Navigation:
Browse pkgsrc
(this page)| 2020-06-07 12:30:38 by Nia Alarie | Files touched by this commit (2) |
Log message: thunderbird: Add SUPERSEDES |
2020-06-05 05:57:58 by Ryo ONODERA | Files touched by this commit (3) |  |
Log message: thunderbird: Update to 68.9.0 Changelog: Fixes fixed Custom headers added for searching or filtering could not be removed fixed Calendar: Today Pane updated prior to loading all data fixed Stability improvements fixed Various security fixes Security fixes: #CVE-2020-12399: Timing attack on DSA signatures in NSS library #CVE-2020-12405: Use-after-free in SharedWorkerService #CVE-2020-12406: JavaScript Type confusion with NativeTypes #CVE-2020-12410: Memory safety bugs fixed in Thunderbird 68.9.0 #CVE-2020-12398: Security downgrade with IMAP STARTTLS leads to information leakage |
| 2020-05-27 13:40:29 by Ryo ONODERA | Files touched by this commit (2) |
Log message: thunderbird: Update to 68.8.1 Changelog: Fixes: fixed IMAP stability improvements fixed HTML tags in IRC topic changes were rendered incorrectly fixed MailExtensions: Websockets could not be used |
| 2020-05-14 16:12:46 by Nia Alarie | Files touched by this commit (3) |
Log message: thunderbird: Sync DESCR with reality. Thunderbird is no longer Mozilla-branded. It no longer uses gtk2. Future versions of Thunderbird will not have ESR releases because every Thunderbird release is now an ESR release. |
| 2020-05-14 14:14:39 by Ryo ONODERA | Files touched by this commit (2) | |
Log message: thunderbird: Update to 68.8.0 Changelog: Fixes Account Manager: text fields were too small in some cases Account Manager: Authentication method did not update when selecting an SMTP server Links with embedded credentials did not open on Windows Messages were sometimes sent with a badly formed address when filled from the \ address book Accessibility: Screen readers were reporting too many activities from the status bar MailExtensions: Setting IMAP messages as read with browser.messages.updated \ failed to persist Various security fixes Security fixes: #CVE-2020-12397: Sender Email Address Spoofing using encoded Unicode characters #CVE-2020-12387: Use-after-free during worker shutdown #CVE-2020-6831: Buffer overflow in SCTP chunk input validation #CVE-2020-12392: Arbitrary local file access with 'Copy as cURL' #CVE-2020-12393: Devtools' 'Copy as cURL' feature did not fully escape \ website-controlled data, potentially leading to command injection #CVE-2020-12395: Memory safety bugs fixed in Thunderbird 68.8.0 |
| 2020-04-24 23:48:46 by Ryo ONODERA | Files touched by this commit (2) | |
Log message: thunderbird: Update to 68.7.0 Changelog: What's New new MailExtensions: Raw message source available to MailExtensions Changes changed MailExtensions: messages.update function extended to mark messages as \ junk or not junk changed MailExtensions: browser.compose.begin functions no longer expand mailing \ lists Fixes fixed Various improvements to account setup when connecting to an Exchange server fixed Thread collapsed when opening news message in a new window fixed Addons not automatically updated to compatible version after upgrade from \ Thunderbird 60 fixed Updating addons did not prompt when requesting new permissions fixed Extra recipients panel not keyboard-accessible fixed Accessibility: Status bar was not detected by screenreaders fixed MailExtensions: messages.query by folder name did not require accountsRead \ permission fixed Calendar: Invitations with embedded null bytes did not always decode correctly fixed Calendar: Cancelled events didn't show with a line-through fixed Various security fixes Security fixes: #CVE-2020-6819: Use-after-free while running the nsDocShell destructor #CVE-2020-6820: Use-after-free when handling a ReadableStream #CVE-2020-6821: Uninitialized memory could be read when using the WebGL \ copyTexSubImage method #CVE-2020-6822: Out of bounds write in GMPDecodeData when processing large images #CVE-2020-6825: Memory safety bugs fixed in Thunderbird 68.7.0 |
| 2020-03-30 21:46:03 by Joerg Sonnenberger | Files touched by this commit (22) |
Log message: Fix build with libc++ by making the template wrapper do what it is supposed to do. Don't mess with math.h internals. Honor ressource limit changes during build. |
| 2020-03-15 14:28:51 by Ryo ONODERA | Files touched by this commit (3) | |
Log message: thunderbird: Update to 68.6.0 CVhangelog: 68.6.0 new Thunderbird now displays a popup window when starting up on a new profile changed Thunderbird now provides partial updates resulting in smaller downloads fixed Searching in message bodies led to false negatives under some circumstances in quoted-printable encoded HTML bodies "Get New Messages for All Accounts" not working for OAuth2-authenticated IMAP accounts Various security fixes #CVE-2020-6805: Use-after-free when removing data about origins #CVE-2020-6806: BodyStream::OnInputStreamReady was missing protections against \ state confusion #CVE-2020-6807: Use-after-free in cubeb during stream destruction #CVE-2020-6811: Devtools' 'Copy as cURL' feature did not fully escape \ website-controlled data, potentially leading to command injection #CVE-2019-20503: Out of bounds reads in sctp_load_addresses_from_init #CVE-2020-6812: The names of AirPods with personally identifiable information \ were exposed to websites with camera or microphone permission #CVE-2020-6814: Memory safety bugs fixed in Thunderbird 68.6 68.0.5 new Support for Client Identity IMAP/SMTP Service Extension Support for OAuth 2.0 authentication for POP3 accounts fixed |
| 2020-03-08 17:51:54 by Thomas Klausner | Files touched by this commit (2833) |
Log message: *: recursive bump for libffi |
| 2020-02-08 23:36:24 by Kamil Rytarowski | Files touched by this commit (3) |
Log message: thunderbird: Workaround broken pthread_equal() usage Switch to an internal version of pthread_equal() without sanity checks. Problems detected on NetBSD 9.99.46. |
New packages: