Path to this page:
Subject: CVS commit: pkgsrc/mail/thunderbird
From: Ryo ONODERA
Date: 2024-02-11 16:12:46
Message id: 20240211151246.2227EF9A4@cvs.NetBSD.org
Log Message:
mail/thunderbird: Update to 115.7.0
Changelog:
115.7.0:
What's New
new
Autocrypt Gossip key distribution added
Fixes
fixed
When starting Thunderbird, unread message count did not appear on collapsed
accounts
fixed
Blank window was sometimes displayed when starting Thunderbird
fixed
Thunderbird "--chrome" flag incorrectly opened extra messenger.xhtml
fixed
Add-ons did not start correctly when opening Thunderbird from other programs
fixed
Drag-and-drop installation of add-ons did not work if Add-ons Manager was
opened from Unified Toolbar
fixed
Double-clicking empty space in message pane incorrectly opened the currently
selected message
fixed
Canceling SMTP send before progress reached 100% did not stop message from
sending
fixed
PDF attachments open in a separate tab did not always restore correctly after
restarting Thunderbird
fixed
Some OpenPGP dialogs were too small for their contents
fixed
Account Manager did not work with hostnames entered as punycode
fixed
Downloading complete message from POP3 headers caused message tab/window to
close when "Close message window/tab on move or delete" was enabled
fixed
Some ECC GPG keys could not be exported
fixed
Contacts deleted from mailing list view still visible in Details view
fixed
After selecting contacts in Address Book and starting a new search, the search
results list did not update
fixed
Various UX and visual improvements
fixed
Security fixes
Security fixes:
Mozilla Foundation Security Advisory 2024-04
#CVE-2024-0741: Out of bounds write in ANGLE
#CVE-2024-0742: Failure to update user input timestamp
#CVE-2024-0746: Crash when listing printers on Linux
#CVE-2024-0747: Bypass of Content Security Policy when directive unsafe-inline
was set
#CVE-2024-0749: Phishing site popup could show local origin in address bar
#CVE-2024-0750: Potential permissions request bypass via clickjacking
#CVE-2024-0751: Privilege escalation through devtools
#CVE-2024-0753: HSTS policy on subdomain could bypass policy of upper domain
#CVE-2024-0755: Memory safety bugs fixed in Firefox 122, Firefox ESR 115.7, and
Thunderbird 115.7
115.6.1:
What's New
new
OAuth2 now supported for comcast.net
Fixes
fixed
High CPU usage sometimes occurred with IMAP CONDSTORE (conditional STORE)
enabled
fixed
Replying to a collapsed thread via keyboard shortcut (Ctrl+R/Cmd+R) opened a
reply for every message in the thread
fixed
Enabling Grouped By view after reversing sort order of column header caused
messages to be grouped incorrectly
fixed
Opening thread pane context menu via keyboard did not always scroll view to
selection
fixed
New mail indicator for POP3 accounts did not indicate new messages ready to be
downloaded
fixed
Messages could not be moved to folders using Message > Move To if text or a
link in the message had been clicked on first
fixed
MIME part boundaries were not properly terminated
115.6.0:
Fixes
fixed
Message selection misbehaved after selecting a sub-message in an expanded
thread, collapsing the thread, then pressing up/down to move selection
fixed
Thunderbird now attempts to reconnect on a new connection after SMTP 4xx errors
fixed
HTML FileLink attachments used the wrong encoding
fixed
Security fixes
Security fixes:
Mozilla Foundation Security Advisory 2023-55
#CVE-2023-50762: Truncated signed text was shown with a valid OpenPGP signature
#CVE-2023-50761: S/MIME signature accepted despite mismatching message date
#CVE-2023-6856: Heap-buffer-overflow affecting WebGL DrawElementsInstanced
method with Mesa VM driver
#CVE-2023-6857: Symlinks may resolve to smaller than expected buffers
#CVE-2023-6858: Heap buffer overflow in nsTextFragment
#CVE-2023-6859: Use-after-free in PR_GetIdentitiesLayer
#CVE-2023-6860: Potential sandbox escape due to VideoBridge lack of texture
validation
#CVE-2023-6861: Heap buffer overflow affected nsWindow::PickerOpen(void) in
headless mode
#CVE-2023-6862: Use-after-free in nsDNSService
#CVE-2023-6863: Undefined behavior in ShutdownObserver()
#CVE-2023-6864: Memory safety bugs fixed in Firefox 121, Firefox ESR 115.6, and
Thunderbird 115.6
115.5.2:
Fixes
fixed
"Compact" option was missing from folder context menu for IMAP \
accounts using
maildir
fixed
Message list could not be properly read by screen readers in table view
fixed
Messages with slow-loading images were delayed being marked as read
fixed
Messages opened in background tab were incorrectly marked as read
fixed
Mark All Read did not work for virtual folders
fixed
Delete (trash icon) in message display did not work in Unified folders
fixed
Unified folders were missing "Mark Folder Read" option in context menu
fixed
"Reply to List" was incorrectly disabled in Unified Toolbar since \
Thunderbird
115.4.1
fixed
Sorting by column with "Grouped By" enabled then performing a quick filter
search caused blank message pane
fixed
Attachment list did not always appear if remote message content loaded slowly
fixed
Messages in outbox were not shown as unread by default
fixed
"Apply columns to" sometimes failed to apply columns to a root folder \
and its
descendants
fixed
Global search results displayed as a list did not allow threads to be collapsed
fixed
"Quick Filter" button on toolbar was disabled when viewing search \
results as a
list
fixed
Folder open hover delay was too short when using drag-and-drop
fixed
Parent folders with collapsed subfolders did not consistently display new mail
indicator or message count for subfolders
fixed
Message list scroll position could move randomly when switching folders
fixed
Undoing deletion of local messages required using "Undo" (Ctrl-Z) twice
fixed
IMAP messages deleted in Thunderbird still appeared in other email clients that
don't respect messages marked "\deleted"
fixed
IMAP folder discovery was slowed by status bar message updates
fixed
Servers with non-LDH (letters-digits-hyphens) hostnames, such as those
containing non-ASCII Unicode characters, could not be found
fixed
Images could not be copied and pasted from one message into another
fixed
Troubleshooting page (about:support) did not work on profiles with no outgoing
email server, such as news-only profiles
fixed
Minimize/maximize button order was incorrect when placing window titlebar
buttons on left-hand side
fixed
OpenPGP integraton with smartcard using latest version of Gpg4Win failed
fixed
Various accessibility improvements
fixed
Various UX and visual improvements
Files: