./mail/thunderbird, Organize, secure and customize your mail

[ CVSweb ] [ Homepage ] [ RSS ] [ Required by ] [ Add to tracker ]


Branch: CURRENT, Version: 78.6.0, Package name: thunderbird-78.6.0, Maintainer: pkgsrc-users

Thunderbird is a free email, news, and chat application with support for
add-ons, derived from the Mozilla Firefox web browser.


Required to run:
[sysutils/desktop-file-utils] [sysutils/dbus-glib] [textproc/icu] [graphics/MesaLib] [net/libIDL] [devel/nspr] [devel/libevent] [devel/libffi] [devel/nss] [x11/gtk2] [x11/pixman] [x11/gtk3] [graphics/libwebp] [lang/gcc6-libs] [multimedia/ffmpeg4]

Required to build:
[pkgtools/x11-links] [devel/nasm] [devel/yasm] [x11/xcb-proto] [lang/clang] [x11/fixesproto4] [pkgtools/cwrappers] [lang/gcc6] [x11/xorgproto] [lang/rust-bin]

Package options: dbus

Master sites:

SHA1: 12bb1be74b705104e42afc84bbf1cbf0f21539a8
RMD160: a96708b07686ff03739a4a02e52b732dd1e2f156
Filesize: 345211.633 KB

Version history: (Expand)


CVS history: (Expand)


   2021-01-01 13:58:32 by Ryo ONODERA | Files touched by this commit (4) | Package updated
Log message:
thunderbird: Update to 78.6.0

* Fix build with devel/cbindgen-0.16.0.

Changelog:
New
MailExtensions: Added browser.windows.openDefaultBrowser()

Changes
Thunderbird now only shows quota exceeded indications on the main window
MailExtensions: menus API enabled in messages being composed
MailExtensions: Honor allowScriptsToClose argument in windows.create API
function
MailExtensions: APIs that returned an accountId will reflect the account the
message belongs to, not what is stored in message headers

Fixes
Keyboard shortcut for toggling message "read" status not shown in menus
OpenPGP: After importing a secret key, Key Manager displayed properties of the
wrong key
OpenPGP: Inline PGP parsing improvements
OpenPGP: Discovering keys online via Key Manager sometimes failed on Linux
OpenPGP: Encrypted attachment "Decrypt and Open/Save As" did not work
OpenPGP: Importing keys failed on macOS
OpenPGP: Verification of clear signed UTF-8 text failed
Address book: Some columns incorrectly displayed no data
Address book: The address book view did not update after changing the name
format in the menu
Calendar: Could not import an ICS file into a CalDAV calendar
Calendar: Two "Home" calendars were visible on a new profile
Calendar: Dark theme was incomplete on Linux
Dark theme did not apply to new mail notification popups
Folder icon, message list, and contact side bar visual improvements
MailExtensions: HTTP refresh in browser content tabs did not work
MailExtensions: messageDisplayScripts failed to run in main window
Various security fixes

Security fixes:
#CVE-2020-16042: Operations on a BigInt could have caused uninitialized memory \ 
to be exposed
#CVE-2020-26971: Heap buffer overflow in WebGL
#CVE-2020-26973: CSS Sanitizer performed incorrect sanitization
#CVE-2020-26974: Incorrect cast of StyleGenericFlexBasis resulted in a heap \ 
use-after-free
#CVE-2020-26978: Internal network hosts could have been probed by a malicious webpage
#CVE-2020-35111: The proxy.onRequest API did not catch view-source URLs
#CVE-2020-35112: Opening an extension-less download may have inadvertently \ 
launched an executable instead
#CVE-2020-35113: Memory safety bugs fixed in Thunderbird 78.6
   2021-01-01 10:52:45 by Ryo ONODERA | Files touched by this commit (357)
Log message:
*: Recursive revbump from audio/pulseaudio-14.0
   2020-12-26 11:35:17 by Nia Alarie | Files touched by this commit (6)
Log message:
Remove now-actively-harmful 32-bit ARM hack from Mozilla packages.
   2020-12-07 13:30:56 by Ryo ONODERA | Files touched by this commit (3) | Package updated
Log message:
thunderbird: Update to 78.5.1

Changelog:
What's New
OpenPGP: Added option to disable email subject encryption

Changes
OpenPGP public key import now supports multi-file selection and bulk accepting \ 
imported keys
MailExtensions: getComposeDetails will wait for "compose-editor-ready" \ 
event

Fixes
New mail icon was not removed from the system tray at shutdown
"Place replies in the folder of the message being replied to" did not \ 
work when using "Reply to List"
Thunderbird did not honor the "Run search on server" option when \ 
searching messages
Highlight color for folders with unread messages wasn't visible in dark theme
OpenPGP: Key were missing from Key Manager
OpenPGP: Option to import keys from clipboard always disabled
The "Link" button on the large attachments info bar failed to open up \ 
Filelink section in Options if the user had not yet configured Filelink
Address book: Printing members of a mailing list resulted in incorrect output
Unable to connect to LDAP servers configured with a self-signed SSL certificate
Autoconfig via LDAP did not work as expected
Calendar: Pressing Ctrl-Enter in the new event dialog would create duplicate events
Various security fixes

Security fixes:
#CVE-2020-26970: Stack overflow due to incorrect parsing of SMTP server response \ 
codes
   2020-11-21 13:28:43 by Thomas Klausner | Files touched by this commit (1)
Log message:
thunderbird: Fix typo in PLIST
   2020-11-19 15:29:55 by Ryo ONODERA | Files touched by this commit (3) | Package updated
Log message:
thunderbird: Update to 78.5.0

* Fix build with lang/rust-1.47.0.

Changelog:
78.5.0
What's New
OpenPGP: Added option to disable attaching the public key to a signed message
MailExtensions: "compose_attachments" context added to Menus API
MailExtensions: Menus API now available on displayed messages

Changes
MailExtensions: browser.tabs.create will now wait for \ 
"mail-delayed-startup-finished" event

Fixes
OpenPGP: Support for inline PGP messages improved
OpenPGP: Message security dialog showed unverified keys as unavailable
Chat: New chat contact menu item did not function
Various theme and usability improvements
Various security fixes

#CVE-2020-26951: Parsing mismatches could confuse and bypass security sanitizer \ 
for chrome privileged code
#CVE-2020-16012: Variable time processing of cross-origin images during \ 
drawImage calls
#CVE-2020-26953: Fullscreen could be enabled without displaying the security UI
#CVE-2020-26956: XSS through paste (manual and clipboard API)
#CVE-2020-26958: Requests intercepted through ServiceWorkers lacked MIME type \ 
restrictions
#CVE-2020-26959: Use-after-free in WebRequestService
#CVE-2020-26960: Potential use-after-free in uses of nsTArray
#CVE-2020-15999: Heap buffer overflow in freetype
#CVE-2020-26961: DoH did not filter IPv4 mapped IP Addresses
#CVE-2020-26965: Software keyboards may have remembered typed passwords
#CVE-2020-26966: Single-word search queries were also broadcast to local network
#CVE-2020-26968: Memory safety bugs fixed in Thunderbird 78.5

78.4.3
Fixes
User interface was inconsistent when switching from the default theme to the \ 
dark theme and back to the default theme
Email subject would disappear when hovering over it with the mouse when using \ 
Windows 7 Classic theme

78.4.2
Fixes
Security fix
#CVE-2020-26950: Write side effects in MCallGetProperty opcode not accounted for

78.4.1
What's New
Thunderbird prompts for an address to use when starting an email from an address \ 
book entry with multiple addresses

Fixes
Searching global search results did not work
Link location was not focused by default when adding a hyperlink in message composer
Advanced address book search dialog was unusable
Encrypted draft reply emails lost "Re:" prefix
Replying to a newsgroup message did not open the compose window
Unable to delete multiple newsgroup messages
Appmenu displayed visual glitches
Visual glitches when selecting multiple messages in the message pane and using \ 
Ctrl+click
Switching between dark and light mode could lead to unreadable text on macOS

78.4.0
What's New
MailExtensions: browser.tabs.sendMessage API added
MailExtensions: messageDisplayScripts API added

Changes
Yahoo and AOL mail users using password authentication will be migrated to OAuth2
MailExtensions: messageDisplay APIs extended to support multiple selected messages
MailExtensions: compose.begin functions now support creating a message with \ 
attachments

Fixes
Thunderbird could freeze when updating global search index
Multiple issues with handling of self-signed SSL certificates addressed
Recipient address fields in compose window could expand to fill all available space
Inserting emoji characters in message compose window caused unexpected behavior
Button to restore default folder icon color was not keyboard accessible
Various keyboard navigation fixes
Various color-related theme fixes
MailExtensions: Updating attachments with onBeforeSend.addListener() did not work
Various security fixes

Security fixes:
#CVE-2020-15969: Use-after-free in usersctp
#CVE-2020-15683: Memory safety bugs fixed in Thunderbird 78.4

78.3.3
Fixes
OpenPGP: Improved support for encrypting with subkeys
OpenPGP message status icons were not visible in message header pane
OpenPGP Key Manager was missing from Tools menu on macOS
Creating a new calendar event did not require an event title

78.3.2
Changes
Thunderbird will no longer automatically install updates when Preferences tab is \ 
opened

Fixed
OpenPGP: Improved support for encrypting with subkeys
OpenPGP: Encrypted messages with international characters were sometimes \ 
displayed incorrectly
Single-click deletion of recipient pills with middle mouse button restored
Searching an address book list did not display results
Windows installer was unreadable with Windows in high contrast mode
Dark mode, high contrast, and Windows theming fixes
   2020-10-09 18:13:50 by Ryo ONODERA | Files touched by this commit (2) | Package updated
Log message:
thunderbird: Update to 78.3.2

Changelog:
Changes

Thunderbird will no longer automatically install updates when Preferences tab is \ 
opened

Fixes

OpenPGP: Improved support for encrypting with subkeys

OpenPGP: Encrypted messages with international characters were sometimes \ 
displayed incorrectly

Single-click deletion of recipient pills with middle mouse button restored

Searching an address book list did not display results

Windows installer was unreadable with Windows in high contrast mode

Dark mode, high contrast, and Windows theming fixes
   2020-09-28 16:11:25 by Ryo ONODERA | Files touched by this commit (2) | Package updated
Log message:
thunderbird: Update to 78.3.1

Changelog:
78.3.1
Fixes
Thunderbird crashed after updating to 78.3.0

78.3.0
Changes
OpenPGP: Improved decryption performance with large messages

OpenPGP: Do not show external key UI when disabled by preference

Account setup wizard will now open a popup when connecting to a server with a
self-signed SSL/TLS certificate

Installation of "legacy" MailExtensions now disabled

Reply-To header moved in compose window; now appears under From header

Calendar: Sidebar UI improvements

Fixes
Selecting "Cancel" on the Master Password prompt at startup incorrectly
reported corrupted OpenPGP data

OpenPGP: Creating a new key pair did not automatically select it for use

Dragging & Dropping recipient pills resulted in lost pills when an error was
present

Spellcheck suggestions were unreadable in dark theme

Calendar: Multiple password prompts opened

Linux Distributions: UI was not rendered completely when built without updater

MailExtensions: browser.folders.delete failed on IMAP folders

Various security fixes

Security fixes:
Mozilla Foundation Security Advisory 2020-44
#CVE-2020-15677: Download origin spoofing via redirect
#CVE-2020-15676: XSS when pasting attacker-controlled data into
a contenteditable element
#CVE-2020-15678: When recursing through layers while scrolling, an iterator may
have become invalid, resulting in a potential use-after-free scenario
#CVE-2020-15673: Memory safety bugs fixed in Thunderbird 78.3