Path to this page:
Subject: CVS commit: pkgsrc/mail/thunderbird
From: Ryo ONODERA
Date: 2024-06-18 05:12:25
Message id: 20240618031225.69610FC74@cvs.NetBSD.org
Log Message:
mail/thunderbird: Update to 115.12.0
* Drop gtk2 dependency.
Changelog:
What's Fixed
fixed
POP error messages from server were not displayed
fixed
Some OpenPGP messages were incorrectly reported as being partially signed or
encrypted
fixed
Autocrypt header was missing from some encrypted messages due to case-sensitive
email address matching
fixed
"Convert to Table" dialog content was formatted incorrectly
fixed
Opening Theme Settings reverted the current theme to the startup theme
fixed
Security fixes
Security fixes:
Mozilla Foundation Security Advisory 2024-28
#CVE-2024-5702: Use-after-free in networking
#CVE-2024-5688: Use-after-free in JavaScript object transplant
#CVE-2024-5690: External protocol handlers leaked by timing attack
#CVE-2024-5691: Sandboxed iframes were able to bypass sandbox restrictions to
open a new window
#CVE-2024-5692: Bypass of file name restrictions during saving
#CVE-2024-5693: Cross-Origin Image leak via Offscreen Canvas
#CVE-2024-5696: Memory Corruption in Text Fragments
#CVE-2024-5700: Memory safety bugs fixed in Firefox 127, Firefox ESR 115.12,
and Thunderbird 115.12
Files: