Package thunderbird: Information
Default inline alert: Version in the repository: 115.9.0-alt1
Source package: thunderbird
Version: 52.2.0-alt1
Build time: Jun 23, 2017, 06:53 PM in the task #184645
Category: Networking/Mail
Report package bugHome page: http://www.mozillamessaging.com
License: MPL/GPL
Summary: Thunderbird is Mozilla's e-mail client
Description:
Thunderbird is Mozilla's next generation e-mail client. Thunderbird makes emailing safer, faster and easier than ever before and can also scale to meet the most sophisticated organizational needs. The package contains Lightning - an integrated calendar for Thunderbird.
List of rpms provided by this srpm:
rpm-build-thunderbird (noarch)
thunderbird (x86_64, i586)
thunderbird-debuginfo (x86_64, i586)
thunderbird-devel (x86_64, i586)
thunderbird-devel-debuginfo (x86_64, i586)
thunderbird-enigmail (x86_64, i586)
thunderbird-google-calendar (x86_64, i586)
rpm-build-thunderbird (noarch)
thunderbird (x86_64, i586)
thunderbird-debuginfo (x86_64, i586)
thunderbird-devel (x86_64, i586)
thunderbird-devel-debuginfo (x86_64, i586)
thunderbird-enigmail (x86_64, i586)
thunderbird-google-calendar (x86_64, i586)
Maintainer: Andrey Cherepanov
Last changed
June 22, 2017 Andrey Cherepanov 52.2.0-alt1
- New version (52.2.0) - Security fixes: + CVE-2017-5472: Use-after-free using destroyed node when regenerating trees + CVE-2017-7749: Use-after-free during docshell reloading + CVE-2017-7750: Use-after-free with track elements + CVE-2017-7751: Use-after-free with content viewer listeners + CVE-2017-7752: Use-after-free with IME input + CVE-2017-7754: Out-of-bounds read in WebGL with ImageInfo object + CVE-2017-7756: Use-after-free and use-after-scope logging XHR header errors + CVE-2017-7757: Use-after-free in IndexedDB + CVE-2017-7778: Vulnerabilities in the Graphite 2 library + CVE-2017-7758: Out-of-bounds read in Opus encoder + CVE-2017-7763: Mac fonts render some unicode characters as spaces + CVE-2017-7764: Domain spoofing with combination of Canadian Syllabics and other unicode blocks + CVE-2017-7765: Mark of the Web bypass when saving executable files + CVE-2017-5470: Memory safety bugs fixed in Firefox 54 and Firefox ESR 52.2, and Thunderbird 52.2
May 16, 2017 Andrey Cherepanov 52.1.1-alt1
- New version (52.1.1) - New Enigmail 1.9.7
May 2, 2017 Andrey Cherepanov 52.1.0-alt1
- New version (52.0.1) - Security fixes: + CVE-2017-5429: Memory safety bugs fixed in Firefox 53, Firefox ESR + CVE-2017-5430: Memory safety bugs fixed in Firefox 53, Firefox ESR + CVE-2017-5432: Use-after-free in text input selection + CVE-2017-5433: Use-after-free in SMIL animation functions + CVE-2017-5434: Use-after-free during focus handling + CVE-2017-5435: Use-after-free during transaction processing in the + CVE-2017-5436: Out-of-bounds write with malicious font in Graphite 2 + CVE-2017-5438: Use-after-free in nsAutoPtr during XSLT processing + CVE-2017-5439: Use-after-free in nsTArray Length() during XSLT + CVE-2017-5440: Use-after-free in txExecutionState destructor during + CVE-2017-5441: Use-after-free with selection during scroll events + CVE-2017-5442: Use-after-free during style changes + CVE-2017-5443: Out-of-bounds write during BinHex decoding + CVE-2017-5444: Buffer overflow while parsing + CVE-2017-5445: Uninitialized values used while parsing + CVE-2017-5446: Out-of-bounds read when HTTP/2 DATA frames are sent + CVE-2017-5447: Out-of-bounds read during glyph processing + CVE-2017-5449: Crash during bidirectional unicode manipulation with + CVE-2017-5451: Addressbar spoofing with onblur event + CVE-2017-5454: Sandbox escape allowing file system read access through + CVE-2017-5459: Buffer overflow in WebGL + CVE-2017-5460: Use-after-free in frame selection + CVE-2017-5461: Out-of-bounds write in Base64 encoding in NSS + CVE-2017-5462: DRBG flaw in NSS + CVE-2017-5464: Memory corruption with accessibility and DOM + CVE-2017-5465: Out-of-bounds read in ConvolvePixel + CVE-2017-5466: Origin confusion when reloading isolated data:text/html + CVE-2017-5467: Memory corruption when drawing Skia content + CVE-2017-5469: Potential Buffer overflow in flex-generated code + CVE-2016-10196: Vulnerabilities in Libevent library