Subject: CVS commit: pkgsrc/mail/thunderbird60
From: Ryo ONODERA
Date: 2019-12-28 06:55:53
Message id: 20191228055553.C5AD1FA97@cvs.NetBSD.org
Log Message:
Update to 60.9.1

* Fix build with rust-1.39.0

Changelog:
60.9.1:
Fixed
Problem with Google authentication (OAuth2)

60.9.0:
New
Offer to configure Exchange accounts for Office365. A third-party add-on is \ 
required for this account type. IMAP still exists as alternative.

Security fixes
#CVE-2019-11739: Covert Content Attack on S/MIME encryption using a crafted \ 
multipart/alternative message
#CVE-2019-11746: Use-after-free while manipulating video
#CVE-2019-11744: XSS by breaking out of title and textarea elements using innerHTML
#CVE-2019-11742: Same-origin policy violation with SVG filters and canvas to \ 
steal cross-origin images
#CVE-2019-11752: Use-after-free while extracting a key value in IndexedDB
#CVE-2019-11743: Cross-origin access to unload event attributes
#CVE-2019-11740: Memory safety bugs fixed in Firefox 69, Firefox ESR 68.1, \ 
Firefox ESR 60.9, Thunderbird 68.1, and Thunderbird 60.9
Files:
RevisionActionfile
1.3modifypkgsrc/mail/thunderbird60/Makefile
1.2modifypkgsrc/mail/thunderbird60/distinfo
1.1addpkgsrc/mail/thunderbird60/files/atom_macro.rs
1.1addpkgsrc/mail/thunderbird60/files/bindings.rs
1.1addpkgsrc/mail/thunderbird60/files/pseudo_element_definition.rs
1.1addpkgsrc/mail/thunderbird60/files/structs.rs
1.1addpkgsrc/mail/thunderbird60/patches/patch-third__party_rust_cssparser_src_parser.rs