Package thunderbird: Information

  • Default inline alert: Version in the repository: 115.9.0-alt1

Source package: thunderbird
Version: 78.1.1-alt1
Latest version according to Repology
Build time:  Aug 31, 2020, 07:56 PM in the task #256264
Category: Networking/Mail
Report package bug
Gear: https://git.altlinux.org/gears/t/thunderbird.git?a=tree;hb=ad991…
Home page: https://www.thunderbird.net
License: MPL-2.0
Summary: Thunderbird is Mozilla's e-mail client
Description: 
Thunderbird is Mozilla's next generation e-mail client.
Thunderbird makes emailing safer, faster and easier than
ever before and can also scale to meet the most sophisticated
organizational needs.
The package contains Lightning - an integrated calendar for Thunderbird.
List of rpms provided by this srpm:
rpm-build-thunderbird (noarch)
thunderbird (x86_64, ppc64le, i586, armh, aarch64)
thunderbird-enigmail (x86_64, ppc64le, i586, armh, aarch64)
thunderbird-wayland (noarch)
Maintainer: Andrey Cherepanov
List of contributors:
Aleksei Nikiforov
Andrey Cherepanov
Gleb Fotengauer-Malinovskiy
Paul Wolneykien
Anton Farygin
Vladimir Didenko
Alexey Gladkov
Alexey Morozov
ACL:
Pavel Vasenkov
Andrey Cherepanov
@everybody
    1. libdbus-glib-devel
    2. libwireless-devel
    3. alternatives
    4. /dev/shm
    5. libdrm-devel
    6. python3-base
    7. libxkbcommon-devel
    8. libevent-devel
    9. python3-module-pip
    10. autoconf_2.13
    11. autoconf_2.13
    12. python3-module-setuptools
    13. libffi-devel
    14. python3-modules-sqlite3
    15. libfreetype-devel
    16. /proc
    17. lld10.0-devel
    18. llvm10.0-devel
    19. libstartup-notification-devel
    20. libstdc++-devel
    21. makedepend
    22. browser-plugins-npapi-devel
    23. bzlib-devel
    24. libnotify-devel
    25. rust
    26. libnspr-devel
    27. rust-cargo
    28. libnss-devel
    29. chrpath
    30. libnss-devel-static
    31. mozilla-common-devel
    32. clang10.0
    33. clang10.0-devel
    34. mozldap-devel
    35. doxygen
    36. libGL-devel
    37. libgio-devel
    38. libIDL-devel
    39. nasm
    40. node
    41. libopus-devel
    42. python-module-distribute
    43. libX11-devel
    44. libXScrnSaver-devel
    45. fontconfig-devel
    46. libXcomposite-devel
    47. rpm-build-mozilla.org
    48. libXcursor-devel
    49. python-modules-compiler
    50. libXdamage-devel
    51. python-modules-json
    52. python-modules-logging
    53. gst-plugins1.0-devel
    54. libXext-devel
    55. python-modules-sqlite3
    56. gstreamer1.0-devel
    57. libXft-devel
    58. libXi-devel
    59. libpixman-devel
    60. libXt-devel
    61. libgtk+2-devel
    62. libgtk+3-devel
    63. libalsa-devel
    64. libcairo-devel
    65. unzip
    66. gcc-c++
    67. libhunspell-devel
    68. libproxy-devel
    69. libjpeg-devel
    70. xorg-cf-files
    71. libcurl-devel
    72. yasm
    73. zip
    74. zlib-devel
    75. libpulseaudio-devel
    76. libvpx-devel
    77. imake

Last changed

Aug. 18, 2020 Aleksei Nikiforov 78.1.1-alt1
- Updated to upstream version 78.1.1 (thx to cas@ and sbolshakov@).
- Fixes:
  + CVE-2020-15652 Potential leak of redirect targets when loading scripts in a worker
  + CVE-2020-6514 WebRTC data channel leaks internal address to peer
  + CVE-2020-15655 Extension APIs could be used to bypass Same-Origin Policy
  + CVE-2020-15653 Bypassing iframe sandbox when allowing popups
  + CVE-2020-6463 Use-after-free in ANGLE gl::Texture::onUnbindAsSamplerTexture
  + CVE-2020-15656 Type confusion for special arguments in IonMonkey
  + CVE-2020-15658 Overriding file type when saving to disk
  + CVE-2020-15657 DLL hijacking due to incorrect loading path
  + CVE-2020-15654 Custom cursor can overlay user interface
  + CVE-2020-15659 Memory safety bugs fixed in Thunderbird 78.1
July 21, 2020 Andrey Cherepanov 78.0-alt1
- New version (78.0).
- Fixes:
  + CVE-2020-12415 AppCache manifest poisoning due to url encoded character processing
  + CVE-2020-12416 Use-after-free in WebRTC VideoBroadcaster
  + CVE-2020-12417 Memory corruption due to missing sign-extension for ValueTags on ARM64
  + CVE-2020-12418 Information disclosure due to manipulated URL object
  + CVE-2020-12419 Use-after-free in nsGlobalWindowInner
  + CVE-2020-12420 Use-After-Free when trying to connect to a STUN server
  + CVE-2020-15648 X-Frame-Options bypass using object or embed tags
  + CVE-2020-12402 RSA Key Generation vulnerable to side-channel attack
  + CVE-2020-12421 Add-On updates did not respect the same certificate trust rules as software updates
  + CVE-2020-12422 Integer overflow in nsJPEGEncoder::emptyOutputBuffer
  + CVE-2020-12423 DLL Hijacking due to searching %PATH% for a library
  + CVE-2020-12424 WebRTC permission prompt could have been bypassed by a compromised content process
  + CVE-2020-12425 Out of bound read in Date.parse()
  + CVE-2020-12426 Memory safety bugs fixed in Thunderbird 78
- Build with bundled languages: kk, ru, uk.
July 13, 2020 Andrey Cherepanov 68.10.0-alt1
- New version (68.10.0).
- Fixes:
  + CVE-2020-12417 Memory corruption due to missing sign-extension for ValueTags on ARM64
  + CVE-2020-12418 Information disclosure due to manipulated URL object
  + CVE-2020-12419 Use-after-free in nsGlobalWindowInner
  + CVE-2020-12420 Use-After-Free when trying to connect to a STUN server
  + CVE-2020-12421 Add-On updates did not respect the same certificate trust rules as software updates
  + MFSA-2020-0001 Automatic account setup leaks Microsoft Exchange login credentials
- Enigmail 2.1.7.
VKontakte|Telegram|YouTube|Forum|GitHub|Bugzilla
Version: v24.4.2
Back to top