Subject: CVS commit: pkgsrc/mail/thunderbird
From: Ryo ONODERA
Date: 2024-06-18 05:12:25
Message id: 20240618031225.69610FC74@cvs.NetBSD.org

Log Message:
mail/thunderbird: Update to 115.12.0

* Drop gtk2 dependency.

Changelog:
What's Fixed

fixed
POP error messages from server were not displayed

fixed
Some OpenPGP messages were incorrectly reported as being partially signed or
encrypted

fixed
Autocrypt header was missing from some encrypted messages due to case-sensitive
email address matching

fixed
"Convert to Table" dialog content was formatted incorrectly

fixed
Opening Theme Settings reverted the current theme to the startup theme

fixed
Security fixes

Security fixes:
Mozilla Foundation Security Advisory 2024-28
#CVE-2024-5702: Use-after-free in networking
#CVE-2024-5688: Use-after-free in JavaScript object transplant
#CVE-2024-5690: External protocol handlers leaked by timing attack
#CVE-2024-5691: Sandboxed iframes were able to bypass sandbox restrictions to
 open a new window
#CVE-2024-5692: Bypass of file name restrictions during saving
#CVE-2024-5693: Cross-Origin Image leak via Offscreen Canvas
#CVE-2024-5696: Memory Corruption in Text Fragments
#CVE-2024-5700: Memory safety bugs fixed in Firefox 127, Firefox ESR 115.12,
 and Thunderbird 115.12

Files:
RevisionActionfile
1.317modifypkgsrc/mail/thunderbird/Makefile
1.267modifypkgsrc/mail/thunderbird/distinfo
1.17modifypkgsrc/mail/thunderbird/mozilla-common.mk