: Relationship not found (vboctor) - closed. - 0007996: [custom fields] Confusion in string values of enumerated custom field due to non strict comparison of strings (zakman) - closed. - 0007995: [other] Confusion in product_version values due to string comparisons with == operator (zakman) - closed. - 0008337: [tagging] Blank page (no data) when invalid tag filter chosen (jreese) - closed. - 0008341: [other] Xwiki integration (vboctor) - closed. - 0008340: [security] Changing password should create a new cookie_string (vboctor) - closed. - 0008327: [documentation] show_extended_project_browser can only be set to OFF or ON (vboctor) - closed. - 0008343: [administration] Admin created users bypass realname validity check (vboctor) - closed. - 0007690: [db mssql] number_format(); bad for SQL statments (vboctor) - closed. - 0008344: [other] Tokens API Clean-up and Changes (jreese) - closed. - 0007809: [custom fields] Filter "none" on custom fields doesn't work (giallu) - closed. - 0008371: [db db2] Use "days" instead of "to_days" when comparing dates for db2 (vboctor) - closed. - 0004614: [relationships] Relationship graph: sometimes arrows direction is not correct (vboctor) - closed. - 0005093: [webpage] Rights in custom menu does not work (vboctor) - closed. - 0008387: [db db2] adodb2-db2.DBTimeStamp uses TO_DATE() which doesn't work on DB2 (vboctor) - closed. - 0008384: [db db2] db_table_exists() doesn't work in case of DB2 (vboctor) - closed. - 0008385: [db db2] ADODB_db2._insert_id doesn't work (vboctor) - closed. - 0008386: [db db2] ADODB_db2 uses an invalid time format which is not accepted by db2 (vboctor) - closed. - 0008389: [db db2] Remove references to odbc_db2 driver from code (we only support db2) (vboctor) - closed. - 0007855: [localization] Priority colum header String not taken from strings file (vboctor) - closed. - 0008388: [other] Undefined variable $p_this_var in helper_api.php (vboctor) - closed. - 0008395: [bugtracker] Recently Visited is not displayed. (jreese) - closed. - 0008336: [security] Require re-login for high impact tasks (jreese) - closed. - 0008295: [printing] Include the bug history in the printout (zakman) - closed. - 0008368: [tagging] "Access Denied." when trying to attach a tag to an issue I reported (vboctor) - closed. - 0008380: [administration] Deleting old user Account results in Database inconsistency (vboctor) - closed. - 0008423: [localization] Update German Localization (vboctor) - closed. - 0008413: [performance] Provide a way to show queries for an access level threshold (vboctor) - closed. - 0008412: [performance] When showing queries show the time spent in SQL vs. PHP (vboctor) - closed. - 0008407: [performance] Add caller function info to queries list (giallu) - closed. - 0007647: [localization] [de] Translation change from "Problem" (problem) to "Eintrag" (issue) (vboctor) - closed. - 0008425: [localization] Update portuguese_brazil localization (vboctor) - closed. - 0008428: [localization] Update French Localization (vboctor) - closed. - 0007720: [localization] Japanese language translation patch (vboctor) - closed. - 0008421: [other] Recently visted is showing some serialized filter instead of bug ids (vboctor) - closed. - 0008429: [localization] fix miscellanious errors in the german translation files (vboctor) - closed. [55 issues]
This is the fourth alpha release for Mantis 1.1.0. It is likely to be the last alpha. The next release is planned to be an rc1 release with which we will branch the code and implement a feature freeze. This release has more than 100 features and bug fixes including addition of MantisConnect SOAP API, Twitter integration, permalink filters, MediaWiki integration, custom relationships, more reporting in summary page, project info page, 6 security fixes and a lot of other fixes and improvements. It is a recommended upgrade for all 1.1.0aX installations.
- 0008091: [csv] csv_export doesn't work when project name contains accentuated characters (vboctor) - resolved. - 0002996: [other] page link from email (in browser) - display more than "access denied" (grangeway) - closed. - 0008164: [security] Potential URL redirection flaw in set_project.php (grangeway) - closed. - 0008154: [security] Port: CVE-2007-3215: PHPMailer vulnerability (thraxisp) - closed. - 0008165: [security] Potential URL redirection flaw in account_prefs_reset.php (grangeway) - closed. - 0008166: [security] Potential URL redirection flaw in permalink_page.php (grangeway) - closed. - 0008180: [security] Potential URL redirection flaw in login.php (grangeway) - closed. - 0008181: [security] Display of database error message cou
