Пакет thunderbird: Информация

Default inline alert: Версия в репозитории: 102.11.0-alt0.c9.1

Исходный пакет: thunderbird

Версия: 60.7.1-alt2

Собран: 19 июня 2019 г. 14:11 в задании #232570

Категория: Сети/Почта

Сообщить об ошибке в пакете

Gear: https://git.altlinux.org/gears/t/thunderbird.git?a=tree;hb=12680…

Домашняя страница: https://www.thunderbird.net

Лицензия: MPL/GPL

О пакете: Thunderbird is Mozilla's e-mail client

Описание:

Thunderbird is Mozilla's next generation e-mail client.
Thunderbird makes emailing safer, faster and easier than
ever before and can also scale to meet the most sophisticated
organizational needs.
The package contains Lightning - an integrated calendar for Thunderbird.

Список rpm-пакетов, предоставляемых данным srpm-пакетом:
rpm-build-thunderbird (noarch)
thunderbird (x86_64, i586, aarch64)
thunderbird-enigmail (x86_64, i586, aarch64)

Сопровождающий: Andrey Cherepanov

Список участников:
Andrey Cherepanov
Paul Wolneykien
Anton Farygin
Vladimir Didenko
Alexey Gladkov
Alexey Morozov

Сборочные зависимости:

18 июня 2019 г. Andrey Cherepanov 60.7.1-alt2

- enigmail: disable pEpAutoDownload.

14 июня 2019 г. Andrey Cherepanov 60.7.1-alt1

- New version (60.7.1).
- Fixed:
  + CVE-2019-11703 Heap buffer overflow in icalparser.c
  + CVE-2019-11704 Heap buffer overflow in icalvalue.c
  + CVE-2019-11705 Stack buffer overflow in icalrecur.c
  + CVE-2019-11706 Type confusion in icalproperty.c
- Enigmail 2.0.11.
- thunderbird-enigmail now requires pinentry-x11 (ALT #18790).
- Use juniorModeForceOff by default in Enigmail (ALT #36447).
- Fix l10n dtd of Enigmail.

20 мая 2019 г. Andrey Cherepanov 60.7.0-alt1

- New version (60.7.0).
- Fixed:
  + CVE-2019-9815 Disable hyperthreading on content JavaScript threads on macOS
  + CVE-2019-9816 Type confusion with object groups and UnboxedObjects
  + CVE-2019-9817 Stealing of cross-domain images using canvas
  + CVE-2019-9818 Use-after-free in crash generation server
  + CVE-2019-9819 Compartment mismatch with fetch API
  + CVE-2019-9820 Use-after-free of ChromeEventHandler by DocShell
  + CVE-2019-11691 Use-after-free in XMLHttpRequest
  + CVE-2019-11692 Use-after-free removing listeners in the event listener manager
  + CVE-2019-11693 Buffer overflow in WebGL bufferdata on Linux
  + CVE-2019-7317 Use-after-free in png_image_free of libpng library
  + CVE-2019-9797 Cross-origin theft of images with createImageBitmap
  + CVE-2018-18511 Cross-origin theft of images with ImageBitmapRenderingContext
  + CVE-2019-11694 Uninitialized memory memory leakage in Windows sandbox
  + CVE-2019-11698 Theft of user history data through drag and drop of hyperlinks to and from bookmarks
  + CVE-2019-5798 Out-of-bounds read in Skia
  + CVE-2019-9800 Memory safety bugs fixed in Firefox 67, Firefox ESR 60.7, and Thunderbird 60.7

VKontakte|Telegram|YouTube|Forum|GitHub|Bugzilla

Версия: v24.4.2