News

Want to always keep up-to-date with Bugzilla news? Subscribe to announce@bugzilla.org, a read-only mailing list where we'll post announcements about new versions of Bugzilla and security advisories.

Subscribe / Browse Archives »

Current News

[ 2014 Oct 6 ] Release of Bugzilla 4.0.15, 4.2.11, 4.4.6, and 4.5.6

Today we have several new releases for you!

All of today's releases contain security fixes. We recommend that all Bugzilla administrators read the Security Advisory that was published along with these releases.

Bugzilla 4.4.6 is our latest stable release. It contains various useful bug fixes and security improvements:

Bugzilla 4.2.11 is a security update for the 4.2 branch:

Bugzilla 4.0.15 is a security update for the 4.0 branch:

Bugzilla 4.5.6 is an unstable development release. This release has not received QA testing from the Bugzilla Project, and should not be used in production environments. Development releases exist as previews of the features that the next major release of Bugzilla will contain. They also exist for testing purposes, to collect bug reports and feedback, so if you find a bug in this development release (or you don't like how some feature works) please tell us.

[ 2014 Aug 27 ] Notice about a user data leak from landfill.bugzilla.org

Some email addresses and encrypted passwords for test builds on landfill.bugzilla.org were temporarily posted on a publicly accessible server.

One of our developers discovered that, starting on about May 4th, 2014, for a period of around 3 months, during the migration of our testing server for test builds of the Bugzilla software, database dump files containing email addresses and encrypted passwords were posted on a publicly accessible server. This resulted in the accidental disclosure of the email addresses and encrypted passwords of about 97,000 users. As soon as we became aware, the database dump files were removed from the server immediately, and we’ve modified the testing process to not require the database dumps.

More detailed information can be obtained from the Bugzilla Blog

[ 2014 Jul 24 ] Release of Bugzilla 4.0.14, 4.2.10, 4.4.5, and 4.5.5

Today we have several new releases for you!

All of today's releases contain a security fix. We recommend that all Bugzilla administrators read the Security Advisory that was published along with these releases.

Bugzilla 4.4.5 is our latest stable release and contains a security fix.

Bugzilla 4.2.10 is a security update for the 4.2 branch:

Bugzilla 4.0.14 is a security update for the 4.0 branch:

Bugzilla 4.5.5 is an unstable development release. This release has not received QA testing from the Bugzilla Project, and should not be used in production environments. Development releases exist as previews of the features that the next major release of Bugzilla will contain. They also exist for testing purposes, to collect bug reports and feedback, so if you find a bug in this development release (or you don't like how some feature works) please tell us.

[ 2014 Apr 18 ] Release of Bugzilla 4.5.4, 4.4.4, 4.2.9, and 4.0.13

There are four new releases today. All of today's releases contain an important bug fix discovered since the last release.

Bugzilla 4.4.4 is our latest stable release. It is a bug fix update for the 4.4 branch:

Bugzilla 4.2.9 is a bug fix update for the 4.2 branch:

Bugzilla 4.0.13 is a bug fix update for the 4.0 branch:

Bugzilla 4.5.4 is an unstable development release. This release has not received QA testing from the Bugzilla Project, and should not be used in production environments. Development releases exist as previews of the features that the next major release of Bugzilla will contain. They also exist for testing purposes, to collect bug reports and feedback, so if you find a bug in this development release (or you don't like how some feature works) please tell us.

[ 2014 Apr 17 ] Release of Bugzilla 4.5.3, 4.4.3, 4.2.8, and 4.0.12

Today we have several new releases for you!

All of today's releases contain security fixes. We recommend that all Bugzilla administrators read the Security Advisory that was published along with these releases.

Bugzilla 4.4.3 is our latest stable release. It contains various useful bug fixes and security improvements:

Bugzilla 4.2.8 is a security update for the 4.2 branch as well as contains several bug fixes:

Bugzilla 4.0.12 is a security update for the 4.0 branch:

Bugzilla 4.5.3 is an unstable development release. This release has not received QA testing from the Bugzilla Project, and should not be used in production environments. Development releases exist as previews of the features that the next major release of Bugzilla will contain. They also exist for testing purposes, to collect bug reports and feedback, so if you find a bug in this development release (or you don't like how some feature works) please tell us.

[ 2014 Jan 27 ] Release of Bugzilla 4.5.2 and 4.4.2

Bugzilla 4.4.2 is our latest stable release. It contains various useful bug fixes:

Bugzilla 4.5.2 is an unstable development release. This release has not received QA testing from the Bugzilla Project, and should not be used in production environments. Development releases exist as previews of the features that the next major release of Bugzilla will contain. They also exist for testing purposes, to collect bug reports and feedback, so if you find a bug in this development release (or you don't like how some feature works) please tell us.

[ 2013 Oct 16 ] Release of Bugzilla 4.5.1, 4.4.1, 4.2.7, and 4.0.11

Today we have several new releases for you!

All of today's releases contain security fixes. We recommend that all Bugzilla administrators read the Security Advisory that was published along with these releases.

Bugzilla 4.4.1 is our latest stable release. It contains various useful bug fixes and security improvements:

Bugzilla 4.2.7 is a security update for the 4.2 branch and also includes several bug fixes:

Bugzilla 4.0.11 is a security update for the 4.0 branch and also includes several bug fixes:

Bugzilla 4.5.1 is an unstable development release. This release has not received QA testing from the Bugzilla Project, and should not be used in production environments. Development releases exist as previews of the features that the next major release of Bugzilla will contain. They also exist for testing purposes, to collect bug reports and feedback, so if you find a bug in this development release (or you don't like how some feature works) please tell us.

[ 2013 May 22 ] Release of Bugzilla 4.4 and 4.2.6

Today the Bugzilla Project is extremely proud to announce the release of Bugzilla 4.4!

It has been over a year since we released Bugzilla 4.2 on February 2012, and this new major release comes with several new features and improvements. This release contains major improvements to WebServices, which were our main target in this release, a rewritten tagging system, a real MIME type auto-detection for attachments, improved support for Oracle, performance improvements and lots of other enhancements.

We hope that you enjoy and appreciate the results of this past year of hard work by our entirely-volunteer community.

Bugzilla 4.2.6 is a bug fix update for the 4.2 branch:

EOL for 3.6.x

Please note that the release of Bugzilla 4.4 also marks End Of Life for the Bugzilla 3.6 series, meaning that there will be no further updates for the 3.6.x series, even if there are serious security issues found in that series. We recommend that all installations running the 3.6 series upgrade as soon as possible to 4.4.

[ 2013 Feb 19 ] Release of Bugzilla 4.4rc2, 4.2.5, 4.0.10, and 3.6.13

Today we have several new releases for you!

All of today's releases contain security fixes. We recommend that all Bugzilla administrators read the Security Advisory that was published along with these releases.

Bugzilla 4.4rc2 is our second Release Candidate for Bugzilla 4.4. This release has received QA testing, and should be considerably more stable than the development releases before it. It is still not considered fully stable, and so you should understand that if you use it, you use it at your own risk.

If feedback from this release candidate indicates that it is mostly stable, then Bugzilla 4.4 will be released in a few weeks. If feedback indicates that more extensive fixes are needed, there may be another release candidate after this one.

Bugzilla 4.2.5 is our latest stable release. It contains various useful bug fixes and security improvements:

Bugzilla 4.0.10 is a security update for the 4.0 branch:

Bugzilla 3.6.13 is a security update for the 3.6 branch:

[ 2012 Nov 13 ] Release of Bugzilla 4.4rc1, 4.2.4, 4.0.9, and 3.6.12

Today we have several new releases for you!

All of today's releases contain security fixes. We recommend that all Bugzilla administrators read the Security Advisory that was published along with these releases.

Bugzilla 4.4rc1 is our first Release Candidate for Bugzilla 4.4. This release has received QA testing, and should be considerably more stable than the development releases before it. It is still not considered fully stable, and so you should understand that if you use it, you use it at your own risk.

If feedback from this release candidate indicates that it is mostly stable, then Bugzilla 4.4 will be released in a few weeks. If feedback indicates that more extensive fixes are needed, there may be another release candidate after this one.

Bugzilla 4.2.4 is our latest stable release. It contains various useful bug fixes and security improvements:

Bugzilla 4.0.9 is a security update for the 4.0 branch:

Bugzilla 3.6.12 is a security update for the 3.6 branch:

[ 2012 Aug 30 ] Release of Bugzilla 4.3.3, 4.2.3, 4.0.8, and 3.6.11

Today we have several new releases for you!

All of today's releases contain security fixes. We recommend that all Bugzilla administrators read the Security Advisory that was published along with these releases.

Bugzilla 4.2.3 is our latest stable release. It contains various useful bug fixes and security improvements:

Bugzilla 4.0.8 is a security update for the 4.0 branch:

Bugzilla 3.6.11 is a security update for the 3.6 branch:

Bugzilla 4.3.3 is an unstable development release. This release has not received QA testing from the Bugzilla Project, and should not be used in production environments. Development releases exist as previews of the features that the next major release of Bugzilla will contain. They also exist for testing purposes, to collect bug reports and feedback, so if you find a bug in this development release (or you don't like how some feature works) please tell us.

[ 2012 Jul 26 ] Release of Bugzilla 4.3.2, 4.2.2, 4.0.7, and 3.6.10

Today we have several new releases for you!

All of today's releases contain security fixes. We recommend that all Bugzilla administrators read the Security Advisory that was published along with these releases.

Bugzilla 4.2.2 is our latest stable release. It contains various useful bug fixes and security improvements:

Bugzilla 4.0.7 is a security update for the 4.0 branch:

Bugzilla 3.6.10 is a security update for the 3.6 branch:

Bugzilla 4.3.2 is an unstable development release. This release has not received QA testing from the Bugzilla Project, and should not be used in production environments. Development releases exist as previews of the features that the next major release of Bugzilla will contain. They also exist for testing purposes, to collect bug reports and feedback, so if you find a bug in this development release (or you don't like how some feature works) please tell us.

[ 2012 Apr 18 ] Release of Bugzilla 4.3.1, 4.2.1, 4.0.6, and 3.6.9

Today we have several new releases for you!

All of today's releases contain security fixes. We recommend that all Bugzilla administrators read the Security Advisory that was published along with these releases.

Bugzilla 4.2.1 is our latest stable release. It contains various useful bug fixes and security improvements:

Bugzilla 4.0.6 is a security update for the 4.0 branch:

Bugzilla 3.6.9 is a security update for the 3.6 branch:

Bugzilla 4.3.1 is an unstable development release. This release has not received QA testing from the Bugzilla Project, and should not be used in production environments. Development releases exist as previews of the features that the next major release of Bugzilla will contain. They also exist for testing purposes, to collect bug reports and feedback, so if you find a bug in this development release (or you don't like how some feature works) please tell us.

[ 2012 Feb 22 ] Release of Bugzilla 4.2 and 4.0.5

Today the Bugzilla Project is extremely proud to announce the release of Bugzilla 4.2!

It has been a year since we released Bugzilla 4.0 in February of 2011, and this new major release comes with several new features and improvements. This release contains major improvements to search, support for SQLite, improved WebServices, and lots of other enhancements.

We hope that you enjoy and appreciate the results of this past year of hard work by our entirely-volunteer community.

All of today's releases contain security fixes. We recommend that all Bugzilla administrators read the Security Advisory that was published along with these releases.

Bugzilla 4.0.5 is a security update for the 4.0 branch:

4.2 only available using bzr / No CVS mirror available

Bugzilla 4.2 is our first stable release to be only available using bzr (Bazaar). This means you cannot use CVS anymore to upgrade to or install 4.2. The 4.0 branch is the last branch available on CVS, meaning you can still upgrade to 4.0.5 using CVS (or bzr). For more information, check the Download page.

EOL for 3.4.x

Please note that the release of Bugzilla 4.2 also marks End Of Life for the Bugzilla 3.4 series, meaning that there will be no further updates for the 3.4.x series, even if there are serious security issues found in that series. We recommend that all installations running the 3.4 series upgrade as soon as possible to 4.2.

[ 2012 Jan 31 ] Release of Bugzilla 4.2rc2, 4.0.4, 3.6.8, and 3.4.14

Today we have several new releases for you!

All of today's releases contain security fixes. We recommend that all Bugzilla administrators read the Security Advisory that was published along with these releases.

Bugzilla 4.2rc2 is our second Release Candidate for Bugzilla 4.2. This release has received QA testing, and should be considerably more stable than the development releases before it. It is still not considered fully stable, and so you should understand that if you use it, you use it at your own risk. This should hopefully be the last candidate before 4.2 final is released.

Bugzilla 4.0.4 is our latest stable release. It contains various useful bug fixes and security improvements:

Bugzilla 3.6.8 is a security update for the 3.6 branch:

Bugzilla 3.4.14 is a security update for the 3.4 branch:

[ 2011 Dec 28 ] Release of Bugzilla 4.2rc1, 4.0.3, 3.6.7, and 3.4.13

Almost a year after Bugzilla 4.0, the Bugzilla team is proud to announce the first release candidate for Bugzilla 4.2. This release contains major improvements to search, support for SQLite, improved WebServices, and lots of other enhancements. Also, all of today's releases contain security fixes. We recommend that all Bugzilla administrators read the Security Advisory that was published along with these releases.

Bugzilla 4.2rc1 is our first Release Candidate for Bugzilla 4.2. This release has received QA testing, and should be considerably more stable than the development releases before it. It is still not considered fully stable, and so you should understand that if you use it, you use it at your own risk.

If feedback from this release candidate indicates that it is mostly stable, then Bugzilla 4.2 will be released in a few weeks. If feedback indicates that more extensive fixes are needed, there may be another release candidate after this one.

Bugzilla 4.0.3 is our latest stable release. It contains various useful bug fixes and security improvements:

Bugzilla 3.6.7 is a security update for the 3.6 branch:

Bugzilla 3.4.13 is a security update for the 3.4 branch:

Note that once we release the final Bugzilla 4.2, the 3.4.x series will reach End Of Life. This means that it won't get any new security fixes, leaving these installations vulnerable to these exploits. Installations still running 3.4.x or older are strongly encouraged to upgrade to 4.0.x or 4.2rc1.

[ 2011 August 4 ] Release of Bugzilla 4.1.3, 4.0.2, 3.6.6, and 3.4.12

Today we have several new releases for you!

All of today's releases contain security fixes. We recommend that all Bugzilla administrators read the Security Advisory that was published along with these releases.

Bugzilla 4.0.2 is our latest stable release. It contains various useful bug fixes and security improvements:

Bugzilla 3.6.6 is a security update for the 3.6 branch:

Bugzilla 3.4.12 is a security update for the 3.4 branch:

Bugzilla 4.1.3 is an unstable development release. This release has not received QA testing from the Bugzilla Project, and should not be used in production environments. Development releases exist as previews of the features that the next major release of Bugzilla will contain. They also exist for testing purposes, to collect bug reports and feedback, so if you find a bug in this development release (or you don't like how some feature works) please tell us.

[ 2011 Apr 27 ] Release of Bugzilla 4.1.2, 4.0.1, 3.6.5, and 3.4.11

Many users had difficulty installing Bugzilla 4.0, 3.6.4, and 3.4.10, due to a bug related to the "Math::Random::Secure" library. These releases fix that bug among other issues.

Bugzilla 4.0.1 is our latest stable release. It contains various useful bug fixes:

Bugzilla 3.6.5 is a bug-fix update for the 3.6 branch:

Bugzilla 3.4.11 is an update to fix installation problems on the 3.4 branch:

Bugzilla 4.1.2 is an unstable development release. This release has not received QA testing from the Bugzilla Project, and should not be used in production environments. Development releases exist as previews of the features that the next major release of Bugzilla will contain. They also exist for testing purposes, to collect bug reports and feedback, so if you find a bug in this development release (or you don't like how some feature works) please tell us.

For details on what's new in this development release and what's going on with the Bugzilla Project, see our latest Bugzilla Update.

[ 2011 March 13 ] Release of Bugzilla 4.1.1

Bugzilla 4.1.1 is our first unstable development release toward 4.2. Please test it and give us feedback! We are still relatively early in the development cycle for 4.2, so this is the ideal time to tell us if you want some feature to work significantly differently.

This release has not received QA testing from the Bugzilla Project, and should not be used in production environments. Development releases exist as previews of the features that the next major release of Bugzilla will contain. They also exist for testing purposes, to collect bug reports and feedback, so if you find a bug in this development release (or you don't like how some feature works) please tell us.

For details on what's new in this development release and what's going on with the Bugzilla Project, see our latest Bugzilla Update.

[ 2011 February 15 ] Release of Bugzilla 4.0!

Today the Bugzilla Project is extremely proud to announce the release of Bugzilla 4.0, the most exciting new version of Bugzilla in our history.

Following on the heels of Bugzilla 3.6, Bugzilla 4.0 brings many fantastic new features and user interface improvements, including:

  • A fully-redesigned Advanced Search page
  • Automatic duplicate detection when filing bugs
  • Drop-down autocomplete for every field that accepts a user name or email address
  • Full control and retrieval of bugs via the WebService, including updating existing bugs
  • Redesigned home page icons from J. Pink Design
  • Numerous usability improvements
  • and much, much more...

Compared to Bugzilla 3.0, which we released in 2007, Bugzilla 4.0 is a tremendous leap forward, with almost all the rough edges polished off, a huge number of new features, and almost every UI updated and improved.

Bugzilla 4.0 is our best release ever, and we hope that you enjoy and appreciate the results of these last several months of hard work by our entirely-volunteer community.

EOL for 3.2.x

Please note that the release of Bugzilla 4.0 also marks End Of Life for the Bugzilla 3.2 series, meaning that there will be no further updates for the 3.2.x series, even if there are serious security issues found in that series. We recommend that all installations running the 3.2 series upgrade as soon as possible to 4.0.

[ 2011 January 24 ] Release of Bugzilla 3.2.10, 3.4.10, 3.6.4, and 4.0rc2

Some serious security issues were discovered in Bugzilla, and as a result we have four security releases for you today. We recommend that all Bugzilla administrators read the Security Advisory that was published along with these releases, and that you update as soon as possible.

Bugzilla 4.0rc2 is our second Release Candidate for Bugzilla 4.0. This release has received QA testing, and should be considerably more stable than the development releases before it. It is still not considered fully stable, and so you should understand that if you use it, you use it at your own risk.

If feedback from this release candidate indicates that it is mostly stable, then Bugzilla 4.0 will be released in a few weeks. If feedback indicates that more extensive fixes are needed, there may be another release candidate after this one.

Bugzilla 3.6.4 is our latest stable release. It contains various useful bug fixes in addition to the security patches. This is likely to be the last bug-fix release in the 3.6 series. Once Bugzilla 4.0 is released, the 3.6 series will only get security fixes.

Bugzilla 3.4.10 is a security update for the 3.4 branch:

Bugzilla 3.2.10 is a security update for the 3.2 branch. Please remember that with the release of Bugzilla 4.0, the Bugzilla 3.2 series will reach End Of Life. That means that this is very likely to be the last security release ever for the 3.2 series.

[ 2010 November 02 ] Release of Bugzilla 3.2.9, 3.4.9, 3.6.3, and 4.0rc1

Today is the release of our first Release Candidate for 4.0, in addition to the bug-fix release for our stable branch, 3.6.3, and two security-only releases for older branches, 3.4.9 and 3.2.9. All of today's releases contain important security fixes, and we recommend that all Bugzilla administrators read the Security Advisory that was published along with these releases.

Bugzilla 4.0rc1 is our first Release Candidate for Bugzilla 4.0. This release has received QA testing, and should be considerably more stable than the development releases before it. It is still not considered fully stable, and so you should understand that if you use it, you use it at your own risk. In particular, certain aspects of the WebServices have not yet been tested as part of this Release Candidate, so they may change before the final release.

If feedback from this release candidate indicates that it is mostly stable, then Bugzilla 4.0 will be released in a few weeks. If feedback indicates that more extensive fixes are needed, there may be another release candidate after this one.

Bugzilla 3.6.3 is our latest stable release. It contains various useful bug fixes and security improvements:

Bugzilla 3.4.9 is a security update for the 3.4 branch:

Bugzilla 3.2.9 is a security update for the 3.2 branch:

Note that once we release the final Bugzilla 4.0, the 3.2.x series will reach End Of Life. This means that no new updates will be released for 3.2.x, even if there are serious security issues found in that series. All installations running 3.2.x are strongly encouraged to update to 3.6.x or 4.0rc1.

[ 2010 August 05 ] Release of Bugzilla 3.2.8, 3.4.8, 3.6.2, and 3.7.3

There are four new releases today. All of today's releases contain security fixes. We recommend that all Bugzilla administrators read the Security Advisory that was published along with these releases.

Bugzilla 3.6.2 is our latest stable release. It contains various useful bug fixes and security improvements:

Bugzilla 3.4.8 is a security update for the 3.4 branch:

Bugzilla 3.2.8 is a security update for the 3.2 branch:

Bugzilla 3.7.3 is our third unstable development release leading to Bugzilla 4.0. We have done a fair amount of QA on this release. However, QA found many bugs that have not yet been fixed, so this release should not be used in production environments. Development releases exist as previews of the features that a future release of Bugzilla will contain. They also exist for testing purposes, to collect bug reports and feedback. So, if you find a bug in this development release (or you don't like how some feature works) please tell us.

[ 2010 July 05 ] Release of Bugzilla 3.7.2

Today we have a new development snapshot that fixes a serious security issue in the previous development snapshot.

Bugzilla 3.7.2 is the new development snapshot that fixes this issue. However, please do remember that this is an unstable development release. This release has not received QA testing from the Bugzilla Project, and should not be used in production environments. Development releases exist as previews of the features that the next major release of Bugzilla will contain. They also exist for testing purposes, to collect bug reports and feedback, so if you find a bug in this development release (or you don't like how some feature works) please tell us.

[ 2010 June 24 ] Release of Bugzilla 3.2.7, 3.4.7, 3.6.1, and 3.7.1

Today we have four new releases! One new development snapshot (3.7.1), two new stable releases (3.6.1 and 3.4.7) and one update for the legacy 3.2 branch, 3.2.7.

All of today's releases contain security fixes. We recommend that all Bugzilla administrators read the Security Advisory that was published along with these releases.

Bugzilla 3.6.1 is our latest stable release. It contains various useful bug fixes and security improvements:

Bugzilla 3.4.7 is a security and bug-fix update for the 3.4 branch. This is the last bug-fix release for the 3.4 series--after this, it will only get new updates if there are security issues discovered in the 3.4 series.

Bugzilla 3.2.7 is a security update for the 3.2 branch:

Bugzilla 3.7.1 is an unstable development release, with a ton of exciting new features and UI improvements. However, this release has received no testing from the Bugzilla Project, so it should not be used in production environments. Development releases exist as previews of the features that the next major release of Bugzilla will contain. They also exist for testing purposes, to collect bug reports and feedback, so if you find a bug in this development release (or you don't like how some feature works) please tell us.

For details on what's new in this development release and what's going on with the Bugzilla Project, see our latest Bugzilla Update.

[ 2010 April 13 ] Release of Bugzilla 3.6!

Today the Bugzilla Project is pround to announce the release of the next major version of Bugzilla: 3.6! Bugzilla 3.6 has a lot of exciting new features for Bugzilla users and administrators, including migration from other bug-tracking systems, a simple "Browse" interface for browsing open bugs in a system, and some usability improvements resulting from a scientific usability study conducted on Bugzilla.

Bugzilla Extensions

One of the most exciting new features of Bugzilla 3.6 is Extensions. These are self-contained files that you can "drop in" to a Bugzilla installation to add new features or change Bugzilla's behavior, without modifying any existing code! Anybody can write and distribute their own Extension--Bugzilla 3.6 includes very detailed documentation on how to write and distribute Extensions, and even includes a script that will set up the framework of a new Extension for you so that you can get right to coding.

Bugzilla 3.6 ships with one simple Extension that you can enable, and there are also already a few publicly-available Extensions for Bugzilla 3.6, that any Bugzilla 3.6 installation can install to add new functionality to their system.

Some developers have been using pre-release versions of the new Extensions system in Bugzilla 3.6, and here's what they have to say about it:

  • Bugzilla Extensions really help me to do my customizations, giving me flexibility and reducing the impact in the tool's core. Congratulations Bugzilla team! -Tiago Mello, IBM Linux Technology Center.
  • With the new Extensions system, I can change almost any part of the UI without having to worry about upgrades. Plus, the Extension installation directions are super simple! Making usability tweaks for Bugzilla just got a lot easier. -Guy Pyrzak, UI Designer
  • Writing Bugzilla Extensions is some of the most fun I've had programming in years. -Max Kanat-Alexander, Assistant Project Lead, Bugzilla Project.

We look forward to seeing what you do with the new Extensions system!

End of Life: Bugzilla 3.0.x

With the release of Bugzilla 3.6, the Bugzilla 3.0.x series has reached End Of Life. This means that there will be no new releases in the 3.0.x series, even if serious security issues are discovered in 3.0.x. Bugzilla 3.0.11 is the last Bugzilla 3.0.x version that will be released. We strongly recommend that any Bugzilla installation still running Bugzilla 3.0.x promptly upgrade to Bugzilla 3.6.

[ 2010 Mar 08 ] Release of Bugzilla 3.6rc1 and 3.4.6

Bugzilla 3.6rc1 is our first Release Candidate for Bugzilla 3.6. This release has received QA testing, and should be considerably more stable than the development releases before it. It is still not considered fully stable, and so you should understand that if you use it, you use it at your own risk.

If feedback from this release candidate indicates that it is mostly stable, then Bugzilla 3.6 will be released in a few weeks. If feedback indicates that more extensive fixes are needed, there may be another release candidate after this one.

Since this is a Release Candidate, it includes Release Notes and a listing of New Features. Make sure to check out the "Other Enhancements and Changes" section in particular--there are a lot of great improvements listed in there!

Bugzilla 3.4.6 is our latest stable release. It contains various useful bug fixes:

[ 2010 January 31 ] Release of Bugzilla 3.0.11, 3.2.6, 3.4.5, and 3.5.3

Today we have four new releases:

Bugzilla 3.4.5 is our latest stable release. It contains various useful bug fixes and security improvements:

Bugzilla 3.2.6 is a security update for the 3.2 branch:

Bugzilla 3.0.11 is a security update for the 3.0 branch:

Bugzilla 3.5.3 is our latest unstable development release. We are now feature-frozen for 3.6, so though there will be a few functional changes between now and the final release, this is mostly what 3.6 will look like when it comes out. As usual with development releases, this release has not received QA testing from the Bugzilla Project, and should not be used in production environments. Development releases exist as previews of the features thatthe next major release of Bugzilla will contain. They also exist for testing purposes, to collect bug reports and feedback, so if you find a bug in this development release (or you don't like how some feature works) please tell us.

For details on what's new in this development release and what's going on with the Bugzilla Project, see the latest Bugzilla Update.

All of today's releases contain security fixes. We recommend that all Bugzilla administrators read the Security Advisory that was published along with these releases.

[ 2009 November 18 ] Release of Bugzilla 3.4.4 and 3.5.2

We are releasing Bugzilla 3.4.4 and Bugzilla 3.5.2 today, primarily to fix one security issue. We recommend that all Bugzilla administrators read the Security Advisory that was published along with these releases.

Bugzilla 3.4.4 is our latest stable release, and contains the security fix in addition to a few minor bug fixes:

Bugzilla 3.5.2 contains the security fix for the 3.5.x series. As usual, this development release has not received QA testing from the Bugzilla Project, and should not be used in production environments. Development releases exist as previews of the features that the next major release of Bugzilla will contain. They also exist for testing purposes, to collect bug reports and feedback. So if you find a bug in this development release (or you don't like how some feature works) please tell us.

[ 2009 November 05 ] Release of Bugzilla 3.5.1, 3.4.3, and 3.0.10

Today the Bugzilla Project has three new releases, 3.5.1, 3.4.3, and 3.0.10!

Bugzilla 3.4.3 is our latest stable release. It contains various useful bug fixes:

Bugzilla 3.0.10 fixes one bug with the WebService introduced in Bugzilla 3.0.9:

Bugzilla 3.5.1 is an unstable development release. This release has not received QA testing from the Bugzilla Project, and should not be used in production environments. Development releases exist as previews of the features that the next major release of Bugzilla will contain. They also exist for testing purposes, to collect bug reports and feedback, so if you find a bug in this development release (or you don't like how some feature works) please tell us.

For details on what's new in this development release and what's going on with the Bugzilla Project, see The Bugzilla Update.

[ 2009 September 11 ] Release of Bugzilla 3.4.2, 3.2.5, and 3.0.9

Today the Bugzilla Project is releasing Bugzilla 3.4.2, 3.2.5, and 3.0.9. All of these releases contain a very important security fix. See the Security Advisory for details. If you are running 2.23 or newer, you should upgrade immediately. If you are unable to update to the latest version, then please apply the patches for the issues as described in the Security Advisory.

Bugzilla 3.4.2 is our latest stable release. In addition to the security fix, it contains various useful bug fixes and minor improvements:

Bugzilla 3.2.5 is a security update for the 3.2 branch which also contains a few minor bug fixes for the 3.2 series:

Bugzilla 3.0.9 is a security update for the 3.0 branch:

[ 2009 August 01 ] Release of Bugzilla 3.4.1

A security issue was found in Bugzilla 3.4 after its release. We are releasing 3.4.1 to address this issue. We recommend that all Bugzilla administrators running 3.3.4, 3.4rc1, or 3.4 read the Security Advisory that was published along with this release, and upgrade immediately if your installation is affected.

[ 2009 July 28 ] Release of Bugzilla 3.4

Bugzilla 3.4 is a new major release from the Bugzilla Project! It contains a LOT of great new features, including:

  • A greatly-simplified bug-filing page.
  • A new front page for Bugzilla.
  • Users' email addresses are now hidden from logged-out users (helps prevent users receiving spam)
  • Emails can be sent in the background (which greatly speeds up editing bugs)
  • URLs of searches are now much shorter, so they can be more easily shared.
  • Exciting new custom field enhancements
  • A field that allows you to refer to bugs in other Bugzillas.

And lots of other exciting new features! You can see the complete list in the Release Notes.

The Bugzilla Project would like to thank all of the organizations and individuals that contributed to Bugzilla 3.4! Without you, there wouldn't be any Bugzilla at all!

EOL For Bugzilla 2.22

The release of Bugzilla 3.4 marks the End Of Life for the Bugzilla 2.22.x series. This means that there will be no further updates released for Bugzilla 2.22.x, even if there are security holes found in that release. If you are running Bugzilla 2.22.x, we recommend that you upgrade to 3.4 immediately.

Instructions for upgrading Bugzilla are in the Upgrading section of the Bugzilla Guide. You should also read the Notes for Upgraders in the Release Notes for Bugzilla 3.4, 3.2, and 3.0.

[ 2009 Jul 08 ] Release of Bugzilla 3.4rc1 and 3.2.4

Today we have two releases for you, a new release candidate for 3.4, and an update for the stable 3,2 branch.

All of today's releases contain security fixes. We recommend that all Bugzilla administrators read the Security Advisory that was published along with these releases.

Bugzilla 3.4rc1 is our first Release Candidate for Bugzilla 3.4. This release has received QA testing, and should be considerably more stable than the development releases before it. It is still not considered fully stable, and so you should understand that if you use it, you use it at your own risk. However, it should be fine for smaller or non-critical production installations.

If feedback from this release candidate indicates that it is mostly stable, then Bugzilla 3.4 will be released in a few weeks. If feedback indicates that more extensive fixes are needed, there may be another release candidate after this one.

Bugzilla 3.2.4 is our latest stable release. It contains various useful bug fixes and security improvements:

[ 2009 March 30 ] Release of Bugzilla 3.2.3 and 3.3.4

We are releasing two versions of Bugzilla, one bug-fix release for our stable branch, and one development release. All of today's releases contain security fixes. We recommend that all Bugzilla administrators read the Security Advisory that was published along with these releases.

Bugzilla 3.2.3 is our latest stable release. It contains various useful bug fixes and security improvements:

Bugzilla 3.3.4 is an unstable development release. This release has not received QA testing from the Bugzilla Project, and should not be used in production environments. Development releases exist as previews of the features that the next major release of Bugzilla will contain. They also exist for testing purposes, to collect bug reports and feedback, so if you find a bug in this development release (or you don't like how some feature works) please tell us.

For details on what's new in this development release and what's going on with the Bugzilla Project, see our latest Status Update.

[ 2009 February 03 ] Release of Bugzilla 3.2.2, 3.0.8, and 3.3.3

A critical bug was found in Bugzilla 3.2.1, 3.0.7, and 3.3.2 immediately after their release. If you are running these versions and your installation runs under mod_perl, it is very important that you upgrade to these new releases.

See today's Security Advisory for details on the bug being fixed.

[ 2009 February 02 ] Release of Bugzilla 3.2.1, 3.0.7, 2.22.7, and 3.3.2

Today we have some major security improvements for Bugzilla in the form of four releases. We strongly recommend that all Bugzilla administrators read the Security Advisory for these releases.

Bugzilla 3.2.1 is our latest stable release. It contains various useful bug fixes in addition to major security improvements:

Bugzilla 3.0.7 and Bugzilla 2.22.7 are security updates for their branches.

Bugzilla 3.3.2 is an unstable development release. In addition to the security fixes that all the other releases contain, this release contains numerous new features and improvements. For details on what's new, see our latest Status Update.

Note that 3.3.2 is very unstable and should not be used in a production environment.

[ 2009 January 05 ] Release of Bugzilla 3.3.1

Bugzilla 3.3.1 is our first development snapshot of what will eventually become Bugzilla 3.4. Right now this snapshot should be consisdered very unstable--it has received no testing whatsoever. It is just here to give you an idea of what the new features in Bugzilla 3.4 will be like.

This is a fairly important period for feedback, since we will have a feature freeze for Bugzilla 3.4 on January 29--fairly soon. If you think a feature in 3.3.1 should work some other way, now is the time to let us know!

[ 2008 November 29 ] Release of Bugzilla 3.2!

Today we are releasing the first major release of Bugzilla after 3.0, Bugzilla 3.2. Bugzilla 3.2 has an enormous number of new features, including some great user interface enhancements, custom statuses, new custom field types, Oracle support, and lots of other improvements.

You can also see our latest Status Update to find out what's going on in the Bugzilla Project, our plans for Bugzilla 4.0, and all that.

The release of Bugzilla 3.2 means that the Bugzilla 2.20 series has now reached End-Of-Life. This means that no development will be done on the 2.20 series anymore, and no new 2.20 releases will be made, even if there are security holes in the 2.20 series.

[ 2008 November 15 ] NASA Uses Bugzilla for Endeavour Shuttle and International Space Station

On Friday, November 14, 2008, mission control at NASA had its first live use of a two new problem-tracking systems. These new systems are based on Bugzilla, with customizations by Everything Solved and the NASA Ames Research Center Human-Computer Interaction Group, with support from the San Jose State University Foundation.

The first piece of software is called PRACA (the Problem Reporting and Corrective Action System), and it is used to track problems discovered while building and testing shuttle components, so that mission control and various NASA departments can have problem-solving information at their fingertips.

PRACA will also be used for the future Constellation space program due to begin in 2010. It will replace 40 different database systems at various different departments of NASA, centralizing problem tracking for the Constellation program.

Another system based on Bugzilla, IFI (Items for Investigation), is used for tracking in-flight problems during International Space Station missions.

NASA has been an active contributor to the Bugzilla Project, funding the development of numerous upstream features in Bugzilla, including all of the new custom field types that will appear in Bugzilla 3.2, and even more custom field features that will appear in Bugzilla 3.4.

The Bugzilla Project is proud that it has been able to play such an important role in mankind's exploration of space. We are happy that our open-source software may one day help us reach the stars.

[ 2008 November 06 ] Release of Bugzilla 3.2rc2, 3.0.6, 2.22.6, and 2.20.7

Today there are four releases of Bugzilla!

The biggest release is Bugzilla 3.2rc2. There have been a lot of changes since 3.2rc1, particularly in the UI, so we wanted to put out another release candidate to get feedback. If all goes well with this release candidate, it should become 3.2 final in a few weeks with very few changes. 3.2rc2 is stable enough to use in small production environments, but major installations should wait for 3.2 final before upgrading.

We fixed a security bug in all releases that are coming out today, so there is also a Security Advisory to read.

Other than 3.2rc2, there are three other releases: 3.0.6, 2.22.6, and 2.20.7. 3.0.6 has some minor bug fixes, 2.22.6 brings Perl 5.10 compatibility to the 2.22 series, and 2.20.7 is just a security release.

[ 2008 August 12 ] Release of Bugzilla 3.2rc1, 3.0.5, and 2.22.5

There are three releases of Bugzilla today. See our Status Update for details about the releases and information about what's going on in the Bugzilla Project.

Bugzilla 3.2rc1 is our first Release Candidate for Bugzilla 3.2. If everything goes well with this release, Bugzilla 3.2 should be released soon.

Bugzilla 3.0.5 is a bug-fix and polish release for the 3.0.x series.

Bugzilla 2.22.5 is a security-only release, with no other fixes or changes.

All of today's releases include one security fix. See the Security Advisory for details.

[ 2008 May 04 ] Release of Bugzilla 3.0.4, 3.1.4, 2.22.4 and 2.20.6

Today we have four Bugzilla releases! Read below and in our Status Update for details!

Security Advisory

All of these releases contain security fixes, and so you should definitely upgrade if you are affected by the fixed vulnerabilities. Read the Security Advisory for more details.

3.0.4

Bugzilla 3.0.4 is the latest stable release of Bugzilla. It contains several bug fixes and minor improvements over 3.0.3. Any installation currently running any 3.0.x version is encouraged to upgrade to 3.0.4.

3.1.4

Bugzilla 3.1.4 is our latest development release. It is considerably more stable than 3.1.3, but is still not recommended for production environments. Use this release at your own risk.

2.22.4 and 2.20.6

Bugzilla 2.22.4 and Bugzilla 2.20.6 are security-fix releases for the 2.22 and 2.20 series. If you are using any 2.22 or 2.20 version, we strongly recommend you update to these versions.

[ 2008 February 1 ] Release of Bugzilla 3.1.3

3.1.3

Bugzilla 3.1.3 has had massive changes: among those, a fresh new user interface for editing bugs and experimental support for Oracle databases (caution: read the Status Update before using Oracle with Bugzilla). This release should be considered unstable and only used in testing environments.

[ 2008 January 8 ] Release of Bugzilla 3.0.3

3.0.3

Bugzilla 3.0.3 is the last stable release of the 3.0.x series. In addition to various bug fixes, it contains important performance improvements for mod_perl installations.

There is no development release at this time, as the current CVS HEAD code is not stable enough even for a development release.

[ 2007 September 18 ] Release of Bugzilla 3.0.2 and 3.1.2

We have two new releases, primarily to fix an important security issue discovered in the 3.0.x and 3.1.x series.

3.0.2

Bugzilla 3.0.2 contains the security fix and a few other minor bug fixes.

3.1.2

Bugzilla 3.1.2 also contains the security fix, but just like 3.1.1, it has had massive changes and received little or no testing. It should be considered unstable and only used in testing environments.

[ 2007 August 23 ] Release of Bugzilla 3.0.1, 3.1.1, 2.22.3, and 2.20.5

Today the Bugzilla project has four releases!

3.0.1

Bugzilla 3.0.1 is the first bug-fix release for the 3.0 series. 3.0 was very stable, but 3.0.1 adds a lot of little polish fixes that greatly improve the experience of using Bugzilla.

3.1.1

Bugzilla 3.1.1 is our first development release toward Bugzilla 3.2. It has a huge number of new features, but is extremely unstable. It has not been tested, and should not be used in a production environment. It may fail in critical ways, or destroy your data. However, it is useful as a feature preview and for testing purposes.

2.22.3 and 2.20.5

Bugzilla 2.22.3 and Bugzilla 2.20.5 are security-fix and critical bug-fix releases for the 2.22 and 2.20 series. If you are using any 2.22 or 2.20 version, we strongly recommend you update to these versions.

Security Advisory

All four releases also contain security fixes, and so you should definitely update if you want your installation to remain secure. Read the Security Advisory for more details.

[ 2007 May 09 ] Release of Bugzilla 3.0!

In 1998, the first open-source version of Bugzilla, 2.0, was released to the world without much fanfare, just this little post on the netscape.public.mozilla.announce newsgroup.

Nine years later, Bugzilla is used by thousands of companies around the world with millions of total users. It has become the de-facto standard in open-source bug tracking. Thousands of companies have moved away from their costly commercial bug-tracking systems to Bugzilla, usually finding Bugzilla more flexible and more full-featured than the system they'd been paying thousands or hundreds of thousands of dollars for, and proving that open source software really can produce a competitive product.

Today, the Bugzilla Project is extremely proud to announce the release of Bugzilla 3.0, and just like Terry said in 1998, "We like the new version much better, and hope you will too."

Here's just a sampling of the major new features in version 3.0:

  • Custom Fields
  • mod_perl support for greatly-improved performance
  • Per-Product Permissions
  • XML-RPC Interface
  • Create and Modify Bugs by Email
  • and much, much more...

Bugzilla 3.0 also has a much-improved code base over previous versions of Bugzilla. Improvements are still happening, but long-time customizers and coders of Bugzilla will notice significant improvements. And if you haven't seen Bugzilla code since 2.16 or so, prepare to be (pleasantly) surprised!

As always, we welcome open source contributors to Bugzilla, which is made entirely by volunteers around the world. You too can be part of the team that makes a product used by thousands of people daily.

[ 2007 February 26 ] Release of Bugzilla 3.0rc1

We've released our first Release Candidate of Bugzilla 3.0, Bugzilla 3.0rc1! This is a major step towards our final release, and with your help we should be able to release Bugzilla 3.0 by April.

What help do we need? Report bugs! The whole purpose of Release Candidates is to really shake out any remaining bugs that we haven't found, so if you find one, make sure that you file it!

We also have a new Status Update for you, so you can find out what's going on with the Bugzilla Project!

[ 2007 Feb 02 ] Release of Bugzilla 2.22.2, 2.20.4, and 2.23.4

Bugzilla 2.22.2 is a bug-fix and security release:

We also released Bugzilla 2.20.4, a security-fix release for the 2.20 series.

Finally, you can use Bugzilla 2.23.4 in your testing environments. 2.23.4 is fairly stable, since it's currently running on bugzilla.mozilla.org, but it still hasn't gone through QA yet, so it may have unfound critical issues.

There is a Security Advisory for all three releases. Please read it, particularly if you were using 2.23.3.

[ 2006 October 15 ] Release of Bugzilla 2.18.6, 2.20.3, 2.22.1, and 2.23.3

We have many releases for you, today:

  • Bugzilla 2.18.6 and Bugzilla 2.20.3 are security-fix releases for our older branches. (Bugzilla 2.20.3 also contains some non-security bug fixes.)
  • Bugzilla 2.22.1 is our first bug-fix release in the 2.22 series, and contains many useful fixes that improve the experience of using Bugzilla.
  • Finally, we are releasing an unstable development snapshot, Bugzilla 2.23.3. This snapshot has both custom fields and mod_perl support, but has not been tested as thoroughly as our other releases. The 2.23 series will eventually culminate in Bugzilla 3.0.

Also, read our latest Status Update to find out what's going on with the Bugzilla Project, and learn about all the new features in our latest development snapshot!

Users of the 2.18.x series should note that 2.18.x will reach End Of Life when Bugzilla 3.0 is released. There are more details in the Status Update.

[ 2006 July 09 ] Release of Bugzilla 2.23.2

Today we have a new development snapshot for you, Bugzilla 2.23.2. It has a lot of improvements and changes since 2.23.1, so we wanted to get it out and get it tested!

However, remember that this is a development release, and so it has not been thoroughly tested. You should only use it in a testing environment!

[ 2006 April 22 ] Release of Bugzilla 2.22 (also 2.20.2 and 2.23.1)

The Bugzilla Project is proud to announce the official release of Bugzilla 2.22. Bugzilla 2.22 is a major new feature release for Bugzilla, containing a large number of bug fixes and enhancements, including complete PostgreSQL support, UTF-8 support, user-impersonation capabilities, and more.

We are also releasing Bugzilla 2.20.2, a bug-fix release for the 2.20 branch, recommended for all 2.20 branch users.

We also have a development snapshot, Bugzilla 2.23.1, the branch which will someday be released as 2.24 or 3.0. This snapshot is not tested, and should only be installed in a test environment. It's entirely possible that it contains a bug which will delete your entire bug database. Or, it could be perfectly safe. Since it hasn't been tested, nobody knows for sure. You Have Been Warned.

[ 2006 February 20 ] Release of Bugzilla 2.22rc1, 2.20.1, 2.18.5 and 2.16.11

The Bugzilla Project is proud to announce our first Release Candidate for Bugzilla 2.22. Bugzilla 2.22 will be a major new feature release for Bugzilla, containing a large number of bug fixes and enhancements, including complete PostgreSQL support, UTF-8 support, user-impersonation capabilities, and many more features. Also see the draft Release Notes for 2.22.

We are also releasing our first bug-fix release for the 2.20 series, 2.20.1. All users of the 2.20 series are highly recommended to upgrade to 2.20.1, as it contains many improvements and fixes to the 2.20 branch.

There are also two security releases, 2.18.5 and 2.16.11.

Please note that this is very likely the final release on the 2.16 branch. After Bugzilla 2.22 is released, there will be no more security updates from the Bugzilla Project for the 2.16 branch.

[ 2005 December 27 ] Security Advisory for 2.16.x Shadow Database Users

We issued a security advisory today for users of the shadow database feature in Bugzilla 2.16.10. Newer versions of Bugzilla are not affected, nor are you affected if you don't use a shadow database.

[ 2005 October 19 ] Bugzilla T-shirt Available

We now have a Bugzilla T-shirt available at the Mozilla Store. It's a great way to support the project and show off your cool taste in bug trackers to your friends! Get yours today!

[ 2005 September 30 ] Release of Bugzilla 2.20 (also 2.21.1 and 2.18.4)

We are proud to announce the release of Bugzilla 2.20, a major new feature release for Bugzilla. Bugzilla 2.20 includes a large number of major new features, and hundreds of small enhancements and bug fixes over Bugzilla 2.18.

We also have two other releases, a security fix for the 2.18 series, (Bugzilla 2.18.4),and our latest development snapshot (Bugzilla 2.21.1).

For details on all the releases, see our new, very detailed Status Update.

All of these releases fix security flaws discovered in older versions of Bugzilla. For details, read the Security Advisory.

There is no release on the Bugzilla 2.16 branch, because it was not affected by any of the security issues. 2.16 users should note that support for 2.16 will be totally discontinued with the release of Bugzilla 2.22, and so they are encouraged to ugprade to Bugzilla 2.20 as soon as possible.

[ 2005 August 08 ] Release of Bugzilla 2.20rc2

We are proud to announce the second Release Candidate of Bugzilla 2.20, a major new feature release for Bugzilla.

Bugzilla 2.20rc2 is recommended to be used for testing purposes only. The final release of Bugzilla 2.20 will be shaped by your feedback over the next few weeks.

You can see a list of still-open bugs that we mean to fix before the final release of Bugzilla 2.20.

For those who want a stable version of Bugzilla, we recommend Bugzilla 2.18.x.

[ 2005 July 09 ] Release of Bugzilla 2.18.3

There was a bug in 2.18.2 that caused users to be unable to use the Search page, and possibly other pages as well.

This has been fixed with our release of 2.18.3:

[ 2005 July 07 ] Release of Bugzilla 2.18.2 and 2.20rc1

We are proud to announce the first Release Candidate of Bugzilla 2.20, a major new feature release for Bugzilla. Bugzilla 2.20 includes support for PostgreSQL, a new "Large Attachment" storage mechanism, a new level of bug classification, user-defined periodic reminders by email, and many other new features.

Bugzilla 2.20rc1 is recommended to be used for testing purposes only. The final release will be shaped by your feedback over the next few weeks.

We are also releasing a bug-fix release for the 2.18 series, 2.18.2. The 2.18 series is recommended for users in production environments. All users of the 2.18 series are recommended to upgrade to 2.18.2 as soon as possible.

There is also a Security Advisory for Bugzilla 2.18.1 and 2.19.3.

We would like to remind users of the 2.16 series that we expect to stop maintenance on 2.16 around October 2005, so they should plan to upgrade to 2.18 or 2.20 before then.

[ 2005 May 18 ] Release of Bugzilla 2.16.10

Under many circumstances, users could not enter a bug on 2.16.9. This has been fixed with our release of Bugzilla 2.16.10:

[ 2005 May 11 ] Release of Bugzilla 2.18.1, 2.19.3, and 2.16.9

Today we are releasing Bugzilla 2.18.1, a bug-fix release for the 2.18 series. It contains various useful bug and security fixes for the original 2.18 release.

We are also releasing a very unstable development snapshot, 2.19.3, for those who want to track the bleeding edge of Bugzilla development. We expect our next development release after this to be Release Candidate 1 (2.20rc1).

Finally, there is a security-fix release for the old 2.16 series, version 2.16.9. Users of 2.16 are still encouraged to upgrade to 2.18 as soon as it is possible.

And read our latest Status Update! It contains a lot of useful information, particularly about the latest development release (which has no release notes besides this Status Update).

[ 2005 Jan 15 ] Release of Bugzilla 2.18 (also 2.19.2 and 2.16.8)

After over two years of work, the Bugzilla Team is pleased to announce the release of Bugzilla 2.18. Bugzilla 2.18 is our best release yet, with over 1000 bug fixes and improvements since 2.16.

Also released is development snapshot 2.19.2, and the latest bugfix release for 2.16: version 2.16.8.

We have also posted a new status update to help keep everyone informed of where the project is heading.

[ 2005 Jan 14 ] Bugzilla receives award from Game Developer Magazine

CMP Media, publisher of Game Developer Magazine, has issued a press release announcing the winners of the seventh annual Front Line Awards, honoring excellence and innovation in tools for game development in 2004. Bugzilla was given an award for the Programming category. The full list of awards will be featured in their January 2005 issue.

[ 2005 Jan 06 ] Cross-site scripting vulnerability in Bugzilla 2.16.7 and 2.18rc3

We've released a security advisory and patches for a potential cross-site scripting issue with Bugzilla's error messages. Not all browsers are affected, but to protect all of your users, applying the patches is recommended. These fixes will be included in the upcoming 2.16.8 and 2.18 releases as well as the next snapshot from the trunk (either 2.20rc1 or 2.19.2).

[ 2004 Oct 24 ] Bugzilla 2.16.7, 2.18rc3, and 2.19.1 are available

The Bugzilla Team is please to announce the release of our third release candidate for Bugzilla 2.18. This release will be shaped by your feedback over the next few weeks.

Also released are stable version 2.16.7 and development snapshot version 2.19.1. All three releases fix a few security issues.

We are doing a 3rd release candidate because there was a major change to the group security mechanisms in the Charting code. We would appreciate any testing, particularly related to the new "Charts over time" code using groups to limit access to charts.

We have also posted a new status update to help keep everyone informed of where the project is heading.

[ 2004 Oct 13 ] Brazilian Portuguese localization updated for 2.18rc2

Felipe Gaúcho has announced the availability of the 2.18rc2 version of the pt_BR localization pack. You can find it listed on the Bugzilla download page or on the Brazilian localization project site.

The localization pack is also available via Sourceforge's CVS. Access details are on the project site.

[ 2004 Sep 22 ] Bugzilla-Submit 0.6 Released

Christian Reis has released a new version of bugzilla-submit, a command-line utility to post new bugs to a Bugzilla installation. This version fixes issues with .netrc parsing of base URLs, Python version checking and processing of Operating-System and URL fields. It also include text and manpage versions of the documentation (which was only available as XML source in previous versions).

Note that bugzilla-submit requires Python 2.3. Bug reports should go to bugzilla.mozilla.org.

[ 2004 Jul 27 ] Bugzilla 2.18rc2 Released

Our second release candidate for Bugzilla 2.18 is now available. There are a few major issues addressed that snuck into 2.18rc1, so if you're already running 2.18rc1, an upgrade is strongly recommended. Information about what's new and what's still left to fix is on the 2.18 Release Status page.

[ 2004 Jul 10 ] Bugzilla 2.16.6 and 2.18rc1 Released

The Bugzilla Team is please to announce the release of our first release candidate for Bugzilla 2.18. This release will be shaped by your feedback over the next few weeks.

Also released is version 2.16.6. Both releases fix a number of security issues.

The 2.18rc1 release is also the first to offer installation on Windows without modification of Bugzilla itself. See the download page for details.

We have also posted a new status update to help keep everyone informed of where the project is heading.

[ 2004 Mar 21 ] Bugzilla 2.16.x documentation now available as PDF

A long-standing bug in the 2.16 branch documentation sources has been knocked out, and we're now pleased to offer the 2.16 documentation in PDF format on the documentation page. The 2.17.x documentation has been available this way for a while now.

[ 2004 Mar 03 ] Bugzilla 2.17.7 and 2.16.5 Released

The Bugzilla Team is pleased to announce the release of the Bugzilla 2.17.7 developer snapshot. For details on the newest features and bugfixes, see the new status update.

Also released today is Bugzilla 2.16.5. Version 2.16.5 is the latest stable Bugzilla release, and contains fixes to a regression and some compatibility issues in Bugzilla 2.16.4.

[ 2004 Mar 03 ] bugzilla-submit 0.5 posted

Christian Reis and Eric S. Raymond have released an initial version of bugzilla-submit, a command-line utility to post new bugs to a Bugzilla installation. We'd like to invite testing and feedback on the tool and its functionality; note that it requires Python 2.3. Post bug reports as usual to bugzilla.mozilla.org.

[ 2003 Nov 09 ] Bugzilla 2.17.6 Released

We had a small "oops" with the 2.17.5 release, whereas one of the new features that was introduced also introduced a new security hole. For the full details, read the security advisory. Note that this affects version 2.17.5 only and the current stable version 2.16.4 is not affected. Since this is the development branch, there have been other checkins besides the security fix. For a complete list, click the "2.17.5 → 2.17.6" link on the changelog page. Version 2.17.6 is available on the download page.

[ 2003 Nov 02 ] Bugzilla 2.16.4, 2.17.5 Released

The Bugzilla Team is pleased to announce the release of the Bugzilla 2.17.5 developer snapshot. For details on the newest features and bugfixes, see the new status update. The 2.17.5 snapshot also contains multiple security fixes.

Also released today is Bugzilla 2.16.4. Version 2.16.4 is the latest stable Bugzilla release, and fixes multiple security bugs in Bugzilla 2.16.3. Read the security advisory below for details.

[ 2003 Oct 01 ] Korean Localization Available

The download page has been updated with a Korean localization for Bugzilla 2.16.3.

[ 2003 Sep 14 ] New Localizations Available

The download page has been updated with additional localizations of Bugzilla.

New Languages:
  • Belarusian (2.16.3)
  • French (2.16.2)
Updated versions:
  • Chinese (2.17.4)

Many thanks to the localizers for taking on this thankless job!

[ 2003 Apr 24 ] Bugzilla 2.16.3, 2.17.4 Released

The Bugzilla Team is pleased to announce the release of the Bugzilla 2.17.4 developer snapshot. For details on the newest features and bugfixes, see the new status update. The 2.17.4 snapshot also contains multiple security fixes.

Also released today is Bugzilla 2.16.3. 2.16.3 is the latest stable Bugzilla release, and fixes multiple security bugs in Bugzilla 2.16.2. Read the security advisory below for details.

[ 2003 Jan 16 ] Bugzilla Getting Exposure at LinuxWorld

Bugopolis is showing off their Bug Station, a server hardware product that comes with Bugzilla pre-installed on it, at the LinuxWorld expo next week. IDG (the event promoters) announced today that the Bug Station was a finalist in the LinuxWorld Open Source Product Excellence Awards, in the Best Developer Tools category. The Bugzilla Team offers their congratulations to Bugopolis for becoming a finalist, and best wishes at the show! Read IDG's press release.

[ 2003 Jan 02 ] Bugzilla 2.16.2, 2.17.3 Released

The Bugzilla Team is pleased to announce the release of the Bugzilla 2.17.3 developer snapshot. For details on the newest features and bugfixes, see the new status update.

Also released today is Bugzilla 2.16.2. 2.16.2 is the latest stable Bugzilla release, and fixes two security bugs in Bugzilla 2.16.1. Read the security advisory below for details.

[ 2003 Jan 02 ] Bugzilla 2.14.5 to be the last 2.14 release

The Bugzilla Team has released Bugzilla 2.14.5 today to address two security issues which were recently discovered. As we've been warning for the last several months, we are no longer supporting the 2.14 branch as of the end of 2002, so this release marks the last for the 2.14 line. All sites who haven't already done so are strongly encouraged to upgrade to 2.16.2 so you can continue to receive security updates.

[ 2002 Nov 25 ] Bugzilla 2.17.1 Developer Snapshot available

The Bugzilla 2.17.1 developer snapshot is now available on the download page.

[ 2002 Nov 18 ] New Status Update

We'll be releasing a development snapshot tarball of Bugzilla 2.17.1 soon. We've taken a moment in the mean-time to bring you up-to-date with what's been going on in Bugzilla since our last release. Read all about it in our current status update.

[ 2002 Oct 01 ] Bugzilla 2.16.1 Released

The Bugzilla Team is pleased to announce the release of Bugzilla 2.16.1. 2.16.1 is the latest stable Bugzilla release, and fixes a number of security bugs and other defects in Bugzilla 2.16, originally released on July 28th.

There is also a new status update available.

[ 2002 Oct 01 ] Bugzilla 2.14.4 Released

The Bugzilla Team announces the release of Bugzilla 2.14.4. 2.14.4 is the latest release on the 2.14 branch and fixes two security bugs involving groups and email and a bug involving the bug_email.pl script.

[ 2002 Jul 28 ] Bugzilla 2.16 Released

The Bugzilla Team is relieved and pleased to finally announce the release of Bugzilla 2.16, and also a new status update. The product of 11 months of hard work, Bugzilla 2.16 is the first release of Bugzilla to have a templatised UI, allowing administrators easily to customise the look and feel of their Bugzilla without editing Perl code.

There are no security fixes in 2.16 that were not in 2.16rc2 - but anyone running a version of Bugzilla older than that needs to read the 2.16rc2 and 2.14.2 security advisory and previous advisories. Bugzilla 2.16 is the best Bugzilla, and the Bugzilla team strongly recommends its use over all other versions.

[ 2002 Jul 28 ] Bugzilla 2.14.3 Released

Due to a small "brown bag" issue in 2.14.2, 2.14.3 has been released. This release contains two extra fixes to 2.14.2 - we fixed column sorting in buglists, and made a system call in the optional, unsupported, contributed email subsystem more secure.

The 2.14.x branch is Bugzilla's older stable branch. New installations and upgraders are strongly recommended to use 2.16.

[ 2002 Jun 08 ] Bugzilla 2.16 Release Candidate 2 and Bugzilla 2.14.2 are now available

Based on feedback from Bugzilla 2.16rc1, and some recent security issues that were found, we've now made available a second release candidate for 2.16 as well as a security update for the 2.14 branch. All of the security fixes are also included in 2.16rc2. For details, see the following links:

Check out the download page for links to download or update to it. Unless any major problems are found, this is what we'd like to release as version 2.16.

[ 2002 May 10 ] Bugzilla 2.16 Release Candidate 1 is now available

At long last and after much banging of heads against walls, we are proud to announce the availability of a release candidate for Bugzilla 2.16. Check out the download page for links to download or update to it. Unless any major problems are found, this is what we'd like to release as version 2.16. Be sure to check out our latest status update before downloading.

Older news