pkgsrc.se | The NetBSD package collection

./mail/thunderbird, Organize, secure and customize your mail

[ CVSweb ] [ Homepage ] [ RSS ] [ Required by ] [ Add to tracker ]

Branch: pkgsrc-2018Q1, Version: 52.8.0, Package name: thunderbird-52.8.0, Maintainer: pkgsrc-users

Mozilla Thunderbird is a redesign of the Mozilla mail component. The
goal is to produce a cross platform stand alone mail application using
the XUL user interface language. This version uses the gtk2 toolkit.

Required to run:
[net/libIDL] [sysutils/desktop-file-utils] [devel/nspr] [devel/nss] [devel/libffi] [graphics/jpeg] [graphics/MesaLib] [graphics/cairo] [multimedia/ffmpeg3] [multimedia/libvpx] [textproc/icu] [textproc/hunspell] [x11/pixman] [x11/gtk3] [x11/gtk2] [audio/pulseaudio]

Required to build:
[devel/yasm] [pkgtools/x11-links] [pkgtools/cwrappers] [x11/fixesproto4] [x11/xcb-proto] [x11/xorgproto]

Package options: gtk3, mozilla-lightning, pulseaudio

Master sites: (Expand)

SHA1: b8aabca309c15ac239a8334df63b330cd6a35c39
RMD160: 91120b683059ccd26092add8450480a41f3efdb3
Filesize: 224981.23 KB

Version history: (Expand)

(2018-06-18) Updated to version: thunderbird-52.8.0
(2018-04-04) Package added to pkgsrc.se, version thunderbird-52.7.0 (created)

CVS history: (Expand)

2018-06-17 22:57:20 by S.P.Zeidler | Files touched by this commit (2) | Package updated

Log message:
Pullup ticket #5768 - requested by bsiegert
mail/thunderbird: security update

Revisions pulled up:
- mail/thunderbird/Makefile                                     1.210
- mail/thunderbird/distinfo                                     1.200

-------------------------------------------------------------------
   Module Name:    pkgsrc
   Committed By:   ryoon
   Date:           Fri Jun  1 19:49:40 UTC 2018

   Modified Files:
           pkgsrc/mail/thunderbird: Makefile distinfo

   Log message:
   Update to 52.8.0

   Changelog:
   #CVE-2018-5183: Backport critical security fixes in Skia
   #CVE-2018-5184: Full plaintext recovery in S/MIME via chosen-ciphertext attack
   #CVE-2018-5154: Use-after-free with SVG animations and clip paths
   #CVE-2018-5155: Use-after-free with SVG animations and text paths
   #CVE-2018-5159: Integer overflow and out-of-bounds write in Skia
   #CVE-2018-5161: Hang via malformed headers
   #CVE-2018-5162: Encrypted mail leaks plaintext through src attribute
   #CVE-2018-5170: Filename spoofing for external attachments
   #CVE-2018-5168: Lightweight themes can be installed without user interaction
   #CVE-2018-5174: Windows Defender SmartScreen UI runs with less secure behavior
    for downloaded files in Windows 10 April 2018 Update
   #CVE-2018-5178: Buffer overflow during UTF-8 to Unicode string conversion
    through legacy extension
   #CVE-2018-5185: Leaking plaintext through HTML forms
   #CVE-2018-5150: Memory safety bugs fixed in Firefox 60, Firefox ESR 52.8,
    and Thunderbird 52.8

   To generate a diff of this commit:
   cvs rdiff -u -r1.209 -r1.210 pkgsrc/mail/thunderbird/Makefile
   cvs rdiff -u -r1.199 -r1.200 pkgsrc/mail/thunderbird/distinfo