pkgsrc-Changes archive

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index][Old Index]

CVS commit: pkgsrc/mail/thunderbird



Module Name:    pkgsrc
Committed By:   ryoon
Date:           Fri Oct 12 18:28:59 UTC 2012

Modified Files:
        pkgsrc/mail/thunderbird: Makefile PLIST PLIST.lightning distinfo
            enigmail.mk
        pkgsrc/mail/thunderbird/patches: patch-as patch-aw patch-zc
Removed Files:
        pkgsrc/mail/thunderbird/patches:
            patch-ipc_chromium_src_base_third__party_nspr_prcpucfg.h patch-ma
            patch-mozilla_ipc_chromium_src_base_third__party_nspr_prtime.cc

Log Message:
Update to 16.0.1

Changelog:
    FIXED
    16.0.1: Vulnerability outlined here
        
https://blog.mozilla.org/security/2012/10/10/security-vulnerability-in-firefox-16/
    NEW
    We have now added box.com to the list of online storage services that are 
available for use with Thunderbird Filelink
    NEW
    Silent, background updates. Thunderbird will now download and apply updates 
in the background allowing you to start quickly the next time Thunderbird 
starts up.
    FIXED
    Various fixes and performance improvements
    FIXED
    Various security fixes
Fixed in Thunderbird 16.0.1
MFSA 2012-89 defaultValue security checks not applied
MFSA 2012-88 Miscellaneous memory safety hazards (rv:16.0.1)

Fixed in Thunderbird 16
MFSA 2012-87 Use-after-free in the IME State Manager
MFSA 2012-86 Heap memory corruption issues found using Address Sanitizer
MFSA 2012-85 Use-after-free, buffer overflow, and out of bounds read issues 
found using Address Sanitizer
MFSA 2012-84 Spoofing and script injection through location.hash
MFSA 2012-83 Chrome Object Wrapper (COW) does not disallow acces to privileged 
functions or properties
MFSA 2012-82 top object and location property accessible by plugins
MFSA 2012-81 GetProperty function can bypass security checks
MFSA 2012-80 Crash with invalid cast when using instanceof operator
MFSA 2012-79 DOS and crash with full screen and history navigation
MFSA 2012-77 Some DOMWindowUtils methods bypass security checks
MFSA 2012-76 Continued access to initial origin after setting document.domain
MFSA 2012-75 select element persistance allows for attacks
MFSA 2012-74 Miscellaneous memory safety hazards (rv:16.0/ rv:10.0.8)


To generate a diff of this commit:
cvs rdiff -u -r1.101 -r1.102 pkgsrc/mail/thunderbird/Makefile
cvs rdiff -u -r1.43 -r1.44 pkgsrc/mail/thunderbird/PLIST
cvs rdiff -u -r1.12 -r1.13 pkgsrc/mail/thunderbird/PLIST.lightning
cvs rdiff -u -r1.103 -r1.104 pkgsrc/mail/thunderbird/distinfo
cvs rdiff -u -r1.10 -r1.11 pkgsrc/mail/thunderbird/enigmail.mk
cvs rdiff -u -r1.12 -r1.13 pkgsrc/mail/thunderbird/patches/patch-as
cvs rdiff -u -r1.11 -r1.12 pkgsrc/mail/thunderbird/patches/patch-aw
cvs rdiff -u -r1.4 -r0 \
    
pkgsrc/mail/thunderbird/patches/patch-ipc_chromium_src_base_third__party_nspr_prcpucfg.h
cvs rdiff -u -r1.5 -r0 pkgsrc/mail/thunderbird/patches/patch-ma
cvs rdiff -u -r1.3 -r0 \
    
pkgsrc/mail/thunderbird/patches/patch-mozilla_ipc_chromium_src_base_third__party_nspr_prtime.cc
cvs rdiff -u -r1.4 -r1.5 pkgsrc/mail/thunderbird/patches/patch-zc

Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.




Home | Main Index | Thread Index | Old Index