Package thunderbird: Information
Default inline alert: Version in the repository: 115.9.0-alt1
Source package: thunderbird
Version: 91.3.2-alt1
Build time: Nov 25, 2021, 01:54 PM in the task #290500
Category: Networking/Mail
Report package bugHome page: https://www.thunderbird.net
License: MPL-2.0
Summary: Thunderbird is Mozilla's e-mail client
Description:
Thunderbird is Mozilla's next generation e-mail client. Thunderbird makes emailing safer, faster and easier than ever before and can also scale to meet the most sophisticated organizational needs. The package contains Lightning - an integrated calendar for Thunderbird.
List of rpms provided by this srpm:
rpm-build-thunderbird (x86_64, ppc64le, i586, aarch64)
thunderbird (x86_64, ppc64le, i586, aarch64)
thunderbird-wayland (x86_64, ppc64le, i586, aarch64)
rpm-build-thunderbird (x86_64, ppc64le, i586, aarch64)
thunderbird (x86_64, ppc64le, i586, aarch64)
thunderbird-wayland (x86_64, ppc64le, i586, aarch64)
Maintainer: Andrey Cherepanov
List of contributors:
Andrey Cherepanov
Aleksei Nikiforov
Gleb Fotengauer-Malinovskiy
Paul Wolneykien
Anton Farygin
Vladimir Didenko
Alexey Gladkov
Alexey Morozov
Andrey Cherepanov
Aleksei Nikiforov
Gleb Fotengauer-Malinovskiy
Paul Wolneykien
Anton Farygin
Vladimir Didenko
Alexey Gladkov
Alexey Morozov
Last changed
Nov. 19, 2021 Andrey Cherepanov 91.3.2-alt1
- New version.
Nov. 15, 2021 Andrey Cherepanov 91.3.1-alt1
- New version.
Nov. 3, 2021 Andrey Cherepanov 91.3.0-alt1
- New version. - Security fixes: + CVE-2021-38503 iframe sandbox rules did not apply to XSLT stylesheets + CVE-2021-38504 Use-after-free in file picker dialog + CVE-2021-38505 Windows 10 Cloud Clipboard may have recorded sensitive user data + CVE-2021-38506 Thunderbird could be coaxed into going into fullscreen mode without notification or warning + CVE-2021-38507 Opportunistic Encryption in HTTP2 could be used to bypass the Same-Origin-Policy on services hosted on other ports + CVE-2021-38508 Permission Prompt could be overlaid, resulting in user confusion and potential spoofing + CVE-2021-38509 Javascript alert box could have been spoofed onto an arbitrary domain + CVE-2021-38510 Download Protections were bypassed by .inetloc files on Mac OS - Disable telemetry by default.