Subject: CVS commit: pkgsrc/mail/thunderbird
From: Ryo ONODERA
Date: 2024-02-11 16:12:46
Message id: 20240211151246.2227EF9A4@cvs.NetBSD.org

Log Message:
mail/thunderbird: Update to 115.7.0

Changelog:
115.7.0:
What's New

new
Autocrypt Gossip key distribution added

Fixes
fixed
When starting Thunderbird, unread message count did not appear on collapsed
accounts

fixed
Blank window was sometimes displayed when starting Thunderbird

fixed
Thunderbird "--chrome" flag incorrectly opened extra messenger.xhtml

fixed
Add-ons did not start correctly when opening Thunderbird from other programs

fixed
Drag-and-drop installation of add-ons did not work if Add-ons Manager was
opened from Unified Toolbar

fixed
Double-clicking empty space in message pane incorrectly opened the currently
selected message

fixed
Canceling SMTP send before progress reached 100% did not stop message from
sending

fixed
PDF attachments open in a separate tab did not always restore correctly after
restarting Thunderbird

fixed
Some OpenPGP dialogs were too small for their contents

fixed
Account Manager did not work with hostnames entered as punycode

fixed
Downloading complete message from POP3 headers caused message tab/window to
close when "Close message window/tab on move or delete" was enabled

fixed
Some ECC GPG keys could not be exported

fixed
Contacts deleted from mailing list view still visible in Details view

fixed
After selecting contacts in Address Book and starting a new search, the search
results list did not update

fixed
Various UX and visual improvements

fixed
Security fixes

Security fixes:
Mozilla Foundation Security Advisory 2024-04
#CVE-2024-0741: Out of bounds write in ANGLE
#CVE-2024-0742: Failure to update user input timestamp
#CVE-2024-0746: Crash when listing printers on Linux
#CVE-2024-0747: Bypass of Content Security Policy when directive unsafe-inline
 was set
#CVE-2024-0749: Phishing site popup could show local origin in address bar
#CVE-2024-0750: Potential permissions request bypass via clickjacking
#CVE-2024-0751: Privilege escalation through devtools
#CVE-2024-0753: HSTS policy on subdomain could bypass policy of upper domain
#CVE-2024-0755: Memory safety bugs fixed in Firefox 122, Firefox ESR 115.7, and
 Thunderbird 115.7

115.6.1:
What's New

new
OAuth2 now supported for comcast.net

Fixes

fixed
High CPU usage sometimes occurred with IMAP CONDSTORE (conditional STORE)
enabled

fixed
Replying to a collapsed thread via keyboard shortcut (Ctrl+R/Cmd+R) opened a
reply for every message in the thread

fixed
Enabling Grouped By view after reversing sort order of column header caused
messages to be grouped incorrectly

fixed
Opening thread pane context menu via keyboard did not always scroll view to
selection

fixed
New mail indicator for POP3 accounts did not indicate new messages ready to be
downloaded

fixed
Messages could not be moved to folders using Message > Move To if text or a
link in the message had been clicked on first

fixed
MIME part boundaries were not properly terminated

115.6.0:
Fixes

fixed
Message selection misbehaved after selecting a sub-message in an expanded
thread, collapsing the thread, then pressing up/down to move selection

fixed
Thunderbird now attempts to reconnect on a new connection after SMTP 4xx errors

fixed
HTML FileLink attachments used the wrong encoding

fixed
Security fixes

Security fixes:
Mozilla Foundation Security Advisory 2023-55
#CVE-2023-50762: Truncated signed text was shown with a valid OpenPGP signature
#CVE-2023-50761: S/MIME signature accepted despite mismatching message date
#CVE-2023-6856: Heap-buffer-overflow affecting WebGL DrawElementsInstanced
 method with Mesa VM driver
#CVE-2023-6857: Symlinks may resolve to smaller than expected buffers
#CVE-2023-6858: Heap buffer overflow in nsTextFragment
#CVE-2023-6859: Use-after-free in PR_GetIdentitiesLayer
#CVE-2023-6860: Potential sandbox escape due to VideoBridge lack of texture
 validation
#CVE-2023-6861: Heap buffer overflow affected nsWindow::PickerOpen(void) in
 headless mode
#CVE-2023-6862: Use-after-free in nsDNSService
#CVE-2023-6863: Undefined behavior in ShutdownObserver()
#CVE-2023-6864: Memory safety bugs fixed in Firefox 121, Firefox ESR 115.6, and
 Thunderbird 115.6

115.5.2:
Fixes

fixed
"Compact" option was missing from folder context menu for IMAP \ 
accounts using
maildir

fixed
Message list could not be properly read by screen readers in table view

fixed
Messages with slow-loading images were delayed being marked as read

fixed
Messages opened in background tab were incorrectly marked as read

fixed
Mark All Read did not work for virtual folders

fixed
Delete (trash icon) in message display did not work in Unified folders

fixed
Unified folders were missing "Mark Folder Read" option in context menu

fixed
"Reply to List" was incorrectly disabled in Unified Toolbar since \ 
Thunderbird
115.4.1

fixed
Sorting by column with "Grouped By" enabled then performing a quick filter
search caused blank message pane

fixed
Attachment list did not always appear if remote message content loaded slowly

fixed
Messages in outbox were not shown as unread by default

fixed
"Apply columns to" sometimes failed to apply columns to a root folder \ 
and its
descendants

fixed
Global search results displayed as a list did not allow threads to be collapsed

fixed
"Quick Filter" button on toolbar was disabled when viewing search \ 
results as a
list

fixed
Folder open hover delay was too short when using drag-and-drop

fixed
Parent folders with collapsed subfolders did not consistently display new mail
indicator or message count for subfolders

fixed
Message list scroll position could move randomly when switching folders

fixed
Undoing deletion of local messages required using "Undo" (Ctrl-Z) twice

fixed
IMAP messages deleted in Thunderbird still appeared in other email clients that
don't respect messages marked "\deleted"

fixed
IMAP folder discovery was slowed by status bar message updates

fixed
Servers with non-LDH (letters-digits-hyphens) hostnames, such as those
containing non-ASCII Unicode characters, could not be found

fixed
Images could not be copied and pasted from one message into another

fixed
Troubleshooting page (about:support) did not work on profiles with no outgoing
email server, such as news-only profiles

fixed
Minimize/maximize button order was incorrect when placing window titlebar
buttons on left-hand side

fixed
OpenPGP integraton with smartcard using latest version of Gpg4Win failed

fixed
Various accessibility improvements

fixed
Various UX and visual improvements

Files:
RevisionActionfile
1.311modifypkgsrc/mail/thunderbird/Makefile
1.93modifypkgsrc/mail/thunderbird/PLIST
1.263modifypkgsrc/mail/thunderbird/distinfo
1.14modifypkgsrc/mail/thunderbird/mozilla-common.mk