https://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=7013
--- Comment #23 from Pablo AB ---
Sorry, it was for bug 23861 :(
--
You are receiving this mail because:
You are the QA Contact for the bug.
You are watching all bug changes.
___
https://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=7013
Pablo AB changed:
What|Removed |Added
CC||pablo.bian...@gmail.com
---
https://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=7013
Cab Vinton changed:
What|Removed |Added
CC|bibli...@gmail.com |
--
You are receiving this
https://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=7013
Cab Vinton changed:
What|Removed |Added
CC||bibli...@gmail.com
--
You are
http://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=7013
Sophie MEYNIEUX sophie.meyni...@biblibre.com changed:
What|Removed |Added
Assignee|adrien.sau...@biblibre.com
http://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=7013
--- Comment #20 from Katrin Fischer katrin.fisc...@bsz-bw.de ---
I think in order to fix this properly we need to fix how MANUAL_INV works. It
uses the code as description and the description for the amount. We could use
the code as a
http://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=7013
Katrin Fischer katrin.fisc...@bsz-bw.de changed:
What|Removed |Added
CC|
http://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=7013
Katrin Fischer katrin.fisc...@bsz-bw.de changed:
What|Removed |Added
CC|
http://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=7013
Paul Poulain paul.poul...@biblibre.com changed:
What|Removed |Added
CC|
http://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=7013
Adrien SAURAT adrien.sau...@biblibre.com changed:
What|Removed |Added
Status|Failed QA |In
http://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=7013
--- Comment #16 from Katrin Fischer katrin.fisc...@bsz-bw.de 2012-01-17
09:05:00 UTC ---
Now as this has moved into 'In Discussion' I think it will take a while to be
resolved. I think we should fix the security problem found asap.
http://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=7013
Adrien SAURAT adrien.sau...@biblibre.com changed:
What|Removed |Added
Depends on|
http://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=7013
--- Comment #17 from Adrien SAURAT adrien.sau...@biblibre.com 2012-01-17
11:07:57 UTC ---
A patch fixing the security issue (missing placeholders) has been proposed in
bug 7450.
--
Configure bugmail:
http://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=7013
Owen Leonard oleon...@myacpl.org changed:
What|Removed |Added
Patch Status|--- |Failed QA
http://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=7013
Adrien SAURAT adrien.sau...@biblibre.com changed:
What|Removed |Added
Patch Status|Failed QA
http://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=7013
Adrien SAURAT adrien.sau...@biblibre.com changed:
What|Removed |Added
Patch Status|Needs Signoff |---
http://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=7013
--- Comment #12 from Gaetan Boisson gaetan.bois...@biblibre.com 2011-12-22
10:47:46 UTC ---
What i understood so far is that constraining the authorised value to a
formated code can generate problems elsewhere, particularly if we want
http://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=7013
Katrin Fischer katrin.fisc...@bsz-bw.de changed:
What|Removed |Added
CC|
http://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=7013
Laurence Lefaucheur laurence.lefauch...@biblibre.com changed:
What|Removed |Added
CC|
http://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=7013
--- Comment #15 from Katrin Fischer katrin.fisc...@bsz-bw.de 2011-12-22
11:44:26 UTC ---
I can see why it would make sense to do that, but I don't think we should use
internal codes like this. The search should be fixed in this case.
http://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=7013
--- Comment #9 from Adrien SAURAT adrien.sau...@biblibre.com 2011-12-06
08:16:01 UTC ---
@Chris: Ok!
@Owen: Yes, to be consistent I used the same behaviour as another error message
already implemented (when you try to use a value
http://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=7013
--- Comment #1 from Adrien SAURAT adrien.sau...@biblibre.com 2011-12-05
09:41:17 UTC ---
Created attachment 6577
-- http://bugs.koha-community.org/bugzilla3/attachment.cgi?id=6577
proposed patch
--
Configure bugmail:
http://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=7013
Adrien SAURAT adrien.sau...@biblibre.com changed:
What|Removed |Added
Priority|P5 - low
http://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=7013
--- Comment #3 from Frère Sébastien Marie semarie-k...@latrappe.fr 2011-12-05
10:17:25 UTC ---
Comment on attachment 6577
-- http://bugs.koha-community.org/bugzilla3/attachment.cgi?id=6577
proposed patch
This patch is vulnerable to
http://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=7013
--- Comment #4 from Adrien SAURAT adrien.sau...@biblibre.com 2011-12-05
11:07:29 UTC ---
I didn't change the SQL parts, they could be indeed enhanced but it would be
better to make a specific bug about this, to make things clear.
But
http://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=7013
Adrien SAURAT adrien.sau...@biblibre.com changed:
What|Removed |Added
Attachment #6577|0 |1
http://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=7013
--- Comment #7 from Chris Cormack ch...@bigballofwax.co.nz 2011-12-05
15:49:00 UTC ---
Created attachment 6582
-- http://bugs.koha-community.org/bugzilla3/attachment.cgi?id=6582
Bug 7013 : Fixing sql injection problems
--
http://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=7013
Owen Leonard oleon...@myacpl.org changed:
What|Removed |Added
Patch Status|Needs Signoff |Failed QA
http://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=7013
Sophie MEYNIEUX sophie.meyni...@biblibre.com changed:
What|Removed |Added
Status|NEW
29 matches
Mail list logo
