![[BACK]](/icons/back.gif){kind=icon}
Up to [cvs.NetBSD.org] / pkgsrc / mail / thunderbird
Request diff between arbitrary revisions
Default branch: MAIN
Revision 1.92 / (download) - annotate - [select for diffs], Tue Nov 21 21:32:51 2023 UTC (2 weeks ago) by ryoon
Branch: MAIN
CVS Tags: HEAD
Changes since 1.91: +3 -3
lines
Diff to previous 1.91 (colored)
thunderbird: Update to 115.4.3
* Use internal icu to fix the runtime errors in calendar.
Changelog:
115.4.3:
Fixes
fixed
Forwarding multiple messages as attachments failed
fixed
Message list scrolling fixes
fixed
Some text remained incorrectly visible in the message list when using "Grouped
By" sorting
fixed
Subject lines were excessively indented in "Grouped by" views
fixed
"Open Message in Conversation" was incorrectly enabled for selections of
multiple messages
fixed
States of collapsed and expanded threads were not maintained when switching
folders
fixed
Pressing "n" to move to the next unread message on an unread, collapsed thread
opened the thread and selected the second message instead of the first
fixed
Search Folders dialog improvements
fixed
"Read Messages" button in Account Central did not retrieve mail from POP
accounts
fixed
Events canceled by the organizer were incorrectly sent cancelation message
115.4.2:
Fixes
fixed
No messages or calendar items were displayed on startup
fixed
Toolbar & Folder View widget fixes
fixed
Insert image dialog was not properly sized on some localized builds
fixed
The "unencrypted subject" icon was always briefly displayed when replying to a
message
fixed
RSS feeds with lengthy attachment filenames cut off visible content
fixed
RSS feeds with no favicon displayed default icon in the folder color
fixed
NNTP messages that were previously downloaded were not displayed if the server
went offline
fixed
Vcard photos were not imported when using opening the file with Thunderbird
fixed
Publishing calendars to invalid URLs did not display a helpful error
fixed
Publishing calendar events via authenticated WebDAV failed
fixed
Converting a message to an event failed when the message pane was not displayed
fixed
Redirect dialog displayed for WebDAV calendars was too small
fixed
Visual and Theme improvements
115.4.1:
What's New
new
"Manage Newsgroups Subscription" now displayed on Account Central when using
newsgroups
Fixes
fixed
Manually configured authentication methods on accounts did not always persist
fixed
"Send Autocrypt key in header" preference was available on accounts with no
encryption key
fixed
SHA-1 certificates were not accepted in Thunderbird 115; acceptance of SHA-1
messages can now be enabled via optional preference
fixed
Various Flatpak enhancements
fixed
Opening folder in new tab by clicking scroll wheel/middle mouse button did not
work in Folder Pane
fixed
Message list did not automatically scroll to new messages when switching
folders
fixed
"Move/Copy to again" was sometimes displayed in the folder context menu when it
should not have been
fixed
Multiple message drafts or message templates could not be opened simultaneously
for editing
fixed
Tools > Filters dialog did not open in Unified Folder view if no messages were
selected
fixed
Printing dialog could be opened, even with no messages selected
fixed
"From" address was editable when creating a new message from a template if the
account identity contained Unicode characters
fixed
Opening a saved .eml file in compose window did not preserve message subject
from file
fixed
Replying to some plaintext messages with desired quote selected in original
message did not preserve formatting of quote
fixed
"Edit as New", "Reply", and "Redirect" could not be used on multiple messages
simultaneously
fixed
"Reply to List" option was always enabled, even with no list to reply to
fixed
"Archive" button in message pane was enabled on messages that could not be
archived
fixed
"Followup-To" label was incorrectly labeled as "Newsgroups"
fixed
"Save image as" option did not work for RSS feed items displayed as a webpage
fixed
OTR verification dialog was blank, preventing verification of OTR chat sessions
fixed
Calendar event import failed for some ICS files
fixed
Permission description strings were missing from Add-Ons Manager
fixed
Various visual fixes
fixed
Security fixes
Security fixes:
Mozilla Foundation Security Advisory 2023-47
#CVE-2023-5721: Queued up rendering could have allowed websites to clickjack
#CVE-2023-5732: Address bar spoofing via bidirectional characters
#CVE-2023-5724: Large WebGL draw could have led to a crash
#CVE-2023-5725: WebExtensions could open arbitrary URLs
#CVE-2023-5726: Full screen notification obscured by file open dialog on macOS
#CVE-2023-5727: Download Protections were bypassed by .msix, .msixbundle,
.appx, and .appxbundle files on Windows
#CVE-2023-5728: Improper object tracking during GC in the JavaScript engine
could have led to a crash.
#CVE-2023-5730: Memory safety bugs fixed in Firefox 119, Firefox ESR 115.4, and
Thunderbird 115.4.1
115.3.3:
Fixes
fixed
Modifier keys did not work as expected when dragging a message over the folder
tree on macOS
fixed
"Folder Location" toolbar button did not work for local folders
fixed
"Copy to again" option disappeared from context menu after copying to Gmail
folder with non-ASCII name
fixed
Default reply identity did not use "Delivered-To" address when catch-all was
active
fixed
"View Headers All" did not work when selected in standalone message window
fixed
Viewing the mail filter log displayed an error if no log file was present
115.3.2:
Fixes
fixed
"Open in conversation" did not open messages in a thread view
fixed
News messsage with non-ASCII author name were incorrectly canceled
fixed
Localized "Re: " prefix was not stripped from news messages
fixed
Thunderbird attempted to load accounts missing server hostname, causing blank
3-pane window
fixed
Permission description strings were missing from Add-Ons Manager
fixed
Card View displayed incorrect recipient name for mail and news accounts,
depending on folder
fixed
Spell check dictionary dialog sometimes pushed Close button out of view
fixed
Importing calendars from iCal files did not work under certain circumstances
fixed
Calendar invitations were not sent to event participants, only organizer
fixed
Calendar alarm dialogs with lengthy descriptions pushed buttons out of view
fixed
Various visual fixes
115.3.1:
Fixes
fixed
In Unified Folders view, some folders had incorrect unified folder parent
fixed
"Edit message as new" did not restore encrypted subject from selected message
fixed
Importing some CalDAV calendars with yearly recurrence events caused
Thunderbird to freeze
fixed
Security fixes
Mozilla Foundation Security Advisory 2023-44
#CVE-2023-5217: Heap buffer overflow in libvpx
115.3.0:
Fixes
fixed
Thunderbird could not import profiles with hostname ending in dot (".")
fixed
Message header was occasionally missing in message preview
fixed
Setting an existing folder's type flag did not add descendant folders to the
Unified Folders view
fixed
Thunderbird did not always delete all temporary mail files, sometimes
preventing messages from being sent
fixed
Status bar in Message Compose window could not be hidden
fixed
Message header was intermittently missing from message preview
fixed
OAuth2 did not work on some profiles created in Thunderbird 102.6.1 or earlier
fixed
In Vertical View, decrypted subject lines were displayed as ellipsis ("...") in
message list
fixed
Condensed address preference (mail.showCondensedAddresses) did not show
condensed addresses in message list
fixed
Spam folder could not be assigned non-ASCII names with IMAP UTF-8 enabled
fixed
Message header was not displayed until images finished loading, causing
noticeable delay for messages containing large images
fixed
Large SVG favicons did not display on RSS feeds
fixed
Context menu items did not display a hover background color
fixed
Security fixes
Mozilla Foundation Security Advisory 2023-43
#CVE-2023-5168: Out-of-bounds write in FilterNodeD2D1
#CVE-2023-5169: Out-of-bounds write in PathOps
#CVE-2023-5171: Use-after-free in Ion Compiler
#CVE-2023-5174: Double-free in process spawning on Windows
#CVE-2023-5176: Memory safety bugs fixed in Firefox 118, Firefox ESR 115.3, and
Thunderbird 115.3
115.2.3:
Changes
changed
Card view and vertical layout are now default for new profiles
Fixes
fixed
Go > Folder menu was disabled
fixed
"Tools" menu was blank when opened from compose window on macOS
fixed
Deleting an attachment from a message on an IMAP server corrupted the local
copy when configured with "mark as deleted"
fixed
Manually entered passwords were not remembered for OAuth-authenticated accounts
such as Yahoo mail
fixed
Quick Filter's "Keep filters applied" did not persist after restarting
Thunderbird
fixed
Top-level Quick Filter settings did not persist after restart
fixed
Notifications for new messages with non-ASCII characters in the subject were
garbled
fixed
"Mark Thread As Read" did not work when some messages in thread were already
read
fixed
New Groups tab in NNTP subscribe dialog id not work as expected
fixed
Negative values were allowed in "Share for files larger than" field
fixed
Thunderbird sometimes crashed when deleting a parent folder with subfolders
fixed
"Send Message Error" appeared intermittently while Thunderbird was idle
fixed
Focused but not selected messages were missing visual indication of focus in
card view
fixed
Notification dot did not disappear from taskbar icon on Windows after messages
had already been read
fixed
Multiple selected messages could not be opened simultaneously if selection
included more than 19 messages
fixed
Email replies received via BCC incorrectly populated From field with default
identity
fixed
User was not always notified of message send failures in outbox
fixed
Tag dialog did not close properly after editing tag
fixed
Newsgroup field in compose window did not autocomplete with suggested newsgroup
names
fixed
Canceling newsgroup messages did not check if sender matched user's own
identity
fixed
Event dialog with several invitees expanded beyond screen height
fixed
Message check boxes were partially obstructed in message list
115.4.3:
Fixes
fixed
Forwarding multiple messages as attachments failed
fixed
Message list scrolling fixes
fixed
Some text remained incorrectly visible in the message list when using "Grouped
By" sorting
fixed
Subject lines were excessively indented in "Grouped by" views
fixed
"Open Message in Conversation" was incorrectly enabled for selections of
multiple messages
fixed
States of collapsed and expanded threads were not maintained when switching
folders
fixed
Pressing "n" to move to the next unread message on an unread, collapsed thread
opened the thread and selected the second message instead of the first
fixed
Search Folders dialog improvements
fixed
"Read Messages" button in Account Central did not retrieve mail from POP
accounts
fixed
Events canceled by the organizer were incorrectly sent cancelation message
115.4.2:
Fixes
fixed
No messages or calendar items were displayed on startup
fixed
Toolbar & Folder View widget fixes
fixed
Insert image dialog was not properly sized on some localized builds
fixed
The "unencrypted subject" icon was always briefly displayed when replying to a
message
fixed
RSS feeds with lengthy attachment filenames cut off visible content
fixed
RSS feeds with no favicon displayed default icon in the folder color
fixed
NNTP messages that were previously downloaded were not displayed if the server
went offline
fixed
Vcard photos were not imported when using opening the file with Thunderbird
fixed
Publishing calendars to invalid URLs did not display a helpful error
fixed
Publishing calendar events via authenticated WebDAV failed
fixed
Converting a message to an event failed when the message pane was not displayed
fixed
Redirect dialog displayed for WebDAV calendars was too small
fixed
Visual and Theme improvements
115.4.1:
What's New
new
"Manage Newsgroups Subscription" now displayed on Account Central when using
newsgroups
Fixes
fixed
Manually configured authentication methods on accounts did not always persist
fixed
"Send Autocrypt key in header" preference was available on accounts with no
encryption key
fixed
SHA-1 certificates were not accepted in Thunderbird 115; acceptance of SHA-1
messages can now be enabled via optional preference
fixed
Various Flatpak enhancements
fixed
Opening folder in new tab by clicking scroll wheel/middle mouse button did not
work in Folder Pane
fixed
Message list did not automatically scroll to new messages when switching
folders
fixed
"Move/Copy to again" was sometimes displayed in the folder context menu when it
should not have been
fixed
Multiple message drafts or message templates could not be opened simultaneously
for editing
fixed
Tools > Filters dialog did not open in Unified Folder view if no messages were
selected
fixed
Printing dialog could be opened, even with no messages selected
fixed
"From" address was editable when creating a new message from a template if the
account identity contained Unicode characters
fixed
Opening a saved .eml file in compose window did not preserve message subject
from file
fixed
Replying to some plaintext messages with desired quote selected in original
message did not preserve formatting of quote
fixed
"Edit as New", "Reply", and "Redirect" could not be used on multiple messages
simultaneously
fixed
"Reply to List" option was always enabled, even with no list to reply to
fixed
"Archive" button in message pane was enabled on messages that could not be
archived
fixed
"Followup-To" label was incorrectly labeled as "Newsgroups"
fixed
"Save image as" option did not work for RSS feed items displayed as a webpage
fixed
OTR verification dialog was blank, preventing verification of OTR chat sessions
fixed
Calendar event import failed for some ICS files
fixed
Permission description strings were missing from Add-Ons Manager
fixed
Various visual fixes
fixed
Security fixes
Security fixes:
Mozilla Foundation Security Advisory 2023-47
#CVE-2023-5721: Queued up rendering could have allowed websites to clickjack
#CVE-2023-5732: Address bar spoofing via bidirectional characters
#CVE-2023-5724: Large WebGL draw could have led to a crash
#CVE-2023-5725: WebExtensions could open arbitrary URLs
#CVE-2023-5726: Full screen notification obscured by file open dialog on macOS
#CVE-2023-5727: Download Protections were bypassed by .msix, .msixbundle,
.appx, and .appxbundle files on Windows
#CVE-2023-5728: Improper object tracking during GC in the JavaScript engine
could have led to a crash.
#CVE-2023-5730: Memory safety bugs fixed in Firefox 119, Firefox ESR 115.4, and
Thunderbird 115.4.1
115.3.3:
Fixes
fixed
Modifier keys did not work as expected when dragging a message over the folder
tree on macOS
fixed
"Folder Location" toolbar button did not work for local folders
fixed
"Copy to again" option disappeared from context menu after copying to Gmail
folder with non-ASCII name
fixed
Default reply identity did not use "Delivered-To" address when catch-all was
active
fixed
"View Headers All" did not work when selected in standalone message window
fixed
Viewing the mail filter log displayed an error if no log file was present
115.3.2:
Fixes
fixed
"Open in conversation" did not open messages in a thread view
fixed
News messsage with non-ASCII author name were incorrectly canceled
fixed
Localized "Re: " prefix was not stripped from news messages
fixed
Thunderbird attempted to load accounts missing server hostname, causing blank
3-pane window
fixed
Permission description strings were missing from Add-Ons Manager
fixed
Card View displayed incorrect recipient name for mail and news accounts,
depending on folder
fixed
Spell check dictionary dialog sometimes pushed Close button out of view
fixed
Importing calendars from iCal files did not work under certain circumstances
fixed
Calendar invitations were not sent to event participants, only organizer
fixed
Calendar alarm dialogs with lengthy descriptions pushed buttons out of view
fixed
Various visual fixes
115.3.1:
Fixes
fixed
In Unified Folders view, some folders had incorrect unified folder parent
fixed
"Edit message as new" did not restore encrypted subject from selected message
fixed
Importing some CalDAV calendars with yearly recurrence events caused
Thunderbird to freeze
fixed
Security fixes
Mozilla Foundation Security Advisory 2023-44
#CVE-2023-5217: Heap buffer overflow in libvpx
115.3.0:
Fixes
fixed
Thunderbird could not import profiles with hostname ending in dot (".")
fixed
Message header was occasionally missing in message preview
fixed
Setting an existing folder's type flag did not add descendant folders to the
Unified Folders view
fixed
Thunderbird did not always delete all temporary mail files, sometimes
preventing messages from being sent
fixed
Status bar in Message Compose window could not be hidden
fixed
Message header was intermittently missing from message preview
fixed
OAuth2 did not work on some profiles created in Thunderbird 102.6.1 or earlier
fixed
In Vertical View, decrypted subject lines were displayed as ellipsis ("...") in
message list
fixed
Condensed address preference (mail.showCondensedAddresses) did not show
condensed addresses in message list
fixed
Spam folder could not be assigned non-ASCII names with IMAP UTF-8 enabled
fixed
Message header was not displayed until images finished loading, causing
noticeable delay for messages containing large images
fixed
Large SVG favicons did not display on RSS feeds
fixed
Context menu items did not display a hover background color
fixed
Security fixes
Mozilla Foundation Security Advisory 2023-43
#CVE-2023-5168: Out-of-bounds write in FilterNodeD2D1
#CVE-2023-5169: Out-of-bounds write in PathOps
#CVE-2023-5171: Use-after-free in Ion Compiler
#CVE-2023-5174: Double-free in process spawning on Windows
#CVE-2023-5176: Memory safety bugs fixed in Firefox 118, Firefox ESR 115.3, and
Thunderbird 115.3
115.2.3:
Changes
changed
Card view and vertical layout are now default for new profiles
Fixes
fixed
Go > Folder menu was disabled
fixed
"Tools" menu was blank when opened from compose window on macOS
fixed
Deleting an attachment from a message on an IMAP server corrupted the local
copy when configured with "mark as deleted"
fixed
Manually entered passwords were not remembered for OAuth-authenticated accounts
such as Yahoo mail
fixed
Quick Filter's "Keep filters applied" did not persist after restarting
Thunderbird
fixed
Top-level Quick Filter settings did not persist after restart
fixed
Notifications for new messages with non-ASCII characters in the subject were
garbled
fixed
"Mark Thread As Read" did not work when some messages in thread were already
read
fixed
New Groups tab in NNTP subscribe dialog id not work as expected
fixed
Negative values were allowed in "Share for files larger than" field
fixed
Thunderbird sometimes crashed when deleting a parent folder with subfolders
fixed
"Send Message Error" appeared intermittently while Thunderbird was idle
fixed
Focused but not selected messages were missing visual indication of focus in
card view
fixed
Notification dot did not disappear from taskbar icon on Windows after messages
had already been read
fixed
Multiple selected messages could not be opened simultaneously if selection
included more than 19 messages
fixed
Email replies received via BCC incorrectly populated From field with default
identity
fixed
User was not always notified of message send failures in outbox
fixed
Tag dialog did not close properly after editing tag
fixed
Newsgroup field in compose window did not autocomplete with suggested newsgroup
names
fixed
Canceling newsgroup messages did not check if sender matched user's own
identity
fixed
Event dialog with several invitees expanded beyond screen height
fixed
Message check boxes were partially obstructed in message list
115.2.0:
What's New
new
Thunderbird MSIX packages are now published on archive.mozilla.org
Changes
changed
Size, Unread, and Total columns are now right-aligned
changed
Newsgroup names in message list header are now abbreviated
Fixes
fixed
Message compose window did not apply theme colors to menus
fixed
Reading the second new message in a folder cleared the unread indicator of all
other new messages
fixed
Displayed counts of unread or flagged messages could become out-of-sync
fixed
Deleting a message from the context menu with messages sorted in chronological
order and smooth scroll enabled caused message list to scroll to top
fixed
Repeatedly switching accounts in Subscribe dialog caused tree view to stop
updating
fixed
"Ignore thread" caused message cards to display incorrectly in message list
fixed
Creating tags from unified toolbar failed
fixed
Cross-folder navigation using F and N did not work
fixed
Account Manager did not resize to fit content, causing "Close" button to become
hidden outside bounds of dialog when too many accounts were listed
fixed
Remote content exceptions could not be added in Settings
fixed
Newsgroup list file did not get updated after adding a new NNTP server
fixed
"Download all headers" option in NNTP "Download Headers" dialog was incorrectly
selected by default
fixed
"Convert to event/task" was missing from mail context menu
fixed
Events and tasks were not shown in some cases despite being present on remote
server
fixed
Various visual and UX improvements
fixed
Security fixes
Mozilla Foundation Security Advisory 2023-38
#CVE-2023-4573: Memory corruption in IPC CanvasTranslator
#CVE-2023-4574: Memory corruption in IPC ColorPickerShownCallback
#CVE-2023-4575: Memory corruption in IPC FilePickerShownCallback
#CVE-2023-4576: Integer Overflow in RecordedSourceSurfaceCreation
#CVE-2023-4577: Memory corruption in JIT UpdateRegExpStatics
#CVE-2023-4051: Full screen notification obscured by file open dialog
#CVE-2023-4578: Error reporting methods in SpiderMonkey could have triggered an
Out of Memory Exception
#CVE-2023-4053: Full screen notification obscured by external program
#CVE-2023-4580: Push notifications saved to disk unencrypted
#CVE-2023-4581: XLL file extensions were downloadable without warnings
#CVE-2023-4582: Buffer Overflow in WebGL glGetProgramiv
#CVE-2023-4583: Browsing Context potentially not cleared when closing Private
Window
#CVE-2023-4584: Memory safety bugs fixed in Firefox 117, Firefox ESR 102.15,
Firefox ESR 115.2, Thunderbird 102.15, and Thunderbird 115.2
#CVE-2023-4585: Memory safety bugs fixed in Firefox 117, Firefox ESR 115.2, and
Thunderbird 115.2
Revision 1.91 / (download) - annotate - [select for diffs], Sat Aug 26 10:45:17 2023 UTC (3 months, 1 week ago) by pho
Branch: MAIN
CVS Tags: pkgsrc-2023Q3-base,
pkgsrc-2023Q3
Changes since 1.90: +5 -13
lines
Diff to previous 1.90 (colored)
mail/thunderbird: Fix build with option official-mozilla-branding, pointed out by Marc Baudoin
Revision 1.90 / (download) - annotate - [select for diffs], Fri Aug 25 10:15:01 2023 UTC (3 months, 1 week ago) by pho
Branch: MAIN
Changes since 1.89: +1317 -960
lines
Diff to previous 1.89 (colored)
mail/thunderbird: Update to 115.1.1 115.1.1: Fixed: - Some HTML emails printed headers on first page and message on subsequent pages - Deleting messages from message list sometimes scrolled list to bottom, selecting bottommost message - Width of icon columns (like Junk or Starred) in message list did not adjust when UI density was changed - Old OpenPGP secret keys could not be used to decrypt messages under certain circumstances - When multiple folder modes were active, tab focus navigated through all folder mode options before reaching message list - Unread message count badge was not displayed on parent folders of subfolder containing unread messages - "Undo archive" (via Ctrl-Z) did not un-archive previously archived messages - "New" button dropdown menu in "Message Filters" dialog could not be opened via keyboard navigation - "Show New Mail Alert for" input field in "Customize New Mail Alert" dialog had zero width when using certain language packs - "Account Wizard" dialog was too narrow when adding a news server, partially hiding confirmation buttons - Link Properties and Image Properties dialogs in the composer were too wide - Thunderbird version number and details in "About" dialog were not automatically read by screen readers when first opening dialog - Flatpak improvements and bug fixes - Various visual and UX improvements 115.1.0: Changed: - Quick Filter bar is now hidden by default - Mail tab toolbar and Unified toolbar heights adjusted to be more consistent Fixed: - Message-ID header used account domain instead of "From" field domain - Zooming did not work in multi-message view - "Clear Recent History" dialog did not resize correctly to fit content - Tooltip containing full message title did not appear when hovering over message in card view - Message List column headers became transparent in increased contrast mode - Message List card padding was incorrect in compact view - Total message counts and folder sizes were also hidden when "Hide Local Folders" was selected in Folder Pane options - Messages in deeply nested IMAP folders were inaccessible - Thunderbird Flatpak could not be executed from terminal using command "thunderbird" - CardDAV address book dialog did not resize properly to show all available address books - Various visual and style fixes 115.0.1: Changed: - Added Thunderbird Supernova branding to about:dialog Fixed: - Message list was not updated when message was deleted from server outside of Thunderbird - Scrolling behaved unexpectedly when moving to next message unread message in another folder - Scrolling animation was unnecessarily used when switching or toggling the sort column in message list - Attempting to delete a message and then cancelling the action still marked the message as read - Unified Toolbar could not be customized under certain tabs - Selecting a folder with one or more subfolders and pressing enter did not expand folder - Tooltips did not appear when hovering over folders - Deleting large amounts of messages from Trash folder consumed excessive time and memory - Message Summary header buttons were not keyboard accessible - "New" button in Message Filters dialog was not keyboard accessible - Backing up secret keys from OpenPGP Key Manager dialog silently failed - Various visual and UX improvements - Security fixes 102.14.0: Fixed: - Security fixes 102.13.1: Fixed: - Security fixes 102.13.0: Changed: - Release notes opened from about: dialog will now open in the default web browser Fixed: - Upstream RNP version numbers now recognized as official in about:support - Security fixes 102.12.0: Fixed: - "Searching the directory for recipients certificates" popup could block compose window when "S/MIME reminder" was enabled and using an LDAP address book - Some elements still used animations with "prefers-reduced-motion" set - Visual and theme improvements - Security fixes 102.11.2: Fixed: - Thunderbird 102.11.1 contained POP3 client regressions with offline mode and TLS certificate overrides 102.11.1: Fixed: - POP message retrieval stopped after a network error occurred and connectivity was restored - Reused SMTP connections sometimes silently disconnected, causing timeouts - Thunderbird could freeze if saving a sent message to IMAP failed - Creating OpenPGP keys with no expiration was not possible - News reader did not always issue GROUP command after authentication with remote server, preventing Thundebird from displaying or refreshing news from the server 102.11.0: Fixed: - During Account Setup, the "Checking password..." message was not removed after a failure - Miscellaneous UI fixes - Security fixes 102.10.1: Fixed: - Messages with missing or corrupt "From:" header did not display message header buttons - Composer repeatedly prompted for S/MIME smartcard signing/encryption password - Address Book integration did not work with macOS 11.4 Bug Sur - Mexico City DST fix in Thunderbird 102.10.0 (bug 1826146) was incomplete 102.10.0: Changed: - New messages will automatically select S/MIME if configured and OpenPGP is not Fixed: - Calendar events with timezone America/Mexico_City incorrectly applied Daylight Savings Time - Security fixes 102.9.1: Fixed: - Thunderbird was unable to open file URLs from command line (URLs beginning with "file://") - Source strings for localized builds not uploaded to FTP as expected - Visual and theme improvements - Security fixes 102.9.0: Fixed: - Notification about a sender's changed OpenPGP key was not immediately visible - TLS Certificate Override dialog did not appear when retrieving messages via IMAP using "Get Messages" context menu - Spellcheck dictionaries were missing from localized Thunderbird builds that should have included them - Tooltips for "Show/Hide" calendar toggle did not display - Various security fixes
Revision 1.89 / (download) - annotate - [select for diffs], Thu Feb 16 18:17:33 2023 UTC (9 months, 2 weeks ago) by he
Branch: MAIN
CVS Tags: pkgsrc-2023Q2-base,
pkgsrc-2023Q2,
pkgsrc-2023Q1-base,
pkgsrc-2023Q1
Changes since 1.88: +8 -7
lines
Diff to previous 1.88 (colored)
thunderbird: also update PLIST...
Revision 1.88 / (download) - annotate - [select for diffs], Sat Feb 11 03:49:24 2023 UTC (9 months, 3 weeks ago) by pho
Branch: MAIN
Changes since 1.87: +2 -2
lines
Diff to previous 1.87 (colored)
mail/thunderbird: Fix a PLIST issue that occurs when official-mozilla-branding is enabled
Revision 1.87 / (download) - annotate - [select for diffs], Sun Feb 5 09:05:28 2023 UTC (9 months, 4 weeks ago) by he
Branch: MAIN
Changes since 1.86: +1883 -1173
lines
Diff to previous 1.86 (colored)
mail/thunderbird: Update to version 102.6.1. This is copied from wip/thunderbird, which builds with more recent versions of rust. This is the version just before this change was implemented: https://blog.thunderbird.net/2023/01/important-message-for-microsoft-office-365-enterprise-users/ and this version will stay here for a while before we update again. Call me lazy, but I don't think it's worth anyone's time to paste in the change log from version 78 to 102.6.1 here, and it doesn't appear to be readily accessible in the source distribution. That said, the list of security fixes implemented between version 78.12 and 102.6.1 is available at https://www.mozilla.org/en-US/security/known-vulnerabilities/thunderbird/#thunderbird102.6.1 and the release notes are available at https://www.thunderbird.net/en-US/thunderbird/releases/
Revision 1.86 / (download) - annotate - [select for diffs], Mon Apr 26 14:30:03 2021 UTC (2 years, 7 months ago) by ryoon
Branch: MAIN
CVS Tags: pkgsrc-2022Q4-base,
pkgsrc-2022Q4,
pkgsrc-2022Q3-base,
pkgsrc-2022Q3,
pkgsrc-2022Q2-base,
pkgsrc-2022Q2,
pkgsrc-2022Q1-base,
pkgsrc-2022Q1,
pkgsrc-2021Q4-base,
pkgsrc-2021Q4,
pkgsrc-2021Q3-base,
pkgsrc-2021Q3,
pkgsrc-2021Q2-base,
pkgsrc-2021Q2
Changes since 1.85: +2 -1
lines
Diff to previous 1.85 (colored)
thunderbird: Update t o 78.10.0 Changelog: Fixes: Usability & theme improvements on Windows Various security fixes Security fixes: #CVE-2021-23994: Out of bound write due to lazy initialization #CVE-2021-23995: Use-after-free in Responsive Design Mode #CVE-2021-23998: Secure Lock icon could have been spoofed #CVE-2021-23961: More internal network hosts could have been probed by a malicious webpage #CVE-2021-23999: Blob URLs may have been granted additional privileges #CVE-2021-24002: Arbitrary FTP command execution on FTP servers using an encoded URL #CVE-2021-29945: Incorrect size computation in WebAssembly JIT could lead to null-reads #CVE-2021-29948: Race condition when reading from disk while verifying signatures
Revision 1.85 / (download) - annotate - [select for diffs], Tue Feb 9 12:34:26 2021 UTC (2 years, 9 months ago) by ryoon
Branch: MAIN
CVS Tags: pkgsrc-2021Q1-base,
pkgsrc-2021Q1
Changes since 1.84: +7 -2
lines
Diff to previous 1.84 (colored)
thunderbird: Update to 78.7.1 Changelog: What's New CardDAV address books now support OAuth2 and Google Contacts. Changes Thunderbird will no longer allow installation of addons that use the legacy API Fixes Send message button sometimes remained enabled when it should be disabled Pressing command+enter to send a message on macOS did not work OpenPGP: Failed to save attachments that contained binary data after decryption Global search UI fixes Various theme and color fixes to improve ease of use
Revision 1.84 / (download) - annotate - [select for diffs], Fri Jan 1 12:58:32 2021 UTC (2 years, 11 months ago) by ryoon
Branch: MAIN
Changes since 1.83: +1 -3
lines
Diff to previous 1.83 (colored)
thunderbird: Update to 78.6.0 * Fix build with devel/cbindgen-0.16.0. Changelog: New MailExtensions: Added browser.windows.openDefaultBrowser() Changes Thunderbird now only shows quota exceeded indications on the main window MailExtensions: menus API enabled in messages being composed MailExtensions: Honor allowScriptsToClose argument in windows.create API function MailExtensions: APIs that returned an accountId will reflect the account the message belongs to, not what is stored in message headers Fixes Keyboard shortcut for toggling message "read" status not shown in menus OpenPGP: After importing a secret key, Key Manager displayed properties of the wrong key OpenPGP: Inline PGP parsing improvements OpenPGP: Discovering keys online via Key Manager sometimes failed on Linux OpenPGP: Encrypted attachment "Decrypt and Open/Save As" did not work OpenPGP: Importing keys failed on macOS OpenPGP: Verification of clear signed UTF-8 text failed Address book: Some columns incorrectly displayed no data Address book: The address book view did not update after changing the name format in the menu Calendar: Could not import an ICS file into a CalDAV calendar Calendar: Two "Home" calendars were visible on a new profile Calendar: Dark theme was incomplete on Linux Dark theme did not apply to new mail notification popups Folder icon, message list, and contact side bar visual improvements MailExtensions: HTTP refresh in browser content tabs did not work MailExtensions: messageDisplayScripts failed to run in main window Various security fixes Security fixes: #CVE-2020-16042: Operations on a BigInt could have caused uninitialized memory to be exposed #CVE-2020-26971: Heap buffer overflow in WebGL #CVE-2020-26973: CSS Sanitizer performed incorrect sanitization #CVE-2020-26974: Incorrect cast of StyleGenericFlexBasis resulted in a heap use-after-free #CVE-2020-26978: Internal network hosts could have been probed by a malicious webpage #CVE-2020-35111: The proxy.onRequest API did not catch view-source URLs #CVE-2020-35112: Opening an extension-less download may have inadvertently launched an executable instead #CVE-2020-35113: Memory safety bugs fixed in Thunderbird 78.6
Revision 1.83 / (download) - annotate - [select for diffs], Mon Dec 7 12:30:56 2020 UTC (2 years, 11 months ago) by ryoon
Branch: MAIN
CVS Tags: pkgsrc-2020Q4-base,
pkgsrc-2020Q4
Changes since 1.82: +4 -1
lines
Diff to previous 1.82 (colored)
thunderbird: Update to 78.5.1 Changelog: What's New OpenPGP: Added option to disable email subject encryption Changes OpenPGP public key import now supports multi-file selection and bulk accepting imported keys MailExtensions: getComposeDetails will wait for "compose-editor-ready" event Fixes New mail icon was not removed from the system tray at shutdown "Place replies in the folder of the message being replied to" did not work when using "Reply to List" Thunderbird did not honor the "Run search on server" option when searching messages Highlight color for folders with unread messages wasn't visible in dark theme OpenPGP: Key were missing from Key Manager OpenPGP: Option to import keys from clipboard always disabled The "Link" button on the large attachments info bar failed to open up Filelink section in Options if the user had not yet configured Filelink Address book: Printing members of a mailing list resulted in incorrect output Unable to connect to LDAP servers configured with a self-signed SSL certificate Autoconfig via LDAP did not work as expected Calendar: Pressing Ctrl-Enter in the new event dialog would create duplicate events Various security fixes Security fixes: #CVE-2020-26970: Stack overflow due to incorrect parsing of SMTP server response codes
Revision 1.82 / (download) - annotate - [select for diffs], Sat Nov 21 12:28:43 2020 UTC (3 years ago) by wiz
Branch: MAIN
Changes since 1.81: +2 -2
lines
Diff to previous 1.81 (colored)
thunderbird: Fix typo in PLIST
Revision 1.81 / (download) - annotate - [select for diffs], Thu Nov 19 14:29:55 2020 UTC (3 years ago) by ryoon
Branch: MAIN
Changes since 1.80: +7 -16
lines
Diff to previous 1.80 (colored)
thunderbird: Update to 78.5.0 * Fix build with lang/rust-1.47.0. Changelog: 78.5.0 What's New OpenPGP: Added option to disable attaching the public key to a signed message MailExtensions: "compose_attachments" context added to Menus API MailExtensions: Menus API now available on displayed messages Changes MailExtensions: browser.tabs.create will now wait for "mail-delayed-startup-finished" event Fixes OpenPGP: Support for inline PGP messages improved OpenPGP: Message security dialog showed unverified keys as unavailable Chat: New chat contact menu item did not function Various theme and usability improvements Various security fixes #CVE-2020-26951: Parsing mismatches could confuse and bypass security sanitizer for chrome privileged code #CVE-2020-16012: Variable time processing of cross-origin images during drawImage calls #CVE-2020-26953: Fullscreen could be enabled without displaying the security UI #CVE-2020-26956: XSS through paste (manual and clipboard API) #CVE-2020-26958: Requests intercepted through ServiceWorkers lacked MIME type restrictions #CVE-2020-26959: Use-after-free in WebRequestService #CVE-2020-26960: Potential use-after-free in uses of nsTArray #CVE-2020-15999: Heap buffer overflow in freetype #CVE-2020-26961: DoH did not filter IPv4 mapped IP Addresses #CVE-2020-26965: Software keyboards may have remembered typed passwords #CVE-2020-26966: Single-word search queries were also broadcast to local network #CVE-2020-26968: Memory safety bugs fixed in Thunderbird 78.5 78.4.3 Fixes User interface was inconsistent when switching from the default theme to the dark theme and back to the default theme Email subject would disappear when hovering over it with the mouse when using Windows 7 Classic theme 78.4.2 Fixes Security fix #CVE-2020-26950: Write side effects in MCallGetProperty opcode not accounted for 78.4.1 What's New Thunderbird prompts for an address to use when starting an email from an address book entry with multiple addresses Fixes Searching global search results did not work Link location was not focused by default when adding a hyperlink in message composer Advanced address book search dialog was unusable Encrypted draft reply emails lost "Re:" prefix Replying to a newsgroup message did not open the compose window Unable to delete multiple newsgroup messages Appmenu displayed visual glitches Visual glitches when selecting multiple messages in the message pane and using Ctrl+click Switching between dark and light mode could lead to unreadable text on macOS 78.4.0 What's New MailExtensions: browser.tabs.sendMessage API added MailExtensions: messageDisplayScripts API added Changes Yahoo and AOL mail users using password authentication will be migrated to OAuth2 MailExtensions: messageDisplay APIs extended to support multiple selected messages MailExtensions: compose.begin functions now support creating a message with attachments Fixes Thunderbird could freeze when updating global search index Multiple issues with handling of self-signed SSL certificates addressed Recipient address fields in compose window could expand to fill all available space Inserting emoji characters in message compose window caused unexpected behavior Button to restore default folder icon color was not keyboard accessible Various keyboard navigation fixes Various color-related theme fixes MailExtensions: Updating attachments with onBeforeSend.addListener() did not work Various security fixes Security fixes: #CVE-2020-15969: Use-after-free in usersctp #CVE-2020-15683: Memory safety bugs fixed in Thunderbird 78.4 78.3.3 Fixes OpenPGP: Improved support for encrypting with subkeys OpenPGP message status icons were not visible in message header pane OpenPGP Key Manager was missing from Tools menu on macOS Creating a new calendar event did not require an event title 78.3.2 Changes Thunderbird will no longer automatically install updates when Preferences tab is opened Fixed OpenPGP: Improved support for encrypting with subkeys OpenPGP: Encrypted messages with international characters were sometimes displayed incorrectly Single-click deletion of recipient pills with middle mouse button restored Searching an address book list did not display results Windows installer was unreadable with Windows in high contrast mode Dark mode, high contrast, and Windows theming fixes
Revision 1.80 / (download) - annotate - [select for diffs], Tue Sep 15 12:54:37 2020 UTC (3 years, 2 months ago) by wiz
Branch: MAIN
CVS Tags: pkgsrc-2020Q3-base,
pkgsrc-2020Q3
Changes since 1.79: +1 -5
lines
Diff to previous 1.79 (colored)
thunderbird: fix branding option PLIST
Revision 1.79 / (download) - annotate - [select for diffs], Sun Sep 13 10:51:03 2020 UTC (3 years, 2 months ago) by ryoon
Branch: MAIN
Changes since 1.78: +13 -16
lines
Diff to previous 1.78 (colored)
thunderbird: Update to 78.2.2 * Runtime depend on chat/libotr. Changelog: What's New new Drag and Drop reordering of recipient pills now supported Changes changed OpenPGP: Some signature states reported as "mismatch" now report "unknown" changed Privacy policy now displayed in a tab when updated changed Chat: Non-functional Twitter support removed Fixes fixed OpenPGP: Improvements to key importing when failures occur fixed OpenPGP: Decryption did not work with certain HTTP proxy configurations fixed OpenPGP: "Discover keys online" option did not work when searching for an email address fixed Email filters reported failure when moving a message to original folder fixed Message filters: Filters shown as enabled in configuration dialog were not always enabled fixed vCard 2.1 attachments not handled properly fixed Sending messages sometimes failed when recipients were in LDAP address book fixed Non-functional help menu items removed fixed Adding custom headers in the addressing widget (preference mail.compose.other.header) did not work fixed Calendar: Event reminder details were unreadable fixed Windows 10 high-contrast theme fixes fixed More theme fixes and improvements
Revision 1.78 / (download) - annotate - [select for diffs], Sat Sep 5 12:28:09 2020 UTC (3 years, 3 months ago) by wiz
Branch: MAIN
Changes since 1.77: +7 -5
lines
Diff to previous 1.77 (colored)
thunderbird: fix PLIST for branding option
Revision 1.77 / (download) - annotate - [select for diffs], Thu Sep 3 15:26:22 2020 UTC (3 years, 3 months ago) by ryoon
Branch: MAIN
Changes since 1.76: +1932 -1111
lines
Diff to previous 1.76 (colored)
thunderbird: Update to 78.2.1 * Lightning cannot be disabled by users in build time. Remove mozilla-lightning option. Changelog: 78.2.1 Changes changed OpenPGP enabled by default changed OpenPGP: Disabled the use of MD5/SM2/SM3 algorithms Fixes fixed OpenPGP: Users with sub-identities were unable to encrypt or sign messages when switching identities fixed OpenPGP message security window did not support dark mode 78.2.0 Changes changed OpenPGP Key generation now disabled when there is no default mail account configured changed OpenPGP: Encrypt saved drafts when OpenPGP is enabled changed Twitter search removed changed Calendar: Event summary dialog is now themeable changed MailExtensions: Some APIs now use defineLazyPreferenceGetter in order to benefit from caching Fixes fixed OpenPGP Key Manager search function did not work fixed OpenPGP Key Properties dialog was sometimes too small fixed OpenPGP: Encrypted email would not send if address contained uppercase characters fixed OpenPGP: "Key ID" column could not be resized in Key Manage fixed OpenPGP: Keys containing invalid UTF-8 strings could not be imported fixed OpenPGP: Enable automatic signing for encrypted messages in additional scenarios fixed Many more OpenPGP bug fixes and improvements fixed IMAP fetch chunk size was always 65536 bytes fixed IMAP server capabilities were not rechecked after upgrading to SSL/TLS connection fixed Message Composer: Order of attachments could not be modified using drag & drop fixed Composing messages with a "fixed width" font did not work fixed Drag and drop of address book contacts did not work in some situations fixed Address book migration failed when there was a dot in the file name fixed Address book: "Always prefer display name over message header" was always checked when editing a contact fixed Address book performance optimizations fixed Dialog to add a new mail account from "Account Settings" did not open fixed "Select All" (Ctrl+A) in message source did not work until focused with a mouse click fixed Ctrl+scroll wheel not zooming in message reader fixed Setting/changing a signature from a file lost when closing account settings fixed Adaptive Junk Mail settings could not be disabled fixed Message filter dialog fixes: Missing scrollbar, drop-down list not wide enough fixed Various UX and theme improvements 78.1.1 Changes changed Building OpenPGP shared library linked to system libraries now supported changed MailExtension errors now shown in Developer Tools console by default changed MailExtensions: Dynamic registration of calendar providers now supported Fixesr fixed OpenPGP improvements fixed Message preview was sometimes blank after upgrading from Thunderbird 68 fixed Email addresses whitelisted for remote content not displayed in preferences fixed Importing data from Seamonkey did not work fixed Renaming a mail list did not update the side bar fixed MailExtensions: messenger.* namespace was undefined 78.1.0 What's New new OpenPGP support is now feature complete. Improvements: new Key Wizard, online searching for OpenPGP keys, and more new The preferences tab now has a search field Changes changed Dark background in message reader is now disabled Fixes fixed Thunderbird startup was slow when using folder color customizations with many folders. Previously configured colors will not be migrated. fixed Mail quota usage in status bar did not support terabyte folder sizes fixed Changing Junk mail settings with keyboard toggled wrong setting fixed Advanced IMAP server preferences not saved in Account Manager fixed Address book migration updates and fixes fixed Address book: Last Modified Date was not updated fixed Dark mode improvements fixed Various security fixes Security fixes: #CVE-2020-15652: Potential leak of redirect targets when loading scripts in a worker #CVE-2020-6514: WebRTC data channel leaks internal address to peer #CVE-2020-15655: Extension APIs could be used to bypass Same-Origin Policy #CVE-2020-15653: Bypassing iframe sandbox when allowing popups #CVE-2020-6463: Use-after-free in ANGLE gl::Texture::onUnbindAsSamplerTexture #CVE-2020-15656: Type confusion for special arguments in IonMonkey #CVE-2020-15658: Overriding file type when saving to disk #CVE-2020-15657: DLL hijacking due to incorrect loading path #CVE-2020-15654: Custom cursor can overlay user interface #CVE-2020-15659: Memory safety bugs fixed in Thunderbird 78.1 78.0.1 What's New new OpenPGP: Key revocation, extending key expiration, and secret key backup Fixes fixed Drag & Drop multiple attachments to macOS Finder created duplicate files fixed Faceted search date and relevance settings not saved fixed FileLink attachments included as a link and file when added from a network drive via drag & drop fixed About Thunderbird dialog keyboard shortcuts did not work fixed CC'd recipients sometimes displayed collapsed in header pane fixed Incremental search in contacts sidebar did not always display local results when an LDAP server was also in use fixed Contacts sidebar search results cleared after removing a contact fixed OpenPGP: Messages with long Armor Header lines did not display fixed OpenPGP: Messages containing non-UTF-8 text were not supported fixed Various UI and theming fixes fixed Chat: Participants list did not display operator flags
Revision 1.76 / (download) - annotate - [select for diffs], Sun Mar 15 13:28:51 2020 UTC (3 years, 8 months ago) by ryoon
Branch: MAIN
CVS Tags: pkgsrc-2020Q2-base,
pkgsrc-2020Q2,
pkgsrc-2020Q1-base,
pkgsrc-2020Q1
Changes since 1.75: +7 -1
lines
Diff to previous 1.75 (colored)
thunderbird: Update to 68.6.0 CVhangelog: 68.6.0 new Thunderbird now displays a popup window when starting up on a new profile changed Thunderbird now provides partial updates resulting in smaller downloads fixed Searching in message bodies led to false negatives under some circumstances in quoted-printable encoded HTML bodies "Get New Messages for All Accounts" not working for OAuth2-authenticated IMAP accounts Various security fixes #CVE-2020-6805: Use-after-free when removing data about origins #CVE-2020-6806: BodyStream::OnInputStreamReady was missing protections against state confusion #CVE-2020-6807: Use-after-free in cubeb during stream destruction #CVE-2020-6811: Devtools' 'Copy as cURL' feature did not fully escape website-controlled data, potentially leading to command injection #CVE-2019-20503: Out of bounds reads in sctp_load_addresses_from_init #CVE-2020-6812: The names of AirPods with personally identifiable information were exposed to websites with camera or microphone permission #CVE-2020-6814: Memory safety bugs fixed in Thunderbird 68.6 68.0.5 new Support for Client Identity IMAP/SMTP Service Extension Support for OAuth 2.0 authentication for POP3 accounts fixed Status area goes blank during account setup Calendar: Could not remove color for default categories Calendar: Prevent calendar component loading multiple times Calendar: Today pane did not retain width between sessions Various security fixes #CVE-2020-6793: Out-of-bounds read when processing certain email messages #CVE-2020-6794: Setting a master password post-Thunderbird 52 does not delete unencrypted previously stored passwords #CVE-2020-6795: Crash processing S/MIME messages with multiple signatures #CVE-2020-6797: Extensions granted downloads.open permission could open arbitrary applications on Mac OSX #CVE-2020-6798: Incorrect parsing of template tag could result in JavaScript injection #CVE-2020-6792: Message ID calculcation was based on uninitialized data #CVE-2020-6800: Memory safety bugs fixed in Thunderbird 68.5
Revision 1.75 / (download) - annotate - [select for diffs], Tue Jan 7 15:41:22 2020 UTC (3 years, 10 months ago) by wiz
Branch: MAIN
Changes since 1.74: +3 -2
lines
Diff to previous 1.74 (colored)
thunderbird: handle wayland support like in the firefox packages Sort PLIST while here.
Revision 1.74 / (download) - annotate - [select for diffs], Sun Dec 29 00:51:06 2019 UTC (3 years, 11 months ago) by ryoon
Branch: MAIN
Changes since 1.73: +3 -1
lines
Diff to previous 1.73 (colored)
Update to 68.3.1 Changelog: 68.3.1 Changes changed In dark theme unread messages no longer shown in blue to distinguish from tagged messages changed Account setup is now using client side DNS MX lookup instead of relying on a server. Fixes fixed Searching LDAP address book crashed in some circumstances fixed Message navigation with backward and forward buttons did not work in some circumstances fixed WebExtension toolbar icons were displayed too small fixed Calendar: Tasks due today were not listed in bold fixed Calendar: Last day of long-running events was not shown 68.3.0 WhatãàÑÔ New new Message display toolbar action WebExtension API new Navigation buttons are now available in content tabs, for example those opened via an add-on search Changes changed "New email" icon in Windows systray changed from in-tray with arrow to envelope Fixes fixed Icons of attachments in the attachment pane of the Write window not always correct fixed Toolbar buttons of add-ons in the menubar not shown after startup fixed LDAP lookup not working when SSL was enabled. LDAP search not working when "All Address Books" was selected. fixed Scam link confirmation panel not working fixed In Write window, the Link Properties dialog wasn't showing named anchors in context menu fixed Calendar: Start-up failed if the application menu is not on the calendar toolbars fixed Chat: Account reordering via drag-and-drop not working on Instant messaging status dialog (Show Accounts) fixed Various security fixes Security fixes: #CVE-2019-17008: Use-after-free in worker destruction #CVE-2019-13722: Stack corruption due to incorrect number of arguments in WebRTC code #CVE-2019-11745: Out of bounds write in NSS when encrypting with a block cipher #CVE-2019-17009: Updater temporary files accessible to unprivileged processes #CVE-2019-17010: Use-after-free when performing device orientation checks #CVE-2019-17005: Buffer overflow in plain text serializer #CVE-2019-17011: Use-after-free when retrieving a document in antitracking #CVE-2019-17012: Memory safety bugs fixed in Firefox 71, Firefox ESR 68.3, and Thunderbird 68.3
Revision 1.73 / (download) - annotate - [select for diffs], Sat Nov 2 13:02:55 2019 UTC (4 years, 1 month ago) by ryoon
Branch: MAIN
CVS Tags: pkgsrc-2019Q4-base,
pkgsrc-2019Q4
Changes since 1.72: +7 -3
lines
Diff to previous 1.72 (colored)
Update to 68.2.1
Changelog:
new
A language for the user interface can now be chosen in the advanced settings (multilingual UI)
fixed
Problem with Google authentication (OAuth2)
fixed
Selected or unread messages not shown in the correct color in the thread pane (message list) under some circumstances
fixed
When using a language pack, names of standard folders weren't localized
fixed
Address book default startup directory in preferences panel not persisted
fixed
Various visual glitches: Conditions in filter editor not high enough, folder location widget not showing folder name, problem with menubar customization, add-on home page links accumulating, theme issues on Windows 7
fixed
Chat: Extended context menu on Instant messaging status dialog (Show Accounts)
Revision 1.72 / (download) - annotate - [select for diffs], Thu Oct 31 23:19:52 2019 UTC (4 years, 1 month ago) by wiz
Branch: MAIN
Changes since 1.71: +3 -3
lines
Diff to previous 1.71 (colored)
Sort
Revision 1.71 / (download) - annotate - [select for diffs], Tue Oct 1 15:15:33 2019 UTC (4 years, 2 months ago) by ryoon
Branch: MAIN
Changes since 1.70: +2 -1
lines
Diff to previous 1.70 (colored)
Update to 68.1.1
Changelog:
fixed Issues with attachments in IMAP messages
fixed Gmail accounts ignored a non-standard trash folder
selection. Note: If non-standard trash folder was selected
previously in the account settings, this setting will now take
effect which may be unexpected.
fixed Entering/pasting lists of recipients into the addressing
widget or mailing list not working reliably, especially when
lists contained multiple commas or semicolons
fixed Edit mailing list not working
fixed Various theme fixes, especially dark theme improvements
for Calendar
fixed Contrast between tag label and background not optimal
fixed Account Central pane always loaded at start-up
fixed "Config Editor" button not removed if blocked by policy
fixed Calendar: Free/busy information in attendees dialog not
scrolled correctly. Note: Scroll arrows still not behaving
correctly.
fixed Various security fixes
#CVE-2019-11755: Spoofing a message author via a crafted S/MIME
message
Revision 1.70 / (download) - annotate - [select for diffs], Sat Sep 21 10:55:16 2019 UTC (4 years, 2 months ago) by ryoon
Branch: MAIN
CVS Tags: pkgsrc-2019Q3-base,
pkgsrc-2019Q3
Changes since 1.69: +1997 -1158
lines
Diff to previous 1.69 (colored)
Update to 68.1.0
Changelog:
new
Offer to configure Exchange accounts for Office365. A third-party add-on is required for this account type. IMAP still exists as alternative.
fixed
Edit tag not working
fixed
Write window: "Insert > Characters and Symbols" not working
fixed
Moving/dragging messages from "Search Messages" result dialog not working
fixed
Command line -compose "attachment=" not working
fixed
Custom views not working
fixed
Issues with list of content types/actions for incoming attachments
fixed
"Learn More" links in Error Console not working
fixed
Visual glitches: Quick Filter Bar tag buttons too tall, missing scroll
bar on Connection Setting subdialog, LDAP server selection after "New",
"Edit" and "Delete"
fixed
Calendar: Parts of CalDAV dialog not working
fixed
Various security fixes
Security fixes:
CVE-2019-11739: Covert Content Attack on S/MIME encryption using a crafted multipart/alternative message
#CVE-2019-11746: Use-after-free while manipulating video
#CVE-2019-11744: XSS by breaking out of title and textarea elements using innerHTML
#CVE-2019-11742: Same-origin policy violation with SVG filters and canvas to steal cross-origin images
#CVE-2019-11752: Use-after-free while extracting a key value in IndexedDB
#CVE-2019-11743: Cross-origin access to unload event attributes
#CVE-2019-11740: Memory safety bugs fixed in Firefox 69, Firefox ESR 68.1, Firefox ESR 60.9, Thunderbird 68.1, and Thunderbird 60.9
Revision 1.69 / (download) - annotate - [select for diffs], Mon May 27 13:06:18 2019 UTC (4 years, 6 months ago) by ryoon
Branch: MAIN
CVS Tags: pkgsrc-2019Q2-base,
pkgsrc-2019Q2
Changes since 1.68: +5 -1
lines
Diff to previous 1.68 (colored)
Update to 60.7.0
Changelog:
changed
Attachment pane of Write window no longer focussed when attaching files using a keyboard shortcut
fixed
Various security fixes
#CVE-2019-9815: Disable hyperthreading on content JavaScript threads on macOS
#CVE-2019-9816: Type confusion with object groups and UnboxedObjects
#CVE-2019-9817: Stealing of cross-domain images using canvas
#CVE-2019-9818: Use-after-free in crash generation server
#CVE-2019-9819: Compartment mismatch with fetch API
#CVE-2019-9820: Use-after-free of ChromeEventHandler by DocShell
#CVE-2019-11691: Use-after-free in XMLHttpRequest
#CVE-2019-11692: Use-after-free removing listeners in the event listener manager
#CVE-2019-11693: Buffer overflow in WebGL bufferdata on Linux
#CVE-2019-7317: Use-after-free in png_image_free of libpng library
#CVE-2019-9797: Cross-origin theft of images with createImageBitmap
#CVE-2018-18511: Cross-origin theft of images with ImageBitmapRenderingContext
#CVE-2019-11694: Uninitialized memory memory leakage in Windows sandbox
#CVE-2019-11698: Theft of user history data through drag and drop of hyperlinks to and from bookmarks
#CVE-2019-5798: Out-of-bounds read in Skia
#CVE-2019-9800: Memory safety bugs fixed in Firefox 67, Firefox ESR 60.7, and Thunderbird 60.7
Revision 1.68 / (download) - annotate - [select for diffs], Sun Mar 24 12:27:22 2019 UTC (4 years, 8 months ago) by ryoon
Branch: MAIN
CVS Tags: pkgsrc-2019Q1-base,
pkgsrc-2019Q1
Changes since 1.67: +7 -1
lines
Diff to previous 1.67 (colored)
Update to 60.6.0
Changelog:
60.6.0
fixed
Calendar: Can't create repeating event with end date when using certain time zones, for example Europe/Minsk
60.5.3
fixed
Problem when using "Send to > Mail recipient" on Windows introduced in version 60.5.2.
If files with non-ASCII characters in their name still cause a malfunction, use one of the following two alternative solutions:
Reset this registry entry
HKLM\SOFTWARE\Clients\Mail\Mozilla Thunderbird - SupportUTF8 to 0. Also reset HKLM\SOFTWARE\Wow6432Node\Clients\Mail\Mozilla Thunderbird - SupportUTF8 if present.
On Windows 10, set the system code page to UTF-8 (beta feature, see Region Settings, system locale)
Revision 1.67 / (download) - annotate - [select for diffs], Tue Feb 26 11:32:12 2019 UTC (4 years, 9 months ago) by ryoon
Branch: MAIN
Changes since 1.66: +56 -3
lines
Diff to previous 1.66 (colored)
Update to 60.5.1 Changelog: 60.5.1 Fixed CalDav access to some servers not working #CVE-2018-18500: Use-after-free parsing HTML5 stream #CVE-2018-18505: Privilege escalation through IPC channel messages #CVE-2016-5824: DoS (use-after-free) via a crafted ics file #CVE-2018-18501: Memory safety bugs fixed in Firefox 65, Firefox ESR 60.5, and Thunderbird 60.5 60.5.0 New FileLink provider WeTransfer to upload large attachments Thunderbird now allows the addition of OpenSearch search engines from a local XML file using a minimal user inferface: [+] button to select a file an add, [-] to remove. More search engines: Google and DuckDuckGo available by default in some locales During account creation, Thunderbird will now detect servers using the Microsoft Exchange protocol. It will offer the installation of a 3rd party add-on (Owl) which supports that protocol. Fixed Thunderbird now compatible with other WebExtension-based FileLink add-ons like the Dropbox add-on Crash when using custom sound for new email notification WebExtension-based dictionaries from addons.mozilla.org not working in Thunderbird Calendar: Printing of calendars not working #CVE-2018-18356: Use-after-free in Skia #CVE-2019-5785: Integer overflow in Skia #CVE-2018-18335: Buffer overflow in Skia with accelerated Canvas 2D #CVE-2018-18509: S/MIME signature spoofing
Revision 1.66 / (download) - annotate - [select for diffs], Sat Jan 5 00:38:22 2019 UTC (4 years, 11 months ago) by ryoon
Branch: MAIN
Changes since 1.65: +3 -1
lines
Diff to previous 1.65 (colored)
Update t o 60.4.0 Changelog: new WebExtensions FileLink API to facilitate FileLink add-ons. For the future version Thunderbird 60.5.0: WeTransfer will be included in Thunderbird 60.5.0 and the Dropbox add-on will be compatible with Thunderbird 60.5.0. fixed Decoding problems for messages with less common charsets (cp932, cp936) fixed New messages in the drafts folder (and other special or virtual folders) will no longer be included in the new messages notification
Revision 1.65 / (download) - annotate - [select for diffs], Fri Dec 21 11:55:48 2018 UTC (4 years, 11 months ago) by ryoon
Branch: MAIN
CVS Tags: pkgsrc-2018Q4-base,
pkgsrc-2018Q4
Changes since 1.64: +4 -3
lines
Diff to previous 1.64 (colored)
Fix PLIST for official branding, PR pkg/53804.
Revision 1.64 / (download) - annotate - [select for diffs], Sun Dec 16 08:12:15 2018 UTC (4 years, 11 months ago) by ryoon
Branch: MAIN
Changes since 1.63: +1066 -971
lines
Diff to previous 1.63 (colored)
Update to 60.3.3
Changelog:
60.3.3:
mitigated
Thunderbird 60 will migrate security databases (key3.db, cert8.db to
key4.db, cert9.db). Thunderbird 60.3.2 and earlier contained a fault
that potentially deleted saved passwords and private certificate keys
for users using a master password. Version 60.3.3 will prevent the loss
of data; affected users who have already upgraded to version 60.3.2 or
earlier can restore the deleted key3.db file from backup to complete
the migration.
fixed
Address book search and auto-complete slowness introduced in
Thunderbird 60.3.2
Plain text markup with * for bold, / for italics, _ for underline and |
for code did not work when the enclosed text contained non-ASCII
characters
While composing a message, a link not removed when link location was
removed in the link properties panel
60.3.2:
fixed
Under some circumstances Thunderbird on Mac will send attachments using
the so-called AppleDouble format which can lead to problems with mail
servers and recipients
Encoding problems when exporting address books or messages using the
system charset. Messages are now always exported using the UTF-8 encoding.
If the "Date" header of a message was invalid, Jan 1970 or Dec 1969 was
displayed. Now using date from "Received" header instead.
Body search/filtering didn't reliably ignore content of tags
Inappropriate warning "Thunderbird prevented the site
(addons.thunderbird.net) from asking you to install software on your
computer" when installing add-ons
Incorrect display of correspondents column since own email address was
not always detected
Spurious 
 (encoded newline) inserted into drafts and sent email
New email not inserted in correct sort order in threaded unified view
or search folder
60.3.1:
fixed
Double-clicking on a word in the Write window sometimes launched the
Advanced Property Editor or Link Properties dialog
Cookie removal (not working since Thunderbird version 52)
"Download rest of message" not working if global inbox was used
Encoding problems for users (especially in Poland) when a file was sent
via a folder using "Sent to > Mail recipient" due to a problem in the
Thunderbird MAPI interface
According to RFC 4616 and RFC 5721, passwords containing non-ASCII
characters are encoded using UTF-8 which can lead to problems with
non-compliant providers, for example office365.com. The SMTP LOGIN
and POP3 USER/PASS authentication methods are now using a Latin-1
encoding again to work around this issue.
Shutdown crash/hang after entering an empty IMAP password
60.3.0:
fixed
Various Theme fixes where incorrect colors, backgrounds, etc. were
displayed
Add-on Options menu not working on Mac
Shift+PageUp/PageDown in Write window
Saving content of Write windows didn't overwrite existing file
Issues related to "Edit Template" command
Gloda attachment filtering
Mailing list address auto-complete enter/return handling
Thunderbird hung if HTML signature references non-existent image
Filters not working for headers that appear more than once
Various security fixes
Secirity fixes:
#CVE-2018-12391: HTTP Live Stream audio data is accessible cross-origin
#CVE-2018-12392: Crash with nested event loops
#CVE-2018-12393: Integer overflow during Unicode conversion while loading JavaScript
#CVE-2018-12389: Memory safety bugs fixed in Firefox ESR 60.3 and Thunderbird 60.3
#CVE-2018-12390: Memory safety bugs fixed in Firefox 63, Firefox ESR 60.3, and Thunderbird 60.3
60.2.1:
Changed
Calendar: Default values for the first day of the week and working days
are now derived from the selected datetime formatting locale (restart
after changing locale in the OS required)
Calendar: Switch to a Photon-style icon set for all platforms
Multiple requests for master password when Google Mail or Calendar
OAuth2 is enabled
Scrollbar of the address entry auto-complete popup does not work
Security info dialog in compose window does not show certificate status
Links in the Add-on Manager's search results and theme browsing tabs
open in external browser
Localized versions of Thunderbird didn't show a localized name for
the "Drafts" and "Sent" folders for certain IMAP providers
(particularly in France)
Replying to a message with an empty subject inserted Re: twice (not
working in Thunderbird 60.0)
Spellcheck marks disappeared erroneously for words with an apostrophe
(not working in Thunderbird 60.0)
Calendar: First day of the week cannot be set
Calendar: Several fixes related to cutting/deleting of events and email
scheduling
Various security fixes
Security fixes:
#CVE-2018-12377: Use-after-free in refresh driver timers
#CVE-2018-12378: Use-after-free in IndexedDB
#CVE-2018-12379: Out-of-bounds write with malicious MAR file
#CVE-2017-16541: Proxy bypass using automount and autofs
#CVE-2018-12385: Crash in TransportSecurityInfo due to cached data
#CVE-2018-12383: Setting a master password post-Firefox 58 does not delete unencrypted previously stored passwords
#CVE-2018-12376: Memory safety bugs fixed in Firefox 62, Firefox ESR 60.2, and Thunderbird 60.2.1
60.0:
new
When writing a message, a delete button now allows the removal of a
recipient. This delete button is displayed when hovering the To/Cc/Bcc
selector.
Many improvements to attachments handling during compose: Attachments
can now be reordered using a dialog, keyboard shortcuts, or drag and
drop. The "Attach" button moved to the right to be above the attachment
pane. The access key of the attachment pane (e.g. Alt+M, may vary
depending on localization, Ctrl+M on Mac) now also works to show or
hide the pane. The attachment pane can also be shown initially when
composing a new message. Right-click on the header to enable this
option. Hiding a non-empty attachment pane will now show a placeholder
paperclip to indicate the presence of attachments and avoid sending
them accidentally.
"Edit Template" command. This also solves various problems when saving
as template (duplicates created, message ID lost).
"New Message from Template" command
Allow changing the Spellcheck Language from status bar
Light and Dark themes
WebExtension themes are now enabled in Thunderbird
A default startup directory in the address book window can now be
configured
Individual feed update interval
An option under "Tools > Options, Advanced, General" now allows to
select whether date/time display will follow the application locale
(adjusted by operating system's format settings for that locale) or
the locale selected in the operating system's regional settings.
In other words, an US English Thunderbird can use, for example,
German formats.
OAuth2 authentication for Yahoo and AOL
FIDO U2F support
Thunderbird now allows the conversion of folders from mbox to maildir
format and vice versa. This is an experimental feature that needs to
be enabled by setting the preference mail.store_conversion_enabled.
Note that this functionality does not not work if the option "Allow
Windows Search/Spotlight to search messages" is selected.
Calendar: Allow copying, cutting or deleting of a selected occurrence
or the entire series for recurring events
Calendar: Provide an option to display locations for events in calendar
day and week views
Calendar: Provide the ability for sending/not sending meeting
notifications directly instead of showing a popup
Calendar: Option to select the target calendar when pasting an event
or task
Calendar: Allow email scheduling for CalDAV servers supporting
server-side scheduling
Thunderbird Chat now contains multiple built-in message themes
changed
IMPORTANT: Add-ons not marked as compatible with Thunderbird 60
by their authors will be disabled (this can be reverted via preference
extensions.strictCompatibility)
IMAP: When after sending a message storing that sent message fails,
the message can now be stored in a local folder
Add-on options can no longer be configured from the Add-on Manager page.
A new menu item "Add-on Options" is now available on the Tools menu.
When messages are composed in paragraph format, "body text" and split
mail quotes are converted to paragraphs when pressing the enter key
"Edit As New Message" will now use the account's default compose format,
either HTML or plain text ignoring the format of the message. Plain
text messages will be converted to HTML and vice versa. Then using
the modifier, the format choice will be reverted.
The "Edit Draft" command now also honors the use of the shift key to
convert HTML to plain text or vice versa when editing a draft
The plain text to HTML conversion has been improved where such a
conversion is necessary for "Edit As New Message" or when the shift
modifier is used for "Edit Draft" or "New Message from Template".
During address entry, the matching part of the address is now shown in
bold. Preference mail.autoComplete.commentColumn allows to display
the address book where the address is stored.
When attaching a message via drag and drop, the subject of the message
is now used as attachment name instead of "Attached Message"
Better address book photo handling: Photos can be added by drag and
drop and a copy of all photos will be stored in the Thunderbird profile
On first start, Thunderbird now shows the account setup dialog, no longer
the account provisioner dialog
Thunderbird follows Firefox' Photon design with rectangular tabs and
many other theme improvements
When customizing the From: address, Thunderbird will now use this address
for the SMTP "MAIL FROM" command. Previously the address configured
in the identity was used. The preference
mail.smtp.useSenderForSmtpMailFrom allows return to the previous
behavior.
Native notifications on Linux are now re-enabled
Thunderbird now uses Mozilla's latest proxy technology (add-on FoxyProxy
now supported)
Thunderbird now uses the latest Rust-based Mozilla technology, including
Quantum's CSS engine (based on Servo) and encoding_rs, for displaying
and encoding messages
All certificates issued by Symantec roots before 2016-06-01 are
distrusted for use in TLS secured traffic in Thunderbird 60 and above.
This applies to all brands Symantec operated: Thawte, RapidSSL,
GeoTrust, Verisign, and Symantec. For usage in S/MIME the certificates
remain valid. Details here.
Calendar: Removal of capability to send email invitations compatible
to Outlook 2002 and earlier
Calendar: Reminders on read-only calendars can now be dismissed, while
reminders for missed events will now only be displayed for writable
calendars if option "Show missed reminders for writable calendars" is
selected
Thunderbird Chat: Nicknames inside of messages are colored to match
the participants list
fixed
When many Thunderbird clients or other email clients accessed the same
IMAP draft folder, messages were sometimes sent with the wrong
identity. This has been corrected and the user will be notified if
none of their identities matches the draft.
Various problems related to handling the IMAP trash folder: Under
certain circumstances the selection of the trash folder didn't persist,
for example when the name contained non-ASCII characters, or in
localized versions of Thunderbird. At times unwanted adtext menu behavior
Better error handling for Gmail authentication to avoid re-downloading
of folders
Thunderbird used a stale cached password after user edited a saved
password
Calendar: Wrong time formatting for some time zones
Calendar: Can't copy information from event dialog for received invitations
Various security fixes
Security fixes:
#CVE-2018-12359: Buffer overflow using computed size of canvas element
#CVE-2018-12360: Use-after-free when using focus()
#CVE-2018-12361: Integer overflow in SwizzleData
#CVE-2018-12362: Integer overflow in SSSE3 scaler
#CVE-2018-5156: Media recorder segmentation fault when track type is changed during capture
#CVE-2018-12363: Use-after-free when appending DOM nodes
#CVE-2018-12364: CSRF attacks through 307 redirects and NPAPI plugins
#CVE-2018-12365: Compromised IPC child process can list local filenames
#CVE-2018-12371: Integer overflow in Skia library during edge builder allocation
#CVE-2018-12366: Invalid data handling during QCMS transformations
#CVE-2018-12367: Timing attack mitigation of PerformanceNavigationTiming
#CVE-2018-12368: No warning when opening executable SettingContent-ms files
#CVE-2018-5187: Memory safety bugs fixed in Firefox 61, Firefox ESR 60.1, and Thunderbird 60
#CVE-2018-5188: Memory sa60
Revision 1.63 / (download) - annotate - [select for diffs], Mon Jan 1 22:29:42 2018 UTC (5 years, 11 months ago) by rillig
Branch: MAIN
CVS Tags: pkgsrc-2018Q3-base,
pkgsrc-2018Q3,
pkgsrc-2018Q2-base,
pkgsrc-2018Q2,
pkgsrc-2018Q1-base,
pkgsrc-2018Q1
Changes since 1.62: +3 -3
lines
Diff to previous 1.62 (colored)
Sort PLIST files. Unsorted entries in PLIST files have generated a pkglint warning for at least 12 years. Somewhat more recently, pkglint has learned to sort PLIST files automatically. Since pkglint 5.4.23, the sorting is only done in obvious, simple cases. These have been applied by running: pkglint -Cnone,PLIST -Wnone,plist-sort -r -F
Revision 1.62 / (download) - annotate - [select for diffs], Mon Jul 3 16:37:52 2017 UTC (6 years, 5 months ago) by ryoon
Branch: MAIN
CVS Tags: pkgsrc-2017Q4-base,
pkgsrc-2017Q4,
pkgsrc-2017Q3-base,
pkgsrc-2017Q3
Changes since 1.61: +1 -2
lines
Diff to previous 1.61 (colored)
Update to 52.2.1
Changelog:
52.2.1
Fixed Problems with Gmail (folders not showing, repeated email download, etc.) introduced in version 52.2.0.
52.2.0
Fixed Embedded images not shown in email received from Hotmail/Outlook webmailer
Fixed Detection of non-ASCII font names in font selector
Fixed Attachment not forwarded correctly under certain circumstances
Fixed Multiple requests for master password when GMail OAuth2 is enabled
Fixed Large number of blank pages being printed under certain circumstances when invalid preferences were present
Fixed Messages sent via the Simple MAPI interface are forced to HTML
Fixed Calendar: Invitations can't be printed
Fixed Mailing list (group) not accessible from macOS or Outlook address book
Fixed Clicking on links with references/anchors where target doesn't exist in the message not opening in external browser
Fixed Various security fixes
#CVE-2017-5472: Use-after-free using destroyed node when regenerating trees
#CVE-2017-7749: Use-after-free during docshell reloading
#CVE-2017-7750: Use-after-free with track elements
#CVE-2017-7751: Use-after-free with content viewer listeners
#CVE-2017-7752: Use-after-free with IME input
#CVE-2017-7754: Out-of-bounds read in WebGL with ImageInfo object
#CVE-2017-7756: Use-after-free and use-after-scope logging XHR header errors
#CVE-2017-7757: Use-after-free in IndexedDB
#CVE-2017-7758: Out-of-bounds read in Opus encoder
#CVE-2017-7763: Mac fonts render some unicode characters as spaces
#CVE-2017-7764: Domain spoofing with combination of Canadian Syllabics and other unicode blocks
#CVE-2017-7765: Mark of the Web bypass when saving executable files
#CVE-2017-5470: Memory safety bugs fixed in Firefox 54 and Firefox ESR 52.2, and Thunderbird 52.2
52.1.1
Fixed Large attachments may not be shown or saved correctly if the message is stored in an IMAP folder which is not synchronized for offline use
Fixed Unable to load full message via POP if message was downloaded partially (or only headers) before
Fixed Some attachments can't be opened or saved if the message body is empty
Fixed Crash when compacting IMAP folder
Revision 1.61 / (download) - annotate - [select for diffs], Mon May 1 05:50:08 2017 UTC (6 years, 7 months ago) by ryoon
Branch: MAIN
CVS Tags: pkgsrc-2017Q2-base,
pkgsrc-2017Q2
Changes since 1.60: +1 -3
lines
Diff to previous 1.60 (colored)
Update to 52.1.0 Changelog: Fixed * Background images not working and other issues related to embedded images when composing email * Google Oauth setup can sometimes not progress to the next step
Revision 1.60 / (download) - annotate - [select for diffs], Thu Apr 27 13:32:40 2017 UTC (6 years, 7 months ago) by ryoon
Branch: MAIN
Changes since 1.59: +1355 -177
lines
Diff to previous 1.59 (colored)
Update to 52.0.1
Changelog:
52.0.1:
Fixed
Clicking on a link in an email may not open this link in the external browser.
Crash due to incompatibility with McAfee Anti-SPAM add-on. Add-on is blocked in 52.0.1
52.0:
New
Folder pane toolbar and folder view selector (replacement for folder view arrows)
Optionally remove corresponding data files when removing an account from Thunderbird
Import settings from Becky! Internet Mail
Possibility to copy message filter
Dictionary setting is restored when editing a draft. Content-Language header (RFC 3282) transmitted with message
Calendar: Event can now be created and edited in a tab
Calendar: Processing of received invitation counter proposals
Chat: Support Twitter Direct Messages
Chat: Liking and favoriting in Twitter
Chat: XMPP: Support SASL SCRAM authentication mechanism
Chat: Support Jabber/XMPP Message Carbons (XEP-280)
Changed
IMPORTANT: The way images are included in a compose window has changed. Images are now included as data URIs and not as references to parts of other messages or operating system files. This allows better interoperability with office packages such as MS Office or LibreOffice. Images linked from locations on the internet will no longer be downloaded and attached to the message automatically. This can be changed for each image individually via the Image Properties dialog or globally by setting the preference mail.compose.attach_http_images.
Correspondents column now default for all new folders, can be switched off with preference mail.threadpane.use_correspondents
When replying to a mailing list, reply will be sent to address in From header ignoring Reply-to header
On Linux PulseAudio is now required to play sound
Formatting toolbar is now left in place when delivery format is switched to plain text only
Messages in IMAP folders read on external device are now filtered by default
Folders backed by mbox storage larger than 4GB are supported without warning (unless preference mailnews.allowMboxOver4GB is set to false)
IMAP caching now uses Mozilla's latest caching technology
The keyboard shortcut to insert hyperlinks into a compose window was changed from CTRL+L to CTRL+K to align with Office applications
Chat: Removed Yahoo! Messenger support (since Yahoo removed support)
Fixed
Message preview pane non-functional after IMAP folder was renamed or moved
Fixed
Editing in paragraph format: Pressing Shift+Enter sometimes doesn't move the cursor to the next line
Various corrections when composing messages in paragraph format
Paste as quotation doesn't always work
Long lines in plain text replies not properly wrapped
Undesired white-space before signature in paragraph mode
When attachment unavailable, compose shows endless "Attaching..." message instead of error
Text encoding of reply sometimes incorrect (uses encoding of last viewed message)
Text encoding of message display, reply or forwarded message sometimes incorrect (uses encoding of attachment)
Delivery Format not preserved for saved drafts (Auto-Detect|Plaintext|HTML|Both)
Reply to own e-mail does not reply with the correct identity
IMAP message part caching
Links with escaped non-ASCII (international) characters can't be clicked
Calendar: Events specified in timezone "local time" generate alerts in UTC time
Chat: XMPP Resource collisions
Various security fixes
Security fixes:
#CVE-2017-5400: asm.js JIT-spray bypass of ASLR and DEP
#CVE-2017-5401: Memory Corruption when handling ErrorResult
#CVE-2017-5402: Use-after-free working with events in FontFace objects
#CVE-2017-5403: Use-after-free using addRange to add range to an incorrect root object
#CVE-2017-5404: Use-after-free working with ranges in selections
#CVE-2017-5406: Segmentation fault in Skia with canvas operations
#CVE-2017-5407: Pixel and history stealing via floating-point timing side channel with SVG filters
#CVE-2017-5410: Memory corruption during JavaScript garbage collection incremental sweeping
#CVE-2017-5411: Use-after-free in Buffer Storage in libGLES
#CVE-2017-5408: Cross-origin reading of video captions in violation of CORS
#CVE-2017-5412: Buffer overflow read in SVG filters
#CVE-2017-5413: Segmentation fault during bidirectional operations
#CVE-2017-5414: File picker can choose incorrect default directory
#CVE-2017-5416: Null dereference crash in HttpChannel
#CVE-2017-5425: Overly permissive Gecko Media Plugin sandbox regular expression access
#CVE-2017-5426: Gecko Media Plugin sandbox is not started if seccomp-bpf filter is running
#CVE-2017-5418: Out of bounds read when parsing HTTP digest authorization responses
#CVE-2017-5419: Repeated authentication prompts lead to DOS attack
#CVE-2017-5405: FTP response codes can cause use of uninitialized values for ports
#CVE-2017-5421: Print preview spoofing
#CVE-2017-5422: DOS attack by using view-source: protocol repeatedly in one hyperlink
#CVE-2017-5399: Memory safety bugs fixed in Thunderbird 52
#CVE-2017-5398: Memory safety bugs fixed in Thunderbird 52 and Thunderbird 45.8
Revision 1.59 / (download) - annotate - [select for diffs], Sun Apr 17 18:33:50 2016 UTC (7 years, 7 months ago) by ryoon
Branch: MAIN
CVS Tags: pkgsrc-2017Q1-base,
pkgsrc-2017Q1,
pkgsrc-2016Q4-base,
pkgsrc-2016Q4,
pkgsrc-2016Q3-base,
pkgsrc-2016Q3,
pkgsrc-2016Q2-base,
pkgsrc-2016Q2
Changes since 1.58: +437 -339
lines
Diff to previous 1.58 (colored)
Update to 45.0
* Regen patch names
Changelog:
New Add a Correspondents column combining Sender and Recipient
New Much better support for XMPP chatrooms and commands.
New Remote content exceptions: Improved options to add exceptions.
New Implement option to always use HTML formatting to prevent unexpected format loss when converting messages to plain text.
New Use OpenStreetmap for maps (even allow the user to choose from list of map services)
New Allow spell checking and dictionary selection in the subject line
New Add dropdown in compose to allow specific setting of font size.
New Return/Enter in composer will now insert a new paragraph by default (shift-Enter will insert a line break)
New Mail.ru supports OAuth authentication.
New Allow copying of name and email address from the message header of an email
New Allow editing of From when composing a message.
Fixed Fixed: When sending e-mail which was composed using Chinese, Japanese or Korean characters, unwanted extra spaces were inserted within the text.
Fixed Spell checker checked spelling in invisible HTML parts of the message.
Fixed When saving a draft that is edited as new message, original draft was overwritten.
Fixed External images not displayed in reply/forward
Fixed Properly preserve pre-formatted blocks in message replies.
Fixed Crashed in some cases while parsing IMAP messages.
Fixed Copy/paste from a plain text editor lost white-space (multiple spaces/blanks, tabs, newlines)
Fixed "Open Draft"/"Forward"/"Edit As New"/"Reply" created message composition with incorrect character encoding.
Fixed Fixed: Grouped By view sort direction change was broken, plus enabled custom column grouping.
Fixed Fixed: New emails into a mailbox did not adhere to sort order by received.
Fixed Fixed: Box.com attachments failed to upload.
Fixed Fixed: Drag and drop of multiple attachments failed to OS file folder.
Fixed XMPP had connection problems for users with large rosters
Security bugs:
Fixed in Thunderbird 45
2016-37 Font vulnerabilities in the Graphite 2 library
2016-36 Use-after-free during processing of DER encoded keys in NSS
2016-35 Buffer overflow during ASN.1 decoding in NSS
2016-34 Out-of-bounds read in HTML parser following a failed allocation
2016-27 Use-after-free during XML transformations
2016-24 Use-after-free in SetBody
2016-23 Use-after-free in HTML5 string parser
2016-20 Memory leak in libstagefright when deleting an array during MP4 processing
2016-19 Linux video memory DOS with Intel drivers
2016-18 CSP reports fail to strip location information for embedded iframe pages
2016-17 Local file overwriting and potential privilege escalation through CSP reports
2016-16 Miscellaneous memory safety hazards (rv:45.0 / rv:38.7)
Revision 1.58 / (download) - annotate - [select for diffs], Sat Jul 18 13:30:36 2015 UTC (8 years, 4 months ago) by abs
Branch: MAIN
CVS Tags: pkgsrc-2016Q1-base,
pkgsrc-2016Q1,
pkgsrc-2015Q4-base,
pkgsrc-2015Q4,
pkgsrc-2015Q3-base,
pkgsrc-2015Q3
Changes since 1.57: +2 -1
lines
Diff to previous 1.57 (colored)
Add lib/thunderbird/libmozjs.so
Revision 1.57 / (download) - annotate - [select for diffs], Thu Jul 9 15:17:34 2015 UTC (8 years, 4 months ago) by ryoon
Branch: MAIN
Changes since 1.56: +252 -82
lines
Diff to previous 1.56 (colored)
Update to 38.0.1
Changelog:
What's New
New GMail supports OAuth2 authentication, removing the need to manually select "allow less secure applications" in Google options for the account. (bug 849540)
New Ship Lightning calendar addon with Thunderbird and enable with an opt-out dialog (bug 1113183)
New Filter sent messages (bug 11039)
New Filter messages when archived (bug 479823)
New Enable search in multiple/all address books (bug 170270)
New Add support for Yahoo Messenger in Chat (bug 955574)
New Support Internationalized domain name URLs for RSS feeds (Bug 1018589)
New Show expanded columns in folder pane (bug 464973)
New Allow file-per-message (maildir) local message storage (bug 845952)
New Add a Learn more link to the support page in feeds subscribe dialog (bug 1053782)
New Add reading position marker line to conversations (bug 760762)
New The editor for twitter should show inputtable character count (bug 736002)
Changed Thunderbird will no longer use SHA-1 to sign messages (bug 1018259)
Changed Removed rarely used character sets: T.61-8bit, non-encoding Mac encoders, VISCII, x-viet-tcvn5712, x-viet-vps x-johab, ARMSCII8 , map us-ascii to windows-1252, ISO-8859-6-I and -E and ISO-8859-8-E, (bug 1068505 and others.)
Changed Disable CONDSTORE support for IMAP to prevent discrepancies in IMAP message status (deleted, unread) on some servers (bug 912216)
Changed Make OpenSearch queries open in the user's default browser (bug 1120777)
Changed Default to using SSL for XMPP and IRC. This might cause issues for self-signed certificates (bug 1122567, bug 1122666)
Fixed Replied/forwarded icons disappear after folder repair, detach/delete (bug 840418)
Fixed Attachment "Save As" files are displayed in Tools/Saved Files (bug 914517)
Fixed Adding unknown email addresses to Mailing list, then deleting ghost duplicate entries from contacts pane, caused dataloss in mailing list (bug 628035)
Fixed Web site from RSS feed was not rendered correctly (bug 662907)
Fixed Email address with leading/trailing whitespace displayed wrongly with added quotes when composing ["foo"@bar.com] (bug 286760)
Fixed Force display of Sender header if S/MIME sender is the signer (bug 332639)
Fixed Addressing autocomplete widget: Typed text in red despite results/matches found if suggestions change by last input (bug 1042561)
Fixed Status bar not accessible (bug 934875)
Fixed Wrong folder may be deleted when requesting junk delete (bug 1018960)
Fixed Severe UI stutter or freezes getting new mail for very large folders (bug 870556)
Fixed Automatically rejoin multi-user conversations on reconnect for XMPP (bug 1014472)
Fixed Various improvements when using IRC on moznet (bug 1083768 and others)
Fixed Significantly improve XMPP support (bug 1085022 and others)
Fixed Fixes for connecting to non-standard IRC networks (bug 870556 and others)
Fixed Automatically reclaim IRC nicks during a reconnect (bug 1087566)
Fixed Changing location in editor doesn't preserve the font when returning to end of text/line (bug 756984)
Fixed Inline spell checker loses red underlines after a backspace is used (bug 1100966)
Known Issues
unresolved Automatic addon compatibility update checks were not completed, so existing addon compatibilities may not be accurate.
unresolved Copy/Paste into plain text editor deletes newlines from quoted text (bug 1143570)
unresolved Importing data from Outlook or Eudora crashes (bug 917961)
Security:
Fixed in Thunderbird 38.0.1
2015-58 Mozilla Windows updater can be run outside of application directory
2015-57 Privilege escalation through IPC channel messages
2015-54 Buffer overflow when parsing compressed XML
2015-51 Use-after-free during text processing with vertical text enabled
2015-48 Buffer overflow with SVG content and CSS
2015-47 Buffer overflow parsing H.264 video with Linux Gstreamer
2015-46 Miscellaneous memory safety hazards (rv:38.0 / rv:31.7)
Revision 1.56 / (download) - annotate - [select for diffs], Fri Feb 13 16:28:57 2015 UTC (8 years, 9 months ago) by ryoon
Branch: MAIN
CVS Tags: pkgsrc-2015Q2-base,
pkgsrc-2015Q2,
pkgsrc-2015Q1-base,
pkgsrc-2015Q1
Changes since 1.55: +2 -1
lines
Diff to previous 1.55 (colored)
Update to 31.4.0
Changelog:
Fixed The previous issues with jp mac builds have now been fixed, and Thunderbird will no longer need to be run in 32-bit mode.
Fixed Security fixes can be found here
Fixed Installing extensions within Thunderbird no longer requires download and installing as a file (Bug 1081190)
Fixed Autocomplete suggestion sort order was adjusted to prioritize entries where the search string matches the beginning of a word (Bug 970456)
Fixed in Thunderbird 31.4
2015-04 Cookie injection through Proxy Authenticate responses
2015-03 sendBeacon requests lack an Origin header
2015-01 Miscellaneous memory safety hazards (rv:35.0 / rv:31.4)
Revision 1.55 / (download) - annotate - [select for diffs], Thu Dec 4 05:22:05 2014 UTC (9 years ago) by ryoon
Branch: MAIN
CVS Tags: pkgsrc-2014Q4-base,
pkgsrc-2014Q4
Changes since 1.54: +2 -1
lines
Diff to previous 1.54 (colored)
Update to 31.3.0 Changelog: Fixed Fixes an issue where using LDAP autocomplete could end up with blank entries in the compose addressing list (Bug 1045753) Fixed Fixes an issue where IRC participants were not removed from the display on leaving a channel. Fixed Fixes a regression where Thunderbird wasn't respecting the skip integration option on the default client dialog. Fixed Security fixes can be found here Fixed in Thunderbird 31.3 2014-90 Apple CoreGraphics framework on OS X 10.10 logging input data to /tmp directory 2014-89 Bad casting from the BasicThebesLayer to BasicContainerLayer 2014-88 Buffer overflow while parsing media content 2014-87 Use-after-free during HTML5 parsing 2014-85 XMLHttpRequest crashes with some input streams 2014-83 Miscellaneous memory safety hazards (rv:34.0 / rv:31.3)
Revision 1.54 / (download) - annotate - [select for diffs], Sun Nov 30 10:23:29 2014 UTC (9 years ago) by markd
Branch: MAIN
Changes since 1.53: +2 -1
lines
Diff to previous 1.53 (colored)
Fix PLIST for Linux.
Revision 1.53 / (download) - annotate - [select for diffs], Fri Nov 14 15:27:04 2014 UTC (9 years ago) by ryoon
Branch: MAIN
Changes since 1.52: +2 -1
lines
Diff to previous 1.52 (colored)
Update to 31.2.0
Changelog:
31.2.0:
Fixed
Fixed a case where having a contact and card in an address book with the same name could send to the mailing list (Bug 1008718)
Fixed
Invalid certificate issue with mozilla::pkix (see bug 1042889)
Fixed
Importing an RSA private key fails if p < q (see bug 1049435)
Fixed
Security fixes can be found here
31.1.2:
Fixed
Fixed an issue where anchor links would not work in HTML emails (Bug 974857)
Fixed
Security fixes can be found here
31.1.1:
Fixed
Fixed an issue where mailing lists with spaces in their names couldn't be autocompleted (Bug 1060901)
Fixed
Fixed an occasional startup crash (Bug 1005336)
31.1.0:
Fixed
Security fixes can be found here
Fixed
Improved performance of autocomplete for large address books (Bug 984875)
Fixed
Fixed an issue with IMAP being slow when looking for folders on certain server types (Bug 799821, Bug 859269)
Fixed
Fixed various theme issues relating to titlebars and toolbars (Bug 1007225, Bug 1026608, Bug 1041211, Bug 1046563, Bug 1054260)
# Fixed in Thunderbird 31.2
2014-81 Inconsistent video sharing within iframe
2014-79 Use-after-free interacting with text directionality
2014-77 Out-of-bounds write with WebM video
2014-76 Web Audio memory corruption issues with custom waveforms
2014-75 Buffer overflow during CSS manipulation
2014-74 Miscellaneous memory safety hazards (rv:33.0 / rv:31.2)
# Fixed in Thunderbird 31.1.2
2014-73 RSA Signature Forgery in NSS
# Fixed in Thunderbird 31.1
2014-72 Use-after-free setting text directionality
2014-70 Out-of-bounds read in Web Audio audio timeline
2014-69 Uninitialized memory use during GIF rendering
2014-68 Use-after-free during DOM interactions with SVG
2014-67 Miscellaneous memory safety hazards (rv:32.0 / rv:31.1 / rv:24.8)
Revision 1.52 / (download) - annotate - [select for diffs], Sun Jul 27 20:04:59 2014 UTC (9 years, 4 months ago) by ryoon
Branch: MAIN
CVS Tags: pkgsrc-2014Q3-base,
pkgsrc-2014Q3
Changes since 1.51: +395 -5187
lines
Diff to previous 1.51 (colored)
Update to 31.0
* Update enigmail to 1.7
Changelog:
NEW
Autocompleting email addresses now matches against any part of the name or email (bug 529584)
NEW
Composing a mail to a newsgroup will now autocomplete newsgroup names (bug 61491)
FIXED
Insecure NTLM (pre-NTLMv2) authentication disabled (see 828183)
Fixed in Thunderbird 31
MFSA 2014-66 IFRAME sandbox same-origin access through redirect
MFSA 2014-65 Certificate parsing broken by non-standard character encoding
MFSA 2014-64 Crash in Skia library when scaling high quality images
MFSA 2014-63 Use-after-free while when manipulating certificates in the trusted cache
MFSA 2014-62 Exploitable WebGL crash with Cesium JavaScript library
MFSA 2014-61 Use-after-free with FireOnStateChange event
MFSA 2014-59 Use-after-free in DirectWrite font handling
MFSA 2014-58 Use-after-free in Web Audio due to incorrect control message ordering
MFSA 2014-57 Buffer overflow during Web Audio buffering for playback
MFSA 2014-56 Miscellaneous memory safety hazards (rv:31.0 / rv:24.7)
Revision 1.51 / (download) - annotate - [select for diffs], Wed May 7 20:26:12 2014 UTC (9 years, 7 months ago) by ryoon
Branch: MAIN
CVS Tags: pkgsrc-2014Q2-base,
pkgsrc-2014Q2
Changes since 1.50: +5090 -0
lines
Diff to previous 1.50 (colored)
Fix build with mozilla-common.mk for 24.5.0 Fix PLIST* (remove duplicated entries etc.)
Revision 1.50 / (download) - annotate - [select for diffs], Tue Nov 12 20:50:51 2013 UTC (10 years ago) by ryoon
Branch: MAIN
CVS Tags: pkgsrc-2014Q1-base,
pkgsrc-2014Q1,
pkgsrc-2013Q4-base,
pkgsrc-2013Q4
Changes since 1.49: +336 -4370
lines
Diff to previous 1.49 (colored)
Update to 24.1.0
Changelog:
24.1.
FIXED
Fixed an issue where signatures were shown in too lighter grey making them difficult to read (bug 917906)
FIXED
Fixed an issue where Auto CC for reply might not work if the cc address is the same as the sending address (bug 917231)
FIXED
Security fixes can be found here
Fixed in Thunderbird 24.0
MFSA 2013-92 GC hazard with default compartments and frame chain restoration
MFSA 2013-91 User-defined properties on DOM proxies get the wrong "this" object
MFSA 2013-90 Memory corruption involving scrolling
MFSA 2013-89 Buffer overflow with multi-column, lists, and floats
MFSA 2013-88 compartment mismatch re-attaching XBL-backed nodes
MFSA 2013-85 Uninitialized data in IonMonkey
MFSA 2013-83 Mozilla Updater does not lock MAR file after signature verification
MFSA 2013-82 Calling scope for new Javascript objects can lead to memory corruption
MFSA 2013-81 Use-after-free with select element
MFSA 2013-80 NativeKey continues handling key messages after widget is destroyed
MFSA 2013-79 Use-after-free in Animation Manager during stylesheet cloning
MFSA 2013-77 Improper state in HTML5 Tree Builder with templates
MFSA 2013-76 Miscellaneous memory safety hazards (rv:24.0 / rv:17.0.9)
24.0
NEW
Message threads can now be ignored or watched
NEW
Emails can now be sent to IDN based email addresses
NEW
Zoom functionality is now available in the compose window
CHANGED
In the Compose window, ctrl/cmd + and ctrl/cmd - now change the zoom setting rather than the font size
CHANGED
In Twitter, replying to a tweet now replies to all users, just like on the Twitter website
FIXED
Interactions in the filter list dialogs have been improved
FIXED
In Chat user nicknames are now highlighted when mentioned
FIXED
In IRC, long messages will now be sent in multiple parts instead of being cut off
FIXED
Various security fixes
Fixed in Thunderbird 24.1
MFSA 2013-102 Use-after-free in HTML document templates
MFSA 2013-101 Memory corruption in workers
MFSA 2013-100 Miscellaneous use-after-free issues found through ASAN fuzzing
MFSA 2013-98 Use-after-free when updating offline cache
MFSA 2013-97 Writing to cycle collected object during image decoding
MFSA 2013-96 Improperly initialized memory and overflows in some JavaScript functions
MFSA 2013-95 Access violation with XSLT and uninitialized data
MFSA 2013-94 Spoofing addressbar though SELECT element
MFSA 2013-93 Miscellaneous memory safety hazards (rv:25.0 / rv:24.1 / rv:17.0.10)
Revision 1.49 / (download) - annotate - [select for diffs], Fri Sep 27 13:44:49 2013 UTC (10 years, 2 months ago) by ryoon
Branch: MAIN
CVS Tags: pkgsrc-2013Q3-base,
pkgsrc-2013Q3
Changes since 1.48: +2 -10
lines
Diff to previous 1.48 (colored)
Update to 17.0.9 Changelog: The following security bug fixes should be applied to thunderbird-17.0.9. But I cannot find any documents. MFSA 2013-91 User-defined properties on DOM proxies get the wrong "this" object MFSA 2013-90 Memory corruption involving scrolling MFSA 2013-89 Buffer overflow with multi-column, lists, and floats MFSA 2013-88 compartment mismatch re-attaching XBL-backed nodes MFSA 2013-83 Mozilla Updater does not lock MAR file after signature verification MFSA 2013-82 Calling scope for new Javascript objects can lead to memory corruption MFSA 2013-79 Use-after-free in Animation Manager during stylesheet cloning MFSA 2013-76 Miscellaneous memory safety hazards (rv:24.0 / rv:17.0.9) MFSA 2013-65 Buffer underflow when generating CRMF requests
Revision 1.48 / (download) - annotate - [select for diffs], Thu May 23 13:13:30 2013 UTC (10 years, 6 months ago) by ryoon
Branch: MAIN
CVS Tags: pkgsrc-2013Q2-base,
pkgsrc-2013Q2
Changes since 1.47: +4 -13
lines
Diff to previous 1.47 (colored)
Fix PLIST. Fix build.
Revision 1.47 / (download) - annotate - [select for diffs], Wed May 8 09:12:53 2013 UTC (10 years, 7 months ago) by sbd
Branch: MAIN
Changes since 1.46: +3 -2
lines
Diff to previous 1.46 (colored)
Use the vorbis and tremor PLIST_VARS, and update PLIST.Linux.
Revision 1.46 / (download) - annotate - [select for diffs], Sat Jan 19 03:43:52 2013 UTC (10 years, 10 months ago) by ryoon
Branch: MAIN
CVS Tags: pkgsrc-2013Q1-base,
pkgsrc-2013Q1
Changes since 1.45: +7 -1
lines
Diff to previous 1.45 (colored)
Add missing jpeg header files to PLIST.
Revision 1.45 / (download) - annotate - [select for diffs], Fri Nov 23 07:17:53 2012 UTC (11 years ago) by ryoon
Branch: MAIN
CVS Tags: pkgsrc-2012Q4-base,
pkgsrc-2012Q4
Changes since 1.44: +163 -31
lines
Diff to previous 1.44 (colored)
Update to 17.0
Changelog:
NEW
A Menu Button is now shown to new users by default
NEW
Tabs are now drawn in the title bar on Windows
FIXED
An issue causing spell-checking only parts of words in Thunderbird 16 is now fixed (790475)
FIXED
An issue causing Thunderbird 16 to repeatedly download emails is now fixed (806760)
FIXED
RSS feeds can now be viewed in the Wide View Layout (531397)
FIXED
Various fixes and performance improvements
FIXED
Various security fixes
CHANGED
Mac OS X 10.5 is no longer supported
Security fixes:
Fixed in Thunderbird 17
MFSA 2012-106 Use-after-free, buffer overflow, and memory corruption issues found using Address Sanitizer
MFSA 2012-105 Use-after-free and buffer overflow issues found using Address Sanitizer
MFSA 2012-103 Frames can shadow top.location
MFSA 2012-101 Improper character decoding in HZ-GB-2312 charset
MFSA 2012-100 Improper security filtering for cross-origin wrappers
MFSA 2012-99 XrayWrappers exposes chrome-only properties when not in chrome compartment
MFSA 2012-97 XMLHttpRequest inherits incorrect principal within sandbox
MFSA 2012-96 Memory corruption in str_unescape
MFSA 2012-94 Crash when combining SVG text on path with CSS
MFSA 2012-93 evalInSanbox location context incorrectly applied
MFSA 2012-92 Buffer overflow while rendering GIF images
MFSA 2012-91 Miscellaneous memory safety hazards (rv:17.0/ rv:10.0.11)
Revision 1.44 / (download) - annotate - [select for diffs], Fri Oct 12 18:28:58 2012 UTC (11 years, 1 month ago) by ryoon
Branch: MAIN
Changes since 1.43: +142 -32
lines
Diff to previous 1.43 (colored)
Update to 16.0.1
Changelog:
FIXED
16.0.1: Vulnerability outlined here
https://blog.mozilla.org/security/2012/10/10/security-vulnerability-in-firefox-16/
NEW
We have now added box.com to the list of online storage services that are available for use with Thunderbird Filelink
NEW
Silent, background updates. Thunderbird will now download and apply updates in the background allowing you to start quickly the next time Thunderbird starts up.
FIXED
Various fixes and performance improvements
FIXED
Various security fixes
Fixed in Thunderbird 16.0.1
MFSA 2012-89 defaultValue security checks not applied
MFSA 2012-88 Miscellaneous memory safety hazards (rv:16.0.1)
Fixed in Thunderbird 16
MFSA 2012-87 Use-after-free in the IME State Manager
MFSA 2012-86 Heap memory corruption issues found using Address Sanitizer
MFSA 2012-85 Use-after-free, buffer overflow, and out of bounds read issues found using Address Sanitizer
MFSA 2012-84 Spoofing and script injection through location.hash
MFSA 2012-83 Chrome Object Wrapper (COW) does not disallow acces to privileged functions or properties
MFSA 2012-82 top object and location property accessible by plugins
MFSA 2012-81 GetProperty function can bypass security checks
MFSA 2012-80 Crash with invalid cast when using instanceof operator
MFSA 2012-79 DOS and crash with full screen and history navigation
MFSA 2012-77 Some DOMWindowUtils methods bypass security checks
MFSA 2012-76 Continued access to initial origin after setting document.domain
MFSA 2012-75 select element persistance allows for attacks
MFSA 2012-74 Miscellaneous memory safety hazards (rv:16.0/ rv:10.0.8)
Revision 1.43 / (download) - annotate - [select for diffs], Sun Sep 2 06:43:39 2012 UTC (11 years, 3 months ago) by ryoon
Branch: MAIN
CVS Tags: pkgsrc-2012Q3-base,
pkgsrc-2012Q3
Changes since 1.42: +144 -66
lines
Diff to previous 1.42 (colored)
Update to 15.0
* Update Mozilla Lightning to 1.7
* Update Enigmail to 1.4.4 (functionality is not tested yet; should
be updated)
* Regen patches
Changelog:
NEW Multi-Channel Chat: You now can enjoy real time conversation with your contacts, right from your favorite messaging application.
NEW Do Not Track: This option has been implemented as an addition to Search the Web.
NEW Ubuntu One is now supported in Filelink - the option to upload large attachments to online storage services.
NEW New User Interface: Thunderbird is replicating the new look and feel of Mozilla Firefox in an effort to provide a similar user experience across all Mozilla software desktop or mobile and all platforms.
FIXED Various fixes and performance improvements
FIXED Various security fixes
MFSA 2012-72 Web console eval capable of executing chrome-privileged code
MFSA 2012-70 Location object security checks bypassed by chrome code
MFSA 2012-68 DOMParser loads linked resources in extensions when parsing text/html
MFSA 2012-67 Installer will launch incorrect executable following new installation
MFSA 2012-65 Out-of-bounds read in format-number in XSLT
MFSA 2012-64 Graphite 2 memory corruption
MFSA 2012-63 SVG buffer overflow and use-after-free issues
MFSA 2012-62 WebGL use-after-free and memory corruption
MFSA 2012-61 Memory corruption with bitmap format images with negative height
MFSA 2012-59 Location object can be shadowed using Object.defineProperty
MFSA 2012-58 Use-after-free issues found using Address Sanitizer
MFSA 2012-57 Miscellaneous memory safety hazards (rv:15.0/ rv:10.0.7)
Revision 1.42 / (download) - annotate - [select for diffs], Thu Jul 19 17:57:30 2012 UTC (11 years, 4 months ago) by ryoon
Branch: MAIN
Changes since 1.41: +69 -23
lines
Diff to previous 1.41 (colored)
Update to 14.0
* Use Lightning 1.6 release
* Enigmail is not tested fully
Changelog: from http://www.mozilla.org/en-US/products/thunderbird/14.0/releasenotes/
FIXED
Various fixes and performance improvements
FIXED
Various security fixes
Revision 1.41 / (download) - annotate - [select for diffs], Tue Jun 12 19:37:48 2012 UTC (11 years, 5 months ago) by ryoon
Branch: MAIN
CVS Tags: pkgsrc-2012Q2-base,
pkgsrc-2012Q2
Changes since 1.40: +325 -42
lines
Diff to previous 1.40 (colored)
Update to 13.0 * Update enigmail to 1.4.2 * Update Lightning to 1.5 Changelog: * Filelink: Upload your files to an online storage service and send links to your friends, avoiding bounce back due to large attachments. We have partnered with YouSendIt to bring this feature, but additional partners will be added in the near future. * In partnership with Gandi and Hover, you can now sign up for a personalized email address from within Thunderbird. Along with your new email address, Thunderbird will be automatically set up and ready to send and receive messages. We are working with additional suppliers to cover more areas of the world and to provide more options in the future. * Various security fixes MFSA 2012-40 Buffer overflow and use-after-free issues found using Address Sanitizer MFSA 2012-39 NSS parsing errors with zero length items MFSA 2012-38 Use-after-free while replacing/inserting a node in a document MFSA 2012-37 Information disclosure though Windows file shares and shortcut files MFSA 2012-36 Content Security Policy inline-script bypass MFSA 2012-35 Privilege escalation through Mozilla Updater and Windows Updater Service MFSA 2012-34 Miscellaneous memory safety hazards * The minimum system requirements for Windows are now Windows XP Service Pack 2 or later.
Revision 1.40 / (download) - annotate - [select for diffs], Sat Apr 28 16:56:58 2012 UTC (11 years, 7 months ago) by ryoon
Branch: MAIN
Changes since 1.39: +337 -224
lines
Diff to previous 1.39 (colored)
Update to 12.0 * Remove unused option. * Update enigmail to 1.4.1 Changelog: * Global Search results now include message extracts in the results * Various security fixes * Various improvements to RSS feed subscription and general feed handling * Thunderbird now supports add-ons that provide different types of local mail storage
Revision 1.39 / (download) - annotate - [select for diffs], Thu Mar 15 08:52:34 2012 UTC (11 years, 8 months ago) by ryoon
Branch: MAIN
CVS Tags: pkgsrc-2012Q1-base,
pkgsrc-2012Q1
Changes since 1.38: +63 -56
lines
Diff to previous 1.38 (colored)
Update to 11.0 * enigmail source is not provided for this version now. * Switch to xulrunner 11 branch * Fix security bugs * Improve stability * Many bug fixes
Revision 1.38 / (download) - annotate - [select for diffs], Sat Mar 10 11:42:38 2012 UTC (11 years, 8 months ago) by ryoon
Branch: MAIN
Changes since 1.37: +121 -400
lines
Diff to previous 1.37 (colored)
Update to 10.0.2 * Add new features. * Fix security bugs * See http://www.mozilla.org/en-US/thunderbird/10.0/releasenotes/
Revision 1.37 / (download) - annotate - [select for diffs], Sat Jan 7 23:37:51 2012 UTC (11 years, 11 months ago) by sbd
Branch: MAIN
CVS Tags: pkgsrc-2011Q4-base,
pkgsrc-2011Q4
Changes since 1.36: +3 -1
lines
Diff to previous 1.36 (colored)
Enabling the jemalloc option adds two more files to the PLIST. Also add PLIST.Linux Bump PKGREVISION
Revision 1.36 / (download) - annotate - [select for diffs], Sun Dec 11 11:55:12 2011 UTC (11 years, 11 months ago) by marino
Branch: MAIN
Changes since 1.35: +3 -3
lines
Diff to previous 1.35 (colored)
mail/thunderbird: Fix for all non-NetBSD platforms
Using ${LOWER_OPSYS} in PLIST only breaks the install phase for non-NetBSD
platforms. This practice needs to stop.
Reported-by: Chris Turner
Revision 1.35 / (download) - annotate - [select for diffs], Sun Nov 13 16:59:58 2011 UTC (12 years ago) by tnn
Branch: MAIN
Changes since 1.34: +165 -125
lines
Diff to previous 1.34 (colored)
Update to thunderbird-8.0 and enigmail-1.3.3.
8.0 changes:
Thunderbird is based on the new Mozilla Gecko 8 engine
Add-ons installed by third party programs are now disabled by default
New Search and Find Shortcuts
Improved accessibility of the attachment list
Folder switching pane widget has been removed, can be added back with the
Folder Pane View Switcher Add-on
Numerous platform fixes to stability
Fixed several security issues
7.0 changes:
Thunderbird is based on the new Mozilla Gecko 7 engine
Several user interface fixes and improvements
Several fixes to attachment handling
Ability to print a summary of selected email messages
Platform improvements to Address Book
Fixed several security issues
Numerous platform fixes that improve speed, performance and stability
Revision 1.34 / (download) - annotate - [select for diffs], Tue Aug 23 18:04:17 2011 UTC (12 years, 3 months ago) by tnn
Branch: MAIN
CVS Tags: pkgsrc-2011Q3-base,
pkgsrc-2011Q3
Changes since 1.33: +19 -19
lines
Diff to previous 1.33 (colored)
Add missing nanojit conditionals to PLIST. Should fix PR pkg/45282.
Revision 1.33 / (download) - annotate - [select for diffs], Fri Aug 19 14:39:09 2011 UTC (12 years, 3 months ago) by tnn
Branch: MAIN
Changes since 1.32: +5744 -48
lines
Diff to previous 1.32 (colored)
Update to thunderbird-6.0 and enigmail-1.2.1. Release notes for 6.0: Thunderbird is based on the new Mozilla Gecko 6 engine Several theme improvements for Windows 7 Support for Windows 7 Jump lists Several fixes when importing email from Microsoft Outlook Default mail client check now works with newer Linux distributions Various other user interface fixes and improvements Numerous platform fixes that improve speed, performance, stability and security Release notes for 5.0: More responsive and faster to start up and use Thunderbird is based on the new Mozilla Gecko 5 engine New Add-ons Manager Revised account creation wizard to improve email setup New Troubleshooting Information page Tabs can now be reordered and dragged to different windows Attachment sizes now displayed along with attachments Plugins can now be loaded in RSS feeds by default There are several theme fixes for Windows Vista and Windows 7 Support for Mac 32/64 bit Universal builds (Thunderbird no longer supports PowerPC on Mac) Over 390 platform fixes that improve speed, performance, stability and security
Revision 1.31.2.1 / (download) - annotate - [select for diffs], Mon Oct 25 15:34:49 2010 UTC (13 years, 1 month ago) by tron
Branch: pkgsrc-2010Q3
Changes since 1.31: +1 -0
lines
Diff to previous 1.31 (colored) next main 1.32 (colored)
Pullup ticket #3257 - requested by tnn Revisions pulled up: - mail/thunderbird/Makefile 1.60 - mail/thunderbird/PLIST 1.32 - mail/thunderbird/distinfo 1.75 - mail/thunderbird/patches/patch-mc delete --- odule Name: pkgsrc Committed By: tnn Date: Thu Oct 21 16:02:37 UTC 2010 Modified Files: pkgsrc/mail/thunderbird: Makefile PLIST distinfo Removed Files: pkgsrc/mail/thunderbird/patches: patch-mc Log Message: Update to thunderbird-3.1.5. * Several fixes to improve stability and security * Several fixes to the user interface. MFSA 2010-72 Insecure Diffie-Hellman key exchange MFSA 2010-71 Unsafe library loading vulnerabilities MFSA 2010-70 SSL wildcard certificate matching IP addresses MFSA 2010-69 Cross-site information disclosure via modal calls MFSA 2010-67 Dangling pointer vulnerability in LookupGetterOrSetter MFSA 2010-66 Use-after-free error in nsBarProp MFSA 2010-65 Buffer overflow and memory corruption using document.write MFSA 2010-64 Miscellaneous memory safety hazards (rv:1.9.2.11/ 1.9.1.14)
Revision 1.32 / (download) - annotate - [select for diffs], Thu Oct 21 16:02:37 2010 UTC (13 years, 1 month ago) by tnn
Branch: MAIN
CVS Tags: pkgsrc-2011Q2-base,
pkgsrc-2011Q2,
pkgsrc-2011Q1-base,
pkgsrc-2011Q1,
pkgsrc-2010Q4-base,
pkgsrc-2010Q4
Changes since 1.31: +2 -1
lines
Diff to previous 1.31 (colored)
Update to thunderbird-3.1.5. * Several fixes to improve stability and security * Several fixes to the user interface. MFSA 2010-72 Insecure Diffie-Hellman key exchange MFSA 2010-71 Unsafe library loading vulnerabilities MFSA 2010-70 SSL wildcard certificate matching IP addresses MFSA 2010-69 Cross-site information disclosure via modal calls MFSA 2010-67 Dangling pointer vulnerability in LookupGetterOrSetter MFSA 2010-66 Use-after-free error in nsBarProp MFSA 2010-65 Buffer overflow and memory corruption using document.write MFSA 2010-64 Miscellaneous memory safety hazards (rv:1.9.2.11/ 1.9.1.14)
Revision 1.31 / (download) - annotate - [select for diffs], Mon Jul 12 16:49:21 2010 UTC (13 years, 4 months ago) by tnn
Branch: MAIN
CVS Tags: pkgsrc-2010Q3-base
Branch point for: pkgsrc-2010Q3
Changes since 1.30: +21 -154
lines
Diff to previous 1.30 (colored)
- Update to thunderbird-3.1 - Update bundled enigmail to 1.1.2 - Update mozilla branch patches to 1.9.2 (from devel/xulrunner) - While here fix PR pkg/43598 PLIST problem w/ enigmail ---8<--- Thunderbird 3.1 is based on the Gecko 1.9.2 platform to provide improved performance, stability, web compatibility, and code simplification and sustainability. New features include: Faster Search Results and Quick Filter Toolbar * Faster Search Results * Quick Filter Toolbar User Experience Improvements * New Migration Assistant * Saved Files Manager * Mail Account Setup Wizard Performance Improvements * Improvements to Stability, Memory, and Password Handling
Revision 1.30 / (download) - annotate - [select for diffs], Sun Nov 29 03:06:42 2009 UTC (14 years ago) by tnn
Branch: MAIN
CVS Tags: pkgsrc-2010Q2-base,
pkgsrc-2010Q2,
pkgsrc-2010Q1-base,
pkgsrc-2010Q1,
pkgsrc-2009Q4-base,
pkgsrc-2009Q4
Changes since 1.29: +402 -2818
lines
Diff to previous 1.29 (colored)
update to thunderbird-3.0rc1. The 2.x version is still available in mail/thunderbird2. Major changes: - New Mail Account Setup Wizard - Redesigned Mail Toolbar - Tabbed Email Messages - Smart Folders - New Message Summary View - Column Headings - Message Archive - Activity Manager - New Add-ons Manager - Improved Address Book - Improved Gmail Integration Full release notes: http://www.mozillamessaging.com/en-US/thunderbird/3.0rc1/releasenotes/
Revision 1.29 / (download) - annotate - [select for diffs], Sat Oct 3 13:18:23 2009 UTC (14 years, 2 months ago) by ghen
Branch: MAIN
CVS Tags: pkgsrc-2009Q3-base,
pkgsrc-2009Q3
Changes since 1.28: +6 -43
lines
Diff to previous 1.28 (colored)
Update thunderbird and thunderbird-gtk1 to 2.0.0.23. Security fixes in this version: MFSA 2009-43 Heap overflow in certificate regexp parsing MFSA 2009-42 Compromise of SSL-protected communication For more info, see http://www.mozilla.com/en-US/thunderbird/2.0.0.23/releasenotes/
Revision 1.28 / (download) - annotate - [select for diffs], Sun Jun 14 20:45:12 2009 UTC (14 years, 5 months ago) by joerg
Branch: MAIN
CVS Tags: pkgsrc-2009Q2-base,
pkgsrc-2009Q2
Changes since 1.27: +1 -3
lines
Diff to previous 1.27 (colored)
Convert @exec/@unexec to @pkgdir or drop it.
Revision 1.27 / (download) - annotate - [select for diffs], Sun Jun 14 18:04:44 2009 UTC (14 years, 5 months ago) by joerg
Branch: MAIN
Changes since 1.26: +1 -168
lines
Diff to previous 1.26 (colored)
Remove @dirrm entries from PLISTs
Revision 1.25.2.1 / (download) - annotate - [select for diffs], Wed Jan 7 16:50:30 2009 UTC (14 years, 11 months ago) by tron
Branch: pkgsrc-2008Q4
Changes since 1.25: +3 -1
lines
Diff to previous 1.25 (colored) next main 1.26 (colored)
Pullup ticket #2624 - requested by ghen thunderbird: build fix thunderbird-gtk1: build fix Revisions pulled up: - mail/thunderbird-gtk1/Makefile 1.20 - mail/thunderbird-gtk1/PLIST 1.16 - mail/thunderbird/Makefile 1.33 - mail/thunderbird/Makefile-thunderbird.common 1.42 - mail/thunderbird/PLIST 1.26 --- Module Name: pkgsrc Committed By: ghen Date: Wed Jan 7 14:23:03 UTC 2009 Modified Files: pkgsrc/mail/thunderbird: Makefile Makefile-thunderbird.common PLIST pkgsrc/mail/thunderbird-gtk1: Makefile PLIST Log Message: Include xdg-dirs for the share/applications and share/pixmaps directories, otherwise thunderbird doesn't install properly if these directories don't exist on the system, noted by tron. Bump PKGREVISION, brick jmcneill. ;-)
Revision 1.26 / (download) - annotate - [select for diffs], Wed Jan 7 14:23:03 2009 UTC (14 years, 11 months ago) by ghen
Branch: MAIN
CVS Tags: pkgsrc-2009Q1-base,
pkgsrc-2009Q1
Changes since 1.25: +3 -1
lines
Diff to previous 1.25 (colored)
Include xdg-dirs for the share/applications and share/pixmaps directories, otherwise thunderbird doesn't install properly if these directories don't exist on the system, noted by tron. Bump PKGREVISION, brick jmcneill. ;-)
Revision 1.25 / (download) - annotate - [select for diffs], Sun Dec 21 17:04:40 2008 UTC (14 years, 11 months ago) by jmcneill
Branch: MAIN
CVS Tags: pkgsrc-2008Q4-base
Branch point for: pkgsrc-2008Q4
Changes since 1.24: +3 -1
lines
Diff to previous 1.24 (colored)
Add .desktop file for GNOME/KDE/Xfce integration, bump PKGREVISION. ok wiz@
Revision 1.23.10.1 / (download) - annotate - [select for diffs], Sun Aug 24 11:10:26 2008 UTC (15 years, 3 months ago) by rtr
Branch: pkgsrc-2008Q2
Changes since 1.23: +2 -1
lines
Diff to previous 1.23 (colored) next main 1.24 (colored)
pullup ticket #2506 - requested by ghen
thunderbird, thunderbird-gtk1: update package for security fixes
revisions pulled up:
pkgsrc/mail/thunderbird/Makefile-thunderbird.common 1.36
pkgsrc/mail/thunderbird/PLIST 1.24
pkgsrc/mail/thunderbird/distinfo 1.46
pkgsrc/mail/thunderbird-gtk1/PLIST 1.14
pkgsrc/mail/thunderbird/patches/patch-af 1.5
pkgsrc/mail/thunderbird/patches/patch-ap 1.5
pkgsrc/mail/thunderbird/patches/patch-dw 1.2
Module Name: pkgsrc
Committed By: ghen
Date: Fri Aug 22 09:42:15 UTC 2008
Modified Files:
pkgsrc/mail/thunderbird: Makefile-thunderbird.common PLIST distinfo
pkgsrc/mail/thunderbird-gtk1: PLIST
pkgsrc/mail/thunderbird/patches: patch-af patch-ap patch-dw
Log Message:
Update thunderbird and thunderbird-gtk1 to 2.0.0.16.
Security fixes in this version:
MFSA 2008-34 Remote code execution by overflowing CSS reference counter
MFSA 2008-33 Crash and remote code execution in block reflow
MFSA 2008-31 Peer-trusted certs can use alt names to spoof
MFSA 2008-29 Faulty .properties file results in uninitialized memory being used
MFSA 2008-26 Buffer length checks in MIME processing
MFSA 2008-25 Arbitrary code execution in mozIJSSubScriptLoader.loadSubScript()
MFSA 2008-24 Chrome script loading from fastload file
MFSA 2008-21 Crashes with evidence of memory corruption
For more info, see
+http://www.mozilla.com/en-US/thunderbird/2.0.0.16/releasenotes/
Revision 1.24 / (download) - annotate - [select for diffs], Fri Aug 22 09:42:15 2008 UTC (15 years, 3 months ago) by ghen
Branch: MAIN
CVS Tags: pkgsrc-2008Q3-base,
pkgsrc-2008Q3,
cube-native-xorg-base,
cube-native-xorg
Changes since 1.23: +2 -1
lines
Diff to previous 1.23 (colored)
Update thunderbird and thunderbird-gtk1 to 2.0.0.16. Security fixes in this version: MFSA 2008-34 Remote code execution by overflowing CSS reference counter MFSA 2008-33 Crash and remote code execution in block reflow MFSA 2008-31 Peer-trusted certs can use alt names to spoof MFSA 2008-29 Faulty .properties file results in uninitialized memory being used MFSA 2008-26 Buffer length checks in MIME processing MFSA 2008-25 Arbitrary code execution in mozIJSSubScriptLoader.loadSubScript() MFSA 2008-24 Chrome script loading from fastload file MFSA 2008-21 Crashes with evidence of memory corruption For more info, see http://www.mozilla.com/en-US/thunderbird/2.0.0.16/releasenotes/
Revision 1.22.2.1 / (download) - annotate - [select for diffs], Fri Aug 10 01:40:48 2007 UTC (16 years, 4 months ago) by salo
Branch: pkgsrc-2007Q2
Changes since 1.22: +3 -1
lines
Diff to previous 1.22 (colored) next main 1.23 (colored)
Pullup ticket 2156 - requested by ghen security update for thunderbird Revisions pulled up: - pkgsrc/mail/thunderbird/Makefile-thunderbird.common 1.27, 1.28 - pkgsrc/mail/thunderbird/PLIST 1.23 - pkgsrc/mail/thunderbird/distinfo 1.40, 1.41 - pkgsrc/mail/thunderbird-gtk1/PLIST 1.13 Module Name: pkgsrc Committed By: ghen Date: Thu Jul 26 12:29:37 UTC 2007 Modified Files: pkgsrc/mail/thunderbird: Makefile-thunderbird.common PLIST distinfo pkgsrc/mail/thunderbird-gtk1: PLIST Log Message: Update thunderbrd and thunderbird-gtk1 to 2.0.0.5. Security fixes in this version: MFSA 2007-15 Security Vulnerability in APOP Authentication MFSA 2007-12 Crashes with evidence of memory corruption For more info, see http://www.mozilla.com/en-US/thunderbird/2.0.0.5/releasenotes/ --- Module Name: pkgsrc Committed By: ghen Date: Thu Aug 2 08:48:30 UTC 2007 Modified Files: pkgsrc/mail/thunderbird: Makefile-thunderbird.common distinfo Log Message: Update thunderbrd and thunderbird-gtk1 to 2.0.0.6. Security fixes in this version: MFSA 2007-27 Unescaped URIs passed to external programs MFSA 2007-26 Privilege escalation through chrome-loaded about:blank windows For more info, see http://www.mozilla.com/en-US/thunderbird/2.0.0.6/releasenotes/
Revision 1.23 / (download) - annotate - [select for diffs], Thu Jul 26 12:29:34 2007 UTC (16 years, 4 months ago) by ghen
Branch: MAIN
CVS Tags: pkgsrc-2008Q2-base,
pkgsrc-2008Q1-base,
pkgsrc-2008Q1,
pkgsrc-2007Q4-base,
pkgsrc-2007Q4,
pkgsrc-2007Q3-base,
pkgsrc-2007Q3,
cwrapper
Branch point for: pkgsrc-2008Q2
Changes since 1.22: +3 -1
lines
Diff to previous 1.22 (colored)
Update thunderbrd and thunderbird-gtk1 to 2.0.0.5. Security fixes in this version: MFSA 2007-15 Security Vulnerability in APOP Authentication MFSA 2007-12 Crashes with evidence of memory corruption For more info, see http://www.mozilla.com/en-US/thunderbird/2.0.0.5/releasenotes/
Revision 1.22 / (download) - annotate - [select for diffs], Fri Jun 15 08:55:29 2007 UTC (16 years, 5 months ago) by ghen
Branch: MAIN
CVS Tags: pkgsrc-2007Q2-base
Branch point for: pkgsrc-2007Q2
Changes since 1.21: +3 -1
lines
Diff to previous 1.21 (colored)
Update thunderbrd and thunderbird-gtk1 to 2.0.0.4. (2.0.0.1-2.0.0.3 skipped to keep the version on par with Firefox?) Security fixes in this version: MFSA 2007-15 Security Vulnerability in APOP Authentication MFSA 2007-12 Crashes with evidence of memory corruption For more info, see http://www.mozilla.com/en-US/thunderbird/2.0.0.4/releasenotes/
Revision 1.21 / (download) - annotate - [select for diffs], Sat May 12 06:53:21 2007 UTC (16 years, 6 months ago) by ghen
Branch: MAIN
Changes since 1.20: +143 -29
lines
Diff to previous 1.20 (colored)
Update to Thunderbird 2.0.0.0. What's New in Thunderbird 2 * Message Tags: Create your own tags for organizing email. Messages can be assigned any number of tags. Tags can be combined with saved searches and mail views to make it easier to organize email. * Visual Theme: Thunderbird 2's theme and user interface have been updated to improve usability and maximize screen real estate. * Session History Navigation: Back and Forward buttons allow navigation through message history. * Advanced Folder Views: Customize the folder pane to show favorite, unread or recent folders. * Easy Access to Popular Web Mail Services: Gmail and .Mac users can access their accounts in Thunderbird by simply providing their user names and passwords. * Improved Support For Extensions: Extensions can now add custom columns to the message list pane in addition to storing custom message data in the mail database. * Improved New Mail Notification Alerts: New mail alerts include information such as the subject, sender and message preview text. * Folder Summary Popups: Mouse over a folder with new messages to see a summary of the new messages in that folder. * Saved Search Folder Performance: Search results for saved search folders are now cached, improving folder loading performance. * Find As You Type: Finds and highlights message text as you type. * Improved Filing Tools: Recent folder menu items for moving and copying messages to recently used folders. Move / Copy again functionality. * Updates to the Extension System: The extension system has been updated to provide enhanced security and to allow for easier localization of extensions. The Rumbling Edge has a more detailed list of notable bug fixes: http://weblogs.mozillazine.org/rumblingedge/archives/2007/03/tb_2.html
Revision 1.20 / (download) - annotate - [select for diffs], Wed Mar 7 21:32:53 2007 UTC (16 years, 9 months ago) by dmcmahill
Branch: MAIN
CVS Tags: pkgsrc-2007Q1-base,
pkgsrc-2007Q1
Changes since 1.19: +3 -7
lines
Diff to previous 1.19 (colored)
Dynamically generate the part of the PLIST for libfreebl. This is because the exact names of the freebl libraries depends on the platform and they have a habit of changing even on minor releases. This causes these mozilla packages to be broken quite a lot on platforms other than NetBSD/i386. Hopefully this fix will last longer than previous ones. pkgrevision bumps all around.
Revision 1.17.2.1 / (download) - annotate - [select for diffs], Mon Mar 5 19:16:31 2007 UTC (16 years, 9 months ago) by salo
Branch: pkgsrc-2006Q4
Changes since 1.17: +3 -3
lines
Diff to previous 1.17 (colored) next main 1.18 (colored)
Pullup ticket 2039 - requested by ghen security update for thunderbird Revisions pulled up: - pkgsrc/mail/thunderbird/Makefile-thunderbird.common 1.23 - pkgsrc/mail/thunderbird/PLIST patch - pkgsrc/mail/thunderbird/distinfo patch - pkgsrc/mail/thunderbird/patches/patch-ap patch - pkgsrc/mail/thunderbird/patches/patch-ax patch - pkgsrc/mail/thunderbird-gtk1/PLIST 1.9 Module Name: pkgsrc Committed By: ghen Date: Fri Mar 2 14:12:25 UTC 2007 Modified Files: pkgsrc/mail/thunderbird: Makefile-thunderbird.common PLIST distinfo pkgsrc/mail/thunderbird-gtk1: PLIST pkgsrc/mail/thunderbird/patches: patch-ap patch-ax Log Message: Update thunderbird and thunderbird-gtk1 to 1.5.0.10. Fixed in this version: MFSA 2007-06 Mozilla Network Security Services (NSS) SSLv2 buffer overflow MFSA 2007-01 Crashes with evidence of memory corruption (rv:1.8.0.10/1.8.1.2) For more info, see http://www.mozilla.com/en-US/thunderbird/releases/1.5.0.10.html
Revision 1.19 / (download) - annotate - [select for diffs], Fri Mar 2 14:12:24 2007 UTC (16 years, 9 months ago) by ghen
Branch: MAIN
Changes since 1.18: +3 -3
lines
Diff to previous 1.18 (colored)
Update thunderbird and thunderbird-gtk1 to 1.5.0.10. Fixed in this version: MFSA 2007-06 Mozilla Network Security Services (NSS) SSLv2 buffer overflow MFSA 2007-01 Crashes with evidence of memory corruption (rv:1.8.0.10/1.8.1.2) For more info, see http://www.mozilla.com/en-US/thunderbird/releases/1.5.0.10.html
Revision 1.18 / (download) - annotate - [select for diffs], Sun Feb 4 00:15:49 2007 UTC (16 years, 10 months ago) by dmcmahill
Branch: MAIN
Changes since 1.17: +6 -2
lines
Diff to previous 1.17 (colored)
Get these mozilla clients to work on Solaris-2.9/sparc. There were two issues. The PLIST was incorrect and since the PLIST is used by the "moz-install" script, anything missing from the PLIST is never installed even when building from source. When libfreebl* were not installed it caused the clients to fail to load the security component and fail with "The browser failed to load its security component". The second issue is that many installations of solaris-2.9 include various glib/gtk/gnome libraries in /usr/lib. This causes failures because the pkgsrc ones were used at link time and the /usr/lib ones at run time. Work around this by setting a LD_LIBRARY_PATH that includes the pkgsrc lib directory first. pkgrevision bumps all around.
Revision 1.15.4.1 / (download) - annotate - [select for diffs], Thu Nov 9 09:30:56 2006 UTC (17 years, 1 month ago) by salo
Branch: pkgsrc-2006Q3
Changes since 1.15: +50 -1
lines
Diff to previous 1.15 (colored) next main 1.16 (colored)
Pullup ticket 1906 - requested by ghen
security update for thunderbird
Revisions pulled up:
- pkgsrc/mail/thunderbird/Makefile-thunderbird.common 1.19, 1.20
- pkgsrc/mail/thunderbird/PLIST 1.16, 1.17
- pkgsrc/mail/thunderbird/distinfo 1.28, 1.29, 1.30, 1.31
- pkgsrc/mail/thunderbird/patches/patch-ai 1.4
- pkgsrc/mail/thunderbird/patches/patch-as 1.3
- pkgsrc/mail/thunderbird/patches/patch-at 1.1
- pkgsrc/mail/thunderbird-gtk1/PLIST 1.7, 1.8
Module Name: pkgsrc
Committed By: markd
Date: Thu Oct 19 10:26:14 UTC 2006
Modified Files:
pkgsrc/mail/thunderbird: distinfo
pkgsrc/mail/thunderbird/patches: patch-ai
Log Message:
Fix crash after printing caused by trying to destroy the same charset
structure multiple times. Bump PKGREVISION.
---
Module Name: pkgsrc
Committed By: tron
Date: Fri Oct 20 12:45:13 UTC 2006
Modified Files:
pkgsrc/mail/thunderbird: distinfo
Added Files:
pkgsrc/mail/thunderbird/patches: patch-as
Log Message:
Fix "if [ ... == ...]" in a build script.
---
Module Name: pkgsrc
Committed By: markd
Date: Mon Oct 23 09:43:06 UTC 2006
Modified Files:
pkgsrc/mail/thunderbird: Makefile-thunderbird.common PLIST
pkgsrc/mail/thunderbird-gtk1: PLIST
Log Message:
Build the default set of extensions in thunderbird{,-gtk1}. Allows
GSSAPI authentication to work on NetBSD-current. Fixes my PR 33512.
OKed by ghen. Bump PKGREVISION.
---
Module Name: pkgsrc
Committed By: markd
Date: Mon Oct 23 10:49:35 UTC 2006
Modified Files:
pkgsrc/mail/thunderbird: distinfo
Added Files:
pkgsrc/mail/thunderbird/patches: patch-at
Log Message:
thunderbird's ldap doesn't work talking to an ipv4 ldap server if
talking to ipv4 addresses using ipv6 addresses isn't allowed, which is
the default on NetBSD. Patch to use a v4 socket when talking to an ipv4
ldap server. Fixes my PR 33511.
seamonkey/firefox/sunbird have the same code so make the same patch.
OKed ghen. Bump PKGREVISION.
---
Module Name: pkgsrc
Committed By: ghen
Date: Wed Nov 8 13:15:40 UTC 2006
Modified Files:
pkgsrc/mail/thunderbird: Makefile-thunderbird.common PLIST
distinfo
pkgsrc/mail/thunderbird-gtk1: PLIST
Log Message:
Update thunderbird and thunderbird-gtk1 to 1.5.0.8. Fixed in this version:
MFSA 2006-67 Running Script can be recompiled
MFSA 2006-66 RSA signature forgery (variant)
MFSA 2006-65 Crashes with evidence of memory corruption (rv:1.8.0.8)
For more info, see http://www.mozilla.com/en-US/thunderbird/releases/1.5.0.8.html
Revision 1.17 / (download) - annotate - [select for diffs], Wed Nov 8 13:15:40 2006 UTC (17 years, 1 month ago) by ghen
Branch: MAIN
CVS Tags: pkgsrc-2006Q4-base
Branch point for: pkgsrc-2006Q4
Changes since 1.16: +42 -1
lines
Diff to previous 1.16 (colored)
Update thunderbird and thunderbird-gtk1 to 1.5.0.8. Fixed in this version: MFSA 2006-67 Running Script can be recompiled MFSA 2006-66 RSA signature forgery (variant) MFSA 2006-65 Crashes with evidence of memory corruption (rv:1.8.0.8) For more info, see http://www.mozilla.com/en-US/thunderbird/releases/1.5.0.8.html
Revision 1.16 / (download) - annotate - [select for diffs], Mon Oct 23 09:43:06 2006 UTC (17 years, 1 month ago) by markd
Branch: MAIN
Changes since 1.15: +9 -1
lines
Diff to previous 1.15 (colored)
Build the default set of extensions in thunderbird{,-gtk1}. Allows
GSSAPI authentication to work on NetBSD-current. Fixes my PR 33512.
OKed by ghen. Bump PKGREVISION.
Revision 1.15 / (download) - annotate - [select for diffs], Wed Jun 7 15:23:21 2006 UTC (17 years, 6 months ago) by ghen
Branch: MAIN
CVS Tags: pkgsrc-2006Q3-base,
pkgsrc-2006Q2-base,
pkgsrc-2006Q2
Branch point for: pkgsrc-2006Q3
Changes since 1.14: +4 -1
lines
Diff to previous 1.14 (colored)
Add some additional headers introduced with ff1504/tb1504/sm102. Not worth bumping PKGREVISION for.
Revision 1.13.2.1 / (download) - annotate - [select for diffs], Sun Jun 4 00:54:05 2006 UTC (17 years, 6 months ago) by salo
Branch: pkgsrc-2006Q1
Changes since 1.13: +2 -2
lines
Diff to previous 1.13 (colored) next main 1.14 (colored)
Pullup ticket 1682 - requested by ghen
security update for firefox and thunderbird
Revisions pulled up:
- pkgsrc/www/firefox/Makefile 1.35
- pkgsrc/www/firefox/Makefile-firefox.common 1.30, 1.33
- pkgsrc/www/firefox/distinfo 1.49, 1.50
- pkgsrc/www/firefox-gtk1/Makefile 1.13
- pkgsrc/www/firefox/patches/patch-fa removed
- pkgsrc/www/firefox/patches/patch-fb removed
- pkgsrc/mail/thunderbird/Makefile-thunderbird.common 1.15
- pkgsrc/mail/thunderbird/PLIST 1.14
- pkgsrc/mail/thunderbird/distinfo 1.23
- pkgsrc/mail/thunderbird-gtk1/PLIST 1.5
Module Name: pkgsrc
Committed By: ghen
Date: Thu May 4 05:16:13 UTC 2006
Modified Files:
pkgsrc/www/firefox: Makefile Makefile-firefox.common distinfo
pkgsrc/www/firefox-gtk1: Makefile
Removed Files:
pkgsrc/www/firefox/patches: patch-fa patch-fb
Log Message:
Update Firefox to 1.5.0.3, which is identical to our 1.5.0.2nb2 (except
for the advertized version), so there's no reason to upgrade. :-)
Fixes a denial of service vulnerability (MFSA 2006-30).
---
Module Name: pkgsrc
Committed By: ghen
Date: Sat Jun 3 08:04:36 UTC 2006
Modified Files:
pkgsrc/mail/thunderbird: Makefile-thunderbird.common PLIST distinfo
pkgsrc/mail/thunderbird-gtk1: PLIST
pkgsrc/www/firefox: Makefile-firefox.common distinfo
Log Message:
Update www/firefox and www/firefox-gtk to 1.5.0.4, mail/thunderbird and
mail/thunderbird-gtk1 to 1.5.0.4 (salo has already updated
www/firefox-bin). Note that thunderbird skipped one release number
(again) to stay on par with firefox.
These updates provide:
* improvements to product stability,
* several important security fixes (see below).
Fixed in Firefox 1.5.0.4:
MFSA 2006-43 Privilege escalation using addSelectionListener
MFSA 2006-42 Web site XSS using BOM on UTF-8 pages
MFSA 2006-41 File stealing by changing input type (variant)
MFSA 2006-39 "View Image" local resource linking (Windows)
MFSA 2006-38 Buffer overflow in crypto.signText()
MFSA 2006-37 Remote compromise via content-defined setter on object
prototypes
MFSA 2006-36 PLUGINSPAGE privileged JavaScript execution 2
MFSA 2006-35 Privilege escalation through XUL persist
MFSA 2006-34 XSS viewing javascript: frames or images from context menu
MFSA 2006-33 HTTP response smuggling
MFSA 2006-32 Fixes for crashes with potential memory corruption
MFSA 2006-31 EvalInSandbox escape (Proxy Autoconfig, Greasemonkey)
Fixed in Thunderbird 1.5.0.4:
MFSA 2006-42 Web site XSS using BOM on UTF-8 pages
MFSA 2006-40 Double-free on malformed VCard
MFSA 2006-38 Buffer overflow in crypto.signText()
MFSA 2006-37 Remote compromise via content-defined setter on object
prototypes
MFSA 2006-35 Privilege escalation through XUL persist
MFSA 2006-33 HTTP response smuggling
MFSA 2006-32 Fixes for crashes with potential memory corruption
MFSA 2006-31 EvalInSandbox escape (Proxy Autoconfig, Greasemonkey)
Revision 1.14 / (download) - annotate - [select for diffs], Sat Jun 3 08:04:36 2006 UTC (17 years, 6 months ago) by ghen
Branch: MAIN
Changes since 1.13: +2 -2
lines
Diff to previous 1.13 (colored)
Update www/firefox and www/firefox-gtk to 1.5.0.4, mail/thunderbird and mail/thunderbird-gtk1 to 1.5.0.4, and www/seamonkey, www/seamonkey-gtk1 and www/seamonkey-bin to 1.0.2 (salo has already updated www/firefox-bin). Note that thunderbird skipped one release number (again) to stay on par with firefox. These updates provide: * improvements to product stability, * several important security fixes (see below). Fixed in Firefox 1.5.0.4: MFSA 2006-43 Privilege escalation using addSelectionListener MFSA 2006-42 Web site XSS using BOM on UTF-8 pages MFSA 2006-41 File stealing by changing input type (variant) MFSA 2006-39 "View Image" local resource linking (Windows) MFSA 2006-38 Buffer overflow in crypto.signText() MFSA 2006-37 Remote compromise via content-defined setter on object prototypes MFSA 2006-36 PLUGINSPAGE privileged JavaScript execution 2 MFSA 2006-35 Privilege escalation through XUL persist MFSA 2006-34 XSS viewing javascript: frames or images from context menu MFSA 2006-33 HTTP response smuggling MFSA 2006-32 Fixes for crashes with potential memory corruption MFSA 2006-31 EvalInSandbox escape (Proxy Autoconfig, Greasemonkey) Fixed in Thunderbird 1.5.0.4: MFSA 2006-42 Web site XSS using BOM on UTF-8 pages MFSA 2006-40 Double-free on malformed VCard MFSA 2006-38 Buffer overflow in crypto.signText() MFSA 2006-37 Remote compromise via content-defined setter on object prototypes MFSA 2006-35 Privilege escalation through XUL persist MFSA 2006-33 HTTP response smuggling MFSA 2006-32 Fixes for crashes with potential memory corruption MFSA 2006-31 EvalInSandbox escape (Proxy Autoconfig, Greasemonkey) Fixed in SeaMonkey 1.0.2: MFSA 2006-43 Privilege escalation using addSelectionListener MFSA 2006-42 Web site XSS using BOM on UTF-8 pages MFSA 2006-41 File stealing by changing input type (variant) MFSA 2006-40 Double-free on malformed VCard MFSA 2006-39 "View Image" local resource linking (Windows) MFSA 2006-38 Buffer overflow in crypto.signText() MFSA 2006-37 Remote compromise via content-defined setter on object prototypes MFSA 2006-35 Privilege escalation through XUL persist MFSA 2006-34 XSS viewing javascript: frames or images from context menu MFSA 2006-33 HTTP response smuggling MFSA 2006-32 Fixes for crashes with potential memory corruption MFSA 2006-31 EvalInSandbox escape (Proxy Autoconfig, Greasemonkey)
Revision 1.11.4.1 / (download) - annotate - [select for diffs], Thu Feb 9 10:32:28 2006 UTC (17 years, 9 months ago) by salo
Branch: pkgsrc-2005Q4
Changes since 1.11: +364 -291
lines
Diff to previous 1.11 (colored) next main 1.12 (colored)
Pullup ticket 1102 - requested by Geert Hendrickx
security update for firefox and thunderbird
Updated via patch from the submitter, includes these changes:
Module Name: pkgsrc
Committed By: joerg
Date: Fri Dec 30 21:35:58 UTC 2005
Modified Files:
pkgsrc/mail/thunderbird/patches: patch-ab patch-ac patch-aq patch-ba
patch-bo patch-bs
Added Files:
pkgsrc/mail/thunderbird/patches: patch-ar patch-da patch-db patch-dc
patch-de patch-df patch-dg patch-dh patch-dj patch-dk patch-dl
patch-dm patch-do patch-ds patch-dt
Log Message:
Add DragonFly build support, partly based on the patches from
www/firefox.
---
Module Name: pkgsrc
Committed By: joerg
Date: Wed Jan 4 08:55:08 UTC 2006
Modified Files:
pkgsrc/mail/thunderbird: distinfo
Log Message:
Also commit distinfo. Reminded by wiz@.
---
Module Name: pkgsrc
Committed By: ghen
Date: Sun Feb 5 14:49:05 UTC 2006
Modified Files:
pkgsrc/mail/thunderbird: Makefile Makefile-thunderbird.common PLIST
distinfo
pkgsrc/mail/thunderbird-gtk1: Makefile PLIST
pkgsrc/mail/thunderbird/patches: patch-aa patch-ab patch-ac patch-af
patch-ag patch-ai patch-aj patch-al patch-ap patch-aq patch-aw
patch-ax patch-bb patch-bo patch-bq patch-br patch-db patch-de
patch-df
Removed Files:
pkgsrc/mail/thunderbird-gtk1: MESSAGE
pkgsrc/mail/thunderbird/patches: patch-bt patch-bw patch-cc patch-ce
patch-cf
Log Message:
Update to Thunderbird 1.5.
What's new:
* Automated update to streamline product upgrades. Notification of an
update is more prominent, and updates to Thunderbird may now be half
a megabyte or smaller. Updating extensions has also improved.
* Sort address autocomplete results by how often you send e-mail
to each recipient.
* Spell check as you type.
* Saved Search Folders can now search across multiple accounts.
* Built in phishing detector to help protect users against email scams.
* Podcasting and other RSS Improvements.
* Deleting attachments from messages.
* Integration with server side spam filtering.
* Reply and forward actions for message filters.
* Kerberos Authentication.
* Auto save as draft for mail composition.
* Message aging.
* Filters for Global Inbox.
* Improvements to product usability including redesigned options
interface, and SMTP server management.
* Many security enhancements.
For a more detailed list of changes, see
http://weblogs.mozillazine.org/rumblingedge/archives/2006/01/1-5.html
Ok with wiz.
---
Module Name: pkgsrc
Committed By: ghen
Date: Sun Feb 5 14:43:59 UTC 2006
Modified Files:
pkgsrc/www/mozilla: Makefile.common
Log Message:
Set CATEGORIES ?=www (instead of =) such that thunderbird (and later
sunbird) can override it. Ok for wiz.
---
odule Name: pkgsrc
Committed By: ghen
Date: Sun Feb 5 14:46:31 UTC 2006
Modified Files:
pkgsrc/www/firefox: Makefile Makefile-firefox.common PLIST distinfo
pkgsrc/www/firefox-gtk1: Makefile PLIST
Added Files:
pkgsrc/www/firefox/patches: patch-dw patch-dx
Removed Files:
pkgsrc/www/firefox/patches: patch-bugzilla-319004
Log Message:
Update to Firefox 1.5.0.1, a bug fix release for Firefox 1.5.
What's new:
* Improved stability.
* Improved support for Mac OS X.
* International Domain Name support for Iceland (.is) is now enabled.
* Fixes for several memory leaks.
* Several security enhancements.
For a more detailed list changes, see
http://www.squarefree.com/burningedge/releases/1.5.0.1.html
Ok with wiz.
Revision 1.13 / (download) - annotate - [select for diffs], Mon Feb 6 22:17:59 2006 UTC (17 years, 10 months ago) by ghen
Branch: MAIN
CVS Tags: pkgsrc-2006Q1-base
Branch point for: pkgsrc-2006Q1
Changes since 1.12: +1 -2
lines
Diff to previous 1.12 (colored)
Remove a non-existant directory from PLIST.
Revision 1.12 / (download) - annotate - [select for diffs], Sun Feb 5 14:49:05 2006 UTC (17 years, 10 months ago) by ghen
Branch: MAIN
Changes since 1.11: +365 -291
lines
Diff to previous 1.11 (colored)
Update to Thunderbird 1.5.
What's new:
* Automated update to streamline product upgrades. Notification of an
update is more prominent, and updates to Thunderbird may now be half a
megabyte or smaller. Updating extensions has also improved.
* Sort address autocomplete results by how often you send e-mail to each recipient.
* Spell check as you type.
* Saved Search Folders can now search across multiple accounts.
* Built in phishing detector to help protect users against email scams.
* Podcasting and other RSS Improvements.
* Deleting attachments from messages.
* Integration with server side spam filtering.
* Reply and forward actions for message filters.
* Kerberos Authentication.
* Auto save as draft for mail composition.
* Message aging.
* Filters for Global Inbox.
* Improvements to product usability including redesigned options interface,
and SMTP server management.
* Many security enhancements.
For a more detailed list of changes, see http://weblogs.mozillazine.org/rumblingedge/archives/2006/01/1-5.html
Ok with wiz.
Revision 1.10.2.1 / (download) - annotate - [select for diffs], Fri Aug 19 07:44:39 2005 UTC (18 years, 3 months ago) by snj
Branch: pkgsrc-2005Q2
Changes since 1.10: +3 -3
lines
Diff to previous 1.10 (colored) next main 1.11 (colored)
Pullup ticket 685 - requested by Shin'ichiro TAYA
security update for thunderbird and thunderbird-gtk1
Revisions pulled up:
- pkgsrc/mail/thunderbird/Makefile-thunderbird.common 1.7
- pkgsrc/mail/thunderbird/PLIST 1.11
- pkgsrc/mail/thunderbird/distinfo 1.15
- pkgsrc/mail/thunderbird-gtk1/PLIST 1.2
Module Name: pkgsrc
Committed By: taya
Date: Sun Jul 24 02:58:33 UTC 2005
Modified Files:
pkgsrc/mail/thunderbird: Makefile-thunderbird.common PLIST distinfo
pkgsrc/mail/thunderbird-gtk1: PLIST
Log Message:
Update thunderbird & thunderbird-gtk1 to 1.0.6
This is a security fix release.
Fixed in Thunderbird 1.0.5/1.0.6
MFSA 2005-56 Code execution through shared function objects
MFSA 2005-55 XHTML node spoofing
MFSA 2005-52 Same origin violation: frame calling top.focus()
MFSA 2005-50 Possibly exploitable crash in InstallVersion.compareTo()
MFSA 2005-46 XBL scripts ran even when Javascript disabled
MFSA 2005-44 Privilege escalation via non-DOM property overrides
MFSA 2005-41 Privilege escalation via DOM property overrides
MFSA 2005-40 Missing Install object instance checks
MFSA 2005-33 Javascript "lambda" replace exposes memory contents
Revision 1.11 / (download) - annotate - [select for diffs], Sun Jul 24 02:58:33 2005 UTC (18 years, 4 months ago) by taya
Branch: MAIN
CVS Tags: pkgsrc-2005Q4-base,
pkgsrc-2005Q3-base,
pkgsrc-2005Q3
Branch point for: pkgsrc-2005Q4
Changes since 1.10: +3 -3
lines
Diff to previous 1.10 (colored)
Update thunderbird & thunderbird-gtk1 to 1.0.6 This is a security fix release. Fixed in Thunderbird 1.0.5/1.0.6 MFSA 2005-56 Code execution through shared function objects MFSA 2005-55 XHTML node spoofing MFSA 2005-52 Same origin violation: frame calling top.focus() MFSA 2005-50 Possibly exploitable crash in InstallVersion.compareTo() MFSA 2005-46 XBL scripts ran even when Javascript disabled MFSA 2005-44 Privilege escalation via non-DOM property overrides MFSA 2005-41 Privilege escalation via DOM property overrides MFSA 2005-40 Missing Install object instance checks MFSA 2005-33 Javascript "lambda" replace exposes memory contents
Revision 1.10 / (download) - annotate - [select for diffs], Thu Apr 7 14:24:47 2005 UTC (18 years, 8 months ago) by taya
Branch: MAIN
CVS Tags: pkgsrc-2005Q2-base
Branch point for: pkgsrc-2005Q2
Changes since 1.9: +19 -6
lines
Diff to previous 1.9 (colored)
correct PLIST. thunderbird works again.
Revision 1.8.4.1 / (download) - annotate - [select for diffs], Fri Mar 25 17:46:19 2005 UTC (18 years, 8 months ago) by snj
Branch: pkgsrc-2005Q1
Changes since 1.8: +11 -1
lines
Diff to previous 1.8 (colored) next main 1.9 (colored)
Pullup ticket 390 - requested by Shin'ichiro TAYA
security fix for thunderbird and thunderbird-gtk2
Revisions pulled up:
- pkgsrc/mail/thunderbird/Makefile-thunderbird.common 1.6
- pkgsrc/mail/thunderbird/PLIST 1.9
- pkgsrc/mail/thunderbird/distinfo 1.14
- pkgsrc/mail/thunderbird-gtk2/PLIST 1.8
Module Name: pkgsrc
Committed By: taya
Date: Fri Mar 25 14:43:46 UTC 2005
Modified Files:
pkgsrc/mail/thunderbird: Makefile-thunderbird.common PLIST distinfo
pkgsrc/mail/thunderbird-gtk2: PLIST
Log Message:
Update thunderbird & thunderbird-gtk2 to 1.0.2
Thunderbird 1.0.2 is a security and stability update.
Fixed vulnerbilities are follows.
MFSA 2005-30 GIF heap overflow parsing Netscape extension 2
MFSA 2005-25 Image drag and drop executable spoofing
MFSA 2005-21 Overwrite arbitrary files downloading .lnk twice
MFSA 2005-18 Memory overwrite in string library
MFSA 2005-17 Install source spoofing with user:pass@host
MFSA 2005-15 Heap overflow possible in UTF8 to Unicode conversion
Revision 1.9 / (download) - annotate - [select for diffs], Fri Mar 25 14:43:45 2005 UTC (18 years, 8 months ago) by taya
Branch: MAIN
Changes since 1.8: +11 -1
lines
Diff to previous 1.8 (colored)
Update thunderbird & thunderbird-gtk2 to 1.0.2 Thunderbird 1.0.2 is a security and stability update. Fixed vulnerbilities are follows. MFSA 2005-30 GIF heap overflow parsing Netscape extension 2 MFSA 2005-25 Image drag and drop executable spoofing MFSA 2005-21 Overwrite arbitrary files downloading .lnk twice MFSA 2005-18 Memory overwrite in string library MFSA 2005-17 Install source spoofing with user:pass@host MFSA 2005-15 Heap overflow possible in UTF8 to Unicode conversion
Revision 1.8 / (download) - annotate - [select for diffs], Tue Dec 14 23:35:34 2004 UTC (18 years, 11 months ago) by taya
Branch: MAIN
CVS Tags: pkgsrc-2005Q1-base,
pkgsrc-2004Q4-base,
pkgsrc-2004Q4
Branch point for: pkgsrc-2005Q1
Changes since 1.7: +2 -1
lines
Diff to previous 1.7 (colored)
Update thunderbird & thunderbird-gtk2 to 1.0 Here are some of the new features to look for in Thunderbird: * Adaptive Junk Mail Controls * RSS Integration * Saved Search Folders Saved Search Folders display messages based on previously set search criteria. For example, instead of filtering messages into a new folder, you can create a Saved Search Folder that lists all the messages received from a certain person over the past 30 days, even if those messages are stored in different folders and subfolders. * Global Inbox Support POP3 users can now combine all of their POP3 accounts into a single global inbox under local folders. * Message Grouping You can now group messages in a folder by attributes such as date, sender, priority or a custom label. For instance, a folder grouped by date will group messages from today, yesterday, last week, etc. into self-contained groups in the message list pane. (View > Sort By > Grouped By Sort) * Privacy Protection In order to help protect your privacy, Thunderbird now automatically blocks remote image requests in emails from senders you don't know. * Comprehensive Mail Migration from other Mail Clients Switching to Thunderbird has never been easier since Thunderbird can now migrate all of your email data including settings, mail folders and address book data from common mail applications such as the Mozilla 1.x Suite, Outlook Express, Outlook and Eudora.
Revision 1.7 / (download) - annotate - [select for diffs], Sat Dec 4 02:16:03 2004 UTC (19 years ago) by taya
Branch: MAIN
Changes since 1.6: +2 -2
lines
Diff to previous 1.6 (colored)
1)Generate extension directory at installation time. 2)sync patches from www/mozilla. - update patch-ab from commit log >> date: 2004/08/31 02:37:57; author: danw; state: Exp; lines: +13 -6 >> darwin fixes (tested against firefox-gtk2) - update patch-ac - update patch-bx - add patch-bz - add patch-ca - add patch-cb from commit log >> date: 2004/07/07 09:08:31; author: aymeric; state: Exp; lines: +14 -7 >> . on PowerPC, update files so that Mozilla works properly when compiled with >> gcc version 3+. >> . generally reduce diffs to Linux version >> . retain compatibility with older ABI (AIX-like) thanks to useful comments >> from Charles Hannum >> >> Thanks to Matthew Green for the fruitful discussion. This should address >> PR#23240 as far as mozilla is concerned. - remove patch-bn enable HAVE_SOCKLEN_T - update patch-br from commit log >> date: 2004/10/04 11:52:45; author: grant; state: Exp; lines: +10 -6 >> bring across a patch in Firefox for using thread-safe resolver library >> functions on NetBSD >=2.0F. - update patch-cc make mozilla work on NetBSD-current/alpha 3)bump PKGREVISION
Revision 1.5.2.1 / (download) - annotate - [select for diffs], Wed Dec 1 01:49:24 2004 UTC (19 years ago) by snj
Branch: pkgsrc-2004Q3
Changes since 1.5: +7 -5
lines
Diff to previous 1.5 (colored) next main 1.6 (colored)
Pullup ticket 157 - requested by Havard Eidnes
security fix for thunderbird and thunderbird-gtk2
Module Name: pkgsrc
Committed By: kristerw
Date: Thu Nov 4 20:06:34 UTC 2004
Modified Files:
pkgsrc/mail/thunderbird: distinfo
pkgsrc/mail/thunderbird/patches: patch-bt
Log Message:
Use __va_copy instead of va_copy for NetBSD. This is needed on gcc 3.4=
since the build use -ansi that in turn makes gcc 3.4 modify its pre-
defined symbols in such a way that va_copy is not defined.
---
Module Name: pkgsrc
Committed By: taya
Date: Sun Nov 14 23:38:20 UTC 2004
Modified Files:
pkgsrc/mail/thunderbird: Makefile-thunderbird.common PLIST dist=
info
pkgsrc/mail/thunderbird-gtk2: PLIST
Log Message:
Update thunderbird & thunderbird-gtk2 to 0.9
Here are the highlights for this Thunderbird release:
* Saved Search Folders
- Saved Search Folders display messages based on previously set search
criteria. For example, instead of filtering messages into a new
folder, you could create a Saved Search Folder that lists all the
messages received from a certain person over the past 30 days, even if
those messages are stored in different folders and subfolders.
* Message Grouping
- You can now group messages in a folder by attributes such as date,
sender, priority or a custom label. For instance, a folder grouped by
date will group messages from today, yesterday, last week, etc. into
self-contained groups in the message list pane. (View > Sort By >
Grouped By Sort)
* Other New Features
- Messages with attachments now get marked as such in the message list
pane immediately and not when the message is displayed.
- Improvements to Thunderbird's Global Inbox support for POP3 users.
- The new quick search bar introduced in 0.8 now features a clear
button when search text is present inside the quick search box.
- Fixed a regression introduced in 0.8 where a user could not change
the local folder path in the Account Manager.
- Improved offline support including fixes for common offline-related
problems.
- Improved privacy controls block remote content in e-mail messages
from senders not in your address book.
- Long file attachment names are no longer truncated in the message
pane.
- Bug fixes too numerous to mention!
Revision 1.6 / (download) - annotate - [select for diffs], Sun Nov 14 23:38:20 2004 UTC (19 years ago) by taya
Branch: MAIN
Changes since 1.5: +6 -4
lines
Diff to previous 1.5 (colored)
Update thunderbird & thunderbird-gtk2 to 0.9 Here are the highlights for this Thunderbird release: * Saved Search Folders - Saved Search Folders display messages based on previously set search criteria. For example, instead of filtering messages into a new folder, you could create a Saved Search Folder that lists all the messages received from a certain person over the past 30 days, even if those messages are stored in different folders and subfolders. * Message Grouping - You can now group messages in a folder by attributes such as date, sender, priority or a custom label. For instance, a folder grouped by date will group messages from today, yesterday, last week, etc. into self-contained groups in the message list pane. (View > Sort By > Grouped By Sort) * Other New Features - Messages with attachments now get marked as such in the message list pane immediately and not when the message is displayed. - Improvements to Thunderbird's Global Inbox support for POP3 users. - The new quick search bar introduced in 0.8 now features a clear button when search text is present inside the quick search box. - Fixed a regression introduced in 0.8 where a user could not change the local folder path in the Account Manager. - Improved offline support including fixes for common offline-related problems. - Improved privacy controls block remote content in e-mail messages from senders not in your address book. - Long file attachment names are no longer truncated in the message pane. - Bug fixes too numerous to mention!
Revision 1.5 / (download) - annotate - [select for diffs], Mon Sep 20 12:55:43 2004 UTC (19 years, 2 months ago) by taya
Branch: MAIN
CVS Tags: pkgsrc-2004Q3-base
Branch point for: pkgsrc-2004Q3
Changes since 1.4: +45 -33
lines
Diff to previous 1.4 (colored)
Update thunderbird & thunderbird-gtk2 to 0.8 What's new from Release Notes: * Global Inbox POP3 users can now combine all of their POP3 accounts into a single global inbox under local folders. * Comprehensive Data Migration Switching to Thunderbird has never been easier since Thunderbird can now migrate all of your e-mail data including settings, mail folders and address book data from common mail applications such as the Mozilla 1.x Suite, Outlook Express, Outlook and Eudora. * RSS Integration Thunderbird now features a built in RSS reader which allows you to easily subscribe to and read news and weblogs that support RSS. * Improved Privacy Controls In order to help protect your privacy, Thunderbird now automatically blocks remote image requests in e-mails from senders you don't know. * Improved Quick Search Thunderbird now makes it even easier to manage your e-mail. Quick search now supports many different types of search criteria including the ability to search message body text. Thunderbird can also highlight the quick search terms in the message body. * Other New Features Support for using a master password to encrypt saved e-mail account passwords. Linux GNOME users can now make Thunderbird their default e-mail client (Tools > Options > General). If your network uses proxy authentication for HTTP, Thunderbird now correctly prompts for proxy authentication instead of silently failing. Bug fixes too numerous to mention! --- Several security holes have been fixed. See the page bellow for detail. http://www.mozilla.org/projects/security/known-vulnerabilities.html#mozilla1.7.3
Revision 1.4 / (download) - annotate - [select for diffs], Thu Jun 24 23:09:55 2004 UTC (19 years, 5 months ago) by taya
Branch: MAIN
Changes since 1.3: +91 -1
lines
Diff to previous 1.3 (colored)
Update thunderbird to 0.7 Here are the highlights for this release of Thunderbird: * Smaller and Faster The Windows Installer is now only a 5.9MB download. Significant performance improvements on Windows, Linux and Mac OS X! * New Themes and Extension Manager Provides a convenient and secure way to manage and update the many add-ons that set Thunderbird apart from other e-mail clients. * Crash Analysis Tools (Talkback) Help us help you! Integration with Mozilla Talkback allows users to submit crash reports which makes it easier for us to find Thunderbird top crashes. * Other New Features... New user interface for viewing vCards. New Profile Manager which also supports running from a USB device. Color quoting for quoted message parts. Thunderbird now supports a user interface for creating multiple identities per e-mail account. This makes it easy to have several e-mail addresses which end up going into the same account. * Recently Fixed Bugs Fix for an occassional hang when reading IMAP mail over SSL. Our LDAP support works against older version 2 LDAP servers again in addition to version 3. Thunderbird can handle mailto urls that contain raw spaces in the subject. Other bug fixes too numerous to mention!
Revision 1.3 / (download) - annotate - [select for diffs], Sat May 8 04:35:37 2004 UTC (19 years, 7 months ago) by taya
Branch: MAIN
CVS Tags: pkgsrc-2004Q2-base,
pkgsrc-2004Q2
Changes since 1.2: +54 -125
lines
Diff to previous 1.2 (colored)
Update thunderbird to 0.6 What's new from release notes: * Improved Junk Mail Controls The algorithm for the adaptive junk mail controls has been heavily redesigned to learn faster and catch more spam. * New Brand Identity To be consistent with the Mozilla Foundation's goal of brand identity, Thunderbird has a new logo and supporting artwork thanks to the fine work of the Mozilla Visual Identity team. * Other New Features... - IMAP users can now benefit from support for the IMAP IDLE command which allows the mail server to push notifications such as new mail arriving as soon as it arrives. - Thunderbird supports server-wide news filters that apply to all newsgroups on a server. - Thunderbird includes Secure Password Authentication using a new cross-platform NTLM authentication mechanism for IMAP, POP3 and SMTP. - Mail filters can now mark messages as junk. - Tools > Options > Compose > HTML Options allows you to set up default HTML compose options such as font, size and color. - Attachments can be opened directly from the compose window to verify their contents before sending. - Thunderbird now supports the notion of multiple identities per mail account. This makes it easy to have several e-mail addresses which end up going into the same account. Read More about how to set this up. * Recently Fixed Bugs - In the case of a failure when copying a message to an online Sent folder, Thunderbird will now ask if you would like it to try again. - Pasting data from an OpenOffice.org spreadsheet no longer pastes random HTML garbage before the actual spreadsheet data into HTML compose. - Fixed several situations where LDAP connections were left open when using LDAP auto complete or performing searches on LDAP directories. - Improved view source behavior. - Mail notification for POP3 messages that are marked deleted or marked read by mail filters no longer occurs. - The "Mark All Read" keyboard shortcut now works for Linux GTK2.
Revision 1.2 / (download) - annotate - [select for diffs], Mon Apr 26 13:56:09 2004 UTC (19 years, 7 months ago) by taya
Branch: MAIN
Changes since 1.1: +5 -15
lines
Diff to previous 1.1 (colored)
- switch to gtk1 - catch up to current statvfs support
Revision 1.1.1.1 / (download) - annotate - [select for diffs] (vendor branch), Mon Apr 19 23:25:29 2004 UTC (19 years, 7 months ago) by taya
Branch: TNF
CVS Tags: pkgsrc-base
Changes since 1.1: +0 -0
lines
Diff to previous 1.1 (colored)
Initial import of thunderbird. Mozilla Thunderbird is a redesign of the Mozilla mail component. The goal is to produce a cross platform stand alone mail application using the XUL user interface language.
Revision 1.1 / (download) - annotate - [select for diffs], Mon Apr 19 23:25:29 2004 UTC (19 years, 7 months ago) by taya
Branch: MAIN
Initial revision