openSUSE Build Service

Wolfgang Rosenauer (wrosenauer) committed about 2 months ago (revision 73)

Wolfgang Rosenauer (wrosenauer) committed about 2 months ago (revision 72)

- Mozilla Thunderbird 115.6.2

Wolfgang Rosenauer (wrosenauer) committed about 2 months ago (revision 71)

Wolfgang Rosenauer (wrosenauer) committed about 2 months ago (revision 70)

Wolfgang Rosenauer (wrosenauer) committed about 2 months ago (revision 69)

- Mozilla Thunderbird 128.3.2

Wolfgang Rosenauer (wrosenauer) committed about 2 months ago (revision 68)

Wolfgang Rosenauer (wrosenauer) committed about 2 months ago (revision 67)

- Mozilla Thunderbird 115.16.1
  MFSA 2024-44 (bsc#1229821)
  * CVE-2024-8381 (bmo#1912715)
    Type confusion when looking up a property name in a "with"
    block
  * CVE-2024-8382 (bmo#1906744)
    Internal event interfaces were exposed to web content when
    browser EventHandler listener callbacks ran
  * CVE-2024-8384 (bmo#1911288)
    Garbage collection could mis-color cross-compartment objects
    in OOM conditions

Wolfgang Rosenauer (wrosenauer) committed 3 months ago (revision 66)

- Mozilla Thunderbird 115.15.0
  MFSA 2024-  (bsc#1229821)

Wolfgang Rosenauer (wrosenauer) accepted request 1197344 from

Manfred Hollstein (manfred-h) 3 months ago (revision 65)

- Use gcc13 on Tumbleweed and where it is available.
- Don't use gcc14 as sources don't compile.

Wolfgang Rosenauer (wrosenauer) committed 4 months ago (revision 64)

  MFSA 2024-38 (bsc#1228648)
  * CVE-2024-7519 (bmo#1902307)
    Out of bounds memory access in graphics shared memory handling
  * CVE-2024-7521 (bmo#1904644)
    Incomplete WebAssembly exception handing
  * CVE-2024-7522 (bmo#1906727)
    Out of bounds read in editor component
  * CVE-2024-7525 (bmo#1909298)
    Missing permission check when creating a StreamFilter
  * CVE-2024-7526 (bmo#1910306)
    Uninitialized memory used by WebGL
  * CVE-2024-7527 (bmo#1871303)
    Use-after-free in JavaScript garbage collection
  * CVE-2024-7529 (bmo#1903187)
    Document content could partially obscure security prompts

Wolfgang Rosenauer (wrosenauer) accepted request 1191980 from

Andreas Stieger (AndreasStieger) 4 months ago (revision 63)

cl for 115.14.0

Wolfgang Rosenauer (wrosenauer) committed 4 months ago (revision 62)

- Mozilla Thunderbird 115.14.0

Wolfgang Rosenauer (wrosenauer) committed 5 months ago (revision 61)

  * After starting Thunderbird, the message list position was
    sometimes set to an incorrect position
  MFSA 2024-30 (bsc#1226316)
  * CVE-2024-6600 (bmo#1888340)
    Memory corruption in WebGL API
  * CVE-2024-6601 (bmo#1890748)
    Race condition in permission assignment
  * CVE-2024-6602 (bmo#1895032)
    Memory corruption in NSS
  * CVE-2024-6603 (bmo#1895081)
    Memory corruption in thread creation
  * CVE-2024-6604 (bmo#1748105, bmo#1837550, bmo#1884266)
    Memory safety bugs fixed in Firefox 128, Firefox ESR 115.13,
    and Thunderbird 115.13

Wolfgang Rosenauer (wrosenauer) committed 5 months ago (revision 60)

Wolfgang Rosenauer (wrosenauer) committed 5 months ago (revision 59)

- Mozilla Thunderbird 115.13.0

Wolfgang Rosenauer (wrosenauer) committed 5 months ago (revision 58)

Wolfgang Rosenauer (wrosenauer) committed 5 months ago (revision 57)

  * fixed: Annual Thunderbird Beta appeal intended for
    Thunderbird 115.12.0 did not open as expected (bmo#1898084)
  * 115.12.0 got pulled because of upstream automation process errors
    and Windows installer signing changes.
    No code changes, changelog is the same as 115.12.0 (bsc#1226495)
- Added thunderbird-fix-CVE-2024-34703.patch (bsc#1227239)

Wolfgang Rosenauer (wrosenauer) committed 5 months ago (revision 56)

- Mozilla Thunderbird 115.12.2
  https://www.thunderbird.net/en-US/thunderbird/115.12.1/releasenotes
  * POP error messages from server were not displayed
  * Some OpenPGP messages were incorrectly reported as being partially
    signed or encrypted
  * Autocrypt header was missing from some encrypted messages due to
    case-sensitive email address matching
  * "Convert to Table" dialog content was formatted incorrectly
  * Opening Theme Settings reverted the current theme to the startup theme

Wolfgang Rosenauer (wrosenauer) committed 6 months ago (revision 55)

- Mozilla Thunderbird 115.12.1

  https://www.thunderbird.net/en-US/thunderbird/115.12.0/releasenotes
  MFSA 2024-28 (bsc#1226027)
  * CVE-2024-5702 (bmo#1193389)
    Use-after-free in networking
  * CVE-2024-5688 (bmo#1895086)
    Use-after-free in JavaScript object transplant
  * CVE-2024-5690 (bmo#1883693)
    External protocol handlers leaked by timing attack
  * CVE-2024-5691 (bmo#1888695)
    Sandboxed iframes were able to bypass sandbox restrictions to
    open a new window
  * CVE-2024-5692 (bmo#1891234)
    Bypass of file name restrictions during saving
  * CVE-2024-5693 (bmo#1891319)
    Cross-Origin Image leak via Offscreen Canvas
  * CVE-2024-5696 (bmo#1896555)
    Memory Corruption in Text Fragments
  * CVE-2024-5700 (bmo#1862809, bmo#1889355, bmo#1893388, bmo#1895123)
    Memory safety bugs fixed in Firefox 127, Firefox ESR 115.12,
    and Thunderbird 115.12

Wolfgang Rosenauer (wrosenauer) committed 6 months ago (revision 54)

Places

Revisions of thunderbird115

Places