Package thunderbird: Information
Default inline alert: Version in the repository: 102.11.0-alt0.c9.1
Source package: thunderbird
Version: 60.7.1-alt2
Build time: Jun 19, 2019, 02:11 PM in the task #232570
Category: Networking/Mail
Report package bugHome page: https://www.thunderbird.net
License: MPL/GPL
Summary: Thunderbird is Mozilla's e-mail client
Description:
Thunderbird is Mozilla's next generation e-mail client. Thunderbird makes emailing safer, faster and easier than ever before and can also scale to meet the most sophisticated organizational needs. The package contains Lightning - an integrated calendar for Thunderbird.
List of rpms provided by this srpm:
rpm-build-thunderbird (noarch)
thunderbird (x86_64, i586, aarch64)
thunderbird-enigmail (x86_64, i586, aarch64)
rpm-build-thunderbird (noarch)
thunderbird (x86_64, i586, aarch64)
thunderbird-enigmail (x86_64, i586, aarch64)
Maintainer: Andrey Cherepanov
List of contributors:
Andrey Cherepanov
Paul Wolneykien
Anton Farygin
Vladimir Didenko
Alexey Gladkov
Alexey Morozov
Andrey Cherepanov
Paul Wolneykien
Anton Farygin
Vladimir Didenko
Alexey Gladkov
Alexey Morozov
Last changed
June 18, 2019 Andrey Cherepanov 60.7.1-alt2
- enigmail: disable pEpAutoDownload.
June 14, 2019 Andrey Cherepanov 60.7.1-alt1
- New version (60.7.1). - Fixed: + CVE-2019-11703 Heap buffer overflow in icalparser.c + CVE-2019-11704 Heap buffer overflow in icalvalue.c + CVE-2019-11705 Stack buffer overflow in icalrecur.c + CVE-2019-11706 Type confusion in icalproperty.c - Enigmail 2.0.11. - thunderbird-enigmail now requires pinentry-x11 (ALT #18790). - Use juniorModeForceOff by default in Enigmail (ALT #36447). - Fix l10n dtd of Enigmail.
May 20, 2019 Andrey Cherepanov 60.7.0-alt1
- New version (60.7.0). - Fixed: + CVE-2019-9815 Disable hyperthreading on content JavaScript threads on macOS + CVE-2019-9816 Type confusion with object groups and UnboxedObjects + CVE-2019-9817 Stealing of cross-domain images using canvas + CVE-2019-9818 Use-after-free in crash generation server + CVE-2019-9819 Compartment mismatch with fetch API + CVE-2019-9820 Use-after-free of ChromeEventHandler by DocShell + CVE-2019-11691 Use-after-free in XMLHttpRequest + CVE-2019-11692 Use-after-free removing listeners in the event listener manager + CVE-2019-11693 Buffer overflow in WebGL bufferdata on Linux + CVE-2019-7317 Use-after-free in png_image_free of libpng library + CVE-2019-9797 Cross-origin theft of images with createImageBitmap + CVE-2018-18511 Cross-origin theft of images with ImageBitmapRenderingContext + CVE-2019-11694 Uninitialized memory memory leakage in Windows sandbox + CVE-2019-11698 Theft of user history data through drag and drop of hyperlinks to and from bookmarks + CVE-2019-5798 Out-of-bounds read in Skia + CVE-2019-9800 Memory safety bugs fixed in Firefox 67, Firefox ESR 60.7, and Thunderbird 60.7