Package thunderbird: Information

  • Default inline alert: A new version of the package has been build

    Task #: #282378
    Build time: Aug 11, 2021, 09:30 AM
    New version: 78.13.0-alt1
Binary package: thunderbird
Version: 78.8.0-alt1
Architecture: armh
Build time:  Feb 25, 2021, 05:37 PM in the task #266955
Source package: thunderbird
Category: Networking/Mail
Report package bug
Gear: https://git.altlinux.org/gears/t/thunderbird.git?a=tree;hb=3e7bc…
Download: thunderbird-78.8.0-alt1.armh.rpm
Build log: https://git.altlinux.org/tasks/266955/build/100/armh/log
Home page: https://www.thunderbird.net
License: MPL-2.0
Summary: Thunderbird is Mozilla's e-mail client
Description: 
Thunderbird is Mozilla's next generation e-mail client.
Thunderbird makes emailing safer, faster and easier than
ever before and can also scale to meet the most sophisticated
organizational needs.
The package contains Lightning - an integrated calendar for Thunderbird.
Maintainer: Andrey Cherepanov
List of contributors:
Andrey Cherepanov
Aleksei Nikiforov
Gleb Fotengauer-Malinovskiy
Paul Wolneykien
Anton Farygin
Vladimir Didenko
Alexey Gladkov
Alexey Morozov
ACL:
Pavel Vasenkov
Andrey Cherepanov
@everybody

Last changed

Feb. 25, 2021 Andrey Cherepanov 78.8.0-alt1
- New version (78.8.0).
- Security fixes:
  + CVE-2021-23969 Content Security Policy violation report could have contained the destination of a redirect
  + CVE-2021-23968 Content Security Policy violation report could have contained the destination of a redirect
  + CVE-2021-23973 MediaError message property could have leaked information about cross-origin resources
  + CVE-2021-23978 Memory safety bugs fixed in Thunderbird 78.8
Feb. 6, 2021 Andrey Cherepanov 78.7.1-alt1
- New version (78.7.1).
Jan. 27, 2021 Andrey Cherepanov 78.7.0-alt1
- New version (78.7.0).
- Security fixes:
  + CVE-2021-23953 Cross-origin information leakage via redirected PDF requests
  + CVE-2021-23954 Type confusion when using logical assignment operators in JavaScript switch statements
  + CVE-2020-15685 IMAP Response Injection when using STARTTLS
  + CVE-2020-26976 HTTPS pages could have been intercepted by a registered service worker when they should not have been
  + CVE-2021-23960 Use-after-poison for incorrectly redeclared JavaScript variables during GC
  + CVE-2021-23964 Memory safety bugs fixed in Thunderbird 78.7
VKontakte|Telegram|YouTube|Forum|GitHub|Bugzilla
Version: v24.5.3
Back to top