Accepting request 1226643 from mozilla:Factory
- Mozilla Thunderbird 128.5.0
* IMAP could crash when reading cached messages
* Enabling "Show Folder Size" on Maildir profile could render
Thunderbird unusable
* Messages corrupted by folder compaction were only fixed by user
intervention
* Reading a message from past the end of an mbox file did not
cause an error
* View -> Folders had duplicate F access keys
* Add-ons adding columns to the message list could fail and cause
display issue
* "Empty trash on exit" and "Expunge inbox on exit" did not
always work
* Selecting a display option in View -> Tasks did not apply in
the Task interface
MFSA 2024-68 (bsc#1233695)
* CVE-2024-11691 (bmo#1914707, bmo#1924184)
Memory corruption in Apple GPU drivers
* CVE-2024-11692 (bmo#1909535)
Select list elements could be shown over another site
* CVE-2024-11693 (bmo#1921458)
Download Protections were bypassed by .library-ms files on Windows
* CVE-2024-11694 (bmo#1924167)
CSP Bypass and XSS Exposure via Web Compatibility Shims
* CVE-2024-11695 (bmo#1925496)
URL Bar Spoofing via Manipulated Punycode and Whitespace Characters
* CVE-2024-11696 (bmo#1929600)
Unhandled Exception in Add-on Signature Verification
* CVE-2024-11697 (bmo#1842187)
Improper Keypress Handling in Executable File Confirmation Dialog
OBS-URL: https://build.opensuse.org/request/show/1226643
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/MozillaThunderbird?expand=0&rev=349
This commit is contained in:
Ana Guerrero
Git OBS Bridge
commit
94c99d3af2
@ -1,3 +1,44 @@
|
||||
-------------------------------------------------------------------
|
||||
Tue Nov 26 10:15:25 UTC 2024 - Wolfgang Rosenauer <wr@rosenauer.org>
|
||||
|
||||
- Mozilla Thunderbird 128.5.0
|
||||
* IMAP could crash when reading cached messages
|
||||
* Enabling "Show Folder Size" on Maildir profile could render
|
||||
Thunderbird unusable
|
||||
* Messages corrupted by folder compaction were only fixed by user
|
||||
intervention
|
||||
* Reading a message from past the end of an mbox file did not
|
||||
cause an error
|
||||
* View -> Folders had duplicate F access keys
|
||||
* Add-ons adding columns to the message list could fail and cause
|
||||
display issue
|
||||
* "Empty trash on exit" and "Expunge inbox on exit" did not
|
||||
always work
|
||||
* Selecting a display option in View -> Tasks did not apply in
|
||||
the Task interface
|
||||
MFSA 2024-68 (bsc#1233695)
|
||||
* CVE-2024-11691 (bmo#1914707, bmo#1924184)
|
||||
Memory corruption in Apple GPU drivers
|
||||
* CVE-2024-11692 (bmo#1909535)
|
||||
Select list elements could be shown over another site
|
||||
* CVE-2024-11693 (bmo#1921458)
|
||||
Download Protections were bypassed by .library-ms files on Windows
|
||||
* CVE-2024-11694 (bmo#1924167)
|
||||
CSP Bypass and XSS Exposure via Web Compatibility Shims
|
||||
* CVE-2024-11695 (bmo#1925496)
|
||||
URL Bar Spoofing via Manipulated Punycode and Whitespace Characters
|
||||
* CVE-2024-11696 (bmo#1929600)
|
||||
Unhandled Exception in Add-on Signature Verification
|
||||
* CVE-2024-11697 (bmo#1842187)
|
||||
Improper Keypress Handling in Executable File Confirmation Dialog
|
||||
* CVE-2024-11698 (bmo#1916152)
|
||||
Fullscreen Lock-Up When Modal Dialog Interrupts Transition on macOS
|
||||
* CVE-2024-11699 (bmo#1880582, bmo#1929911)
|
||||
Memory safety bugs fixed in Firefox 133, Thunderbird 133,
|
||||
Firefox ESR 128.5, and Thunderbird 128.5
|
||||
- appid is thunderbird-esr currently; use the matching desktop
|
||||
file name (boo#1233650)
|
||||
|
||||
-------------------------------------------------------------------
|
||||
Wed Nov 20 07:36:02 UTC 2024 - Wolfgang Rosenauer <wr@rosenauer.org>
|
||||
|
||||
|
||||
@ -29,9 +29,10 @@
|
||||
# major 69
|
||||
# mainver %%major.99
|
||||
%define major 128
|
||||
%define mainver %major.4.4
|
||||
%define orig_version 128.4.4
|
||||
%define orig_suffix esr
|
||||
%define mainver %major.5.0
|
||||
%define orig_version 128.5.0
|
||||
%define esr_suffix esr
|
||||
%define orig_suffix %{nil}
|
||||
%define update_channel esr
|
||||
%define source_prefix thunderbird-%{orig_version}
|
||||
|
||||
@ -68,8 +69,9 @@ BuildArch: i686
|
||||
%define srcname thunderbird
|
||||
%define appname Thunderbird
|
||||
%define progdir %{_prefix}/%_lib/%{progname}
|
||||
%define gnome_dir %{_prefix}
|
||||
%define desktop_file_name %{progname}
|
||||
%define gnome_dir %{_prefix}
|
||||
#%define desktop_file_name %{progname}
|
||||
%define desktop_file_name %["%esr_suffix" == "esr" ? "%{progname}-esr" : "%{progname}"]
|
||||
%define __provides_exclude ^lib.*\\.so.*$
|
||||
%define __requires_exclude ^(libmoz.*|liblgpllibs.*|libxul.*|libgk.*|libldap.*|libldif.*|libprldap.*|librnp.*)$
|
||||
%define localize 1
|
||||
@ -178,20 +180,20 @@ License: MPL-2.0
|
||||
Group: Productivity/Networking/Email/Clients
|
||||
URL: https://www.thunderbird.net/
|
||||
%if !%{with only_print_mozconfig}
|
||||
Source: http://ftp.mozilla.org/pub/%{srcname}/releases/%{version}%{orig_suffix}/source/%{srcname}-%{orig_version}%{orig_suffix}.source.tar.xz
|
||||
Source: http://ftp.mozilla.org/pub/%{srcname}/releases/%{version}%{orig_suffix}%{esr_suffix}/source/%{srcname}-%{orig_version}%{orig_suffix}%{esr_suffix}.source.tar.xz
|
||||
Source1: thunderbird.desktop
|
||||
Source2: thunderbird-rpmlintrc
|
||||
Source3: mozilla.sh.in
|
||||
Source4: tar_stamps
|
||||
Source6: suse-default-prefs.js
|
||||
%if %{localize}
|
||||
Source7: l10n-%{orig_version}%{orig_suffix}.tar.xz
|
||||
Source7: l10n-%{orig_version}%{orig_suffix}%{esr_suffix}.tar.xz
|
||||
%endif
|
||||
Source9: thunderbird.appdata.xml
|
||||
Source13: spellcheck.js
|
||||
Source14: https://github.com/openSUSE/firefox-scripts/raw/913fab1a196e2a0623b5c554598bfde3b4b49e29/create-tar.sh
|
||||
Source20: https://ftp.mozilla.org/pub/%{srcname}/releases/%{version}%{orig_suffix}/source/%{srcname}-%{orig_version}%{orig_suffix}.source.tar.xz.asc
|
||||
Source21: https://ftp.mozilla.org/pub/%{srcname}/releases/%{version}%{orig_suffix}/KEY#/mozilla.keyring
|
||||
Source20: https://ftp.mozilla.org/pub/%{srcname}/releases/%{version}%{orig_suffix}%{esr_suffix}/source/%{srcname}-%{orig_version}%{orig_suffix}%{esr_suffix}.source.tar.xz.asc
|
||||
Source21: https://ftp.mozilla.org/pub/%{srcname}/releases/%{version}%{orig_suffix}%{esr_suffix}/KEY#/mozilla.keyring
|
||||
# Gecko/Toolkit
|
||||
Patch1: mozilla-nongnome-proxies.patch
|
||||
Patch3: mozilla-ntlm-full-path.patch
|
||||
|
||||
@ -1,3 +0,0 @@
|
||||
version https://git-lfs.github.com/spec/v1
|
||||
oid sha256:977b4e8d0e7f7f3e4ea493fdd5418ddc449259e5241b4589444cbedf0d8edb6f
|
||||
size 30573364
|
||||
3
l10n-128.5.0esr.tar.xz
Normal file
3
l10n-128.5.0esr.tar.xz
Normal file
@ -0,0 +1,3 @@
|
||||
version https://git-lfs.github.com/spec/v1
|
||||
oid sha256:411ccf5d02af3237d9bbbb9091d7c84d307812e150cda2a228adcb297431c7cf
|
||||
size 30663244
|
||||
@ -1,10 +1,10 @@
|
||||
PRODUCT="thunderbird"
|
||||
CHANNEL="esr128"
|
||||
VERSION="128.4.4"
|
||||
VERSION="128.5.0"
|
||||
VERSION_SUFFIX="esr"
|
||||
PREV_VERSION="128.4.3"
|
||||
REV_VERSION="128.4.4"
|
||||
PREV_VERSION_SUFFIX="esr"
|
||||
#SKIP_LOCALES="" # Uncomment to skip l10n and compare-locales-generation
|
||||
RELEASE_REPO="https://hg.mozilla.org/releases/comm-esr128"
|
||||
RELEASE_TAG="e963642f77edeb0a8a39ffdca4c7f2dee69f0b78"
|
||||
RELEASE_TIMESTAMP="20241118214310"
|
||||
RELEASE_TAG="5aa787475f1ff704f48d561dd2ba209b092f8336"
|
||||
RELEASE_TIMESTAMP="20241125170630"
|
||||
|
||||
@ -1,3 +0,0 @@
|
||||
version https://git-lfs.github.com/spec/v1
|
||||
oid sha256:370fae094c0f600e8eb54628c34485c7da6528f905613d41d6975092566731cd
|
||||
size 677533120
|
||||
@ -1,16 +0,0 @@
|
||||
-----BEGIN PGP SIGNATURE-----
|
||||
|
||||
iQIzBAABCgAdFiEErdcHlHlwDcrf3VM34207E/PZMnQFAmc77a4ACgkQ4207E/PZ
|
||||
MnRvWBAA03Se7xB+PlNX+ZbgufJOkWIJ1NtMz7OVYFvVMOfptdjZs4Z0yzgjGMGz
|
||||
FC8ji7faKzuB64GQK0I0VJZbtUUJoHDpQCzG4OaGIFngTFxTOHHybD1ERdOCIiXU
|
||||
/RZeiaski6hs0wSEz29ws4O2OPyjO1ygtfQyyjfIiX5clFviDBCoZKTpGNHnAy3o
|
||||
VW4eCMrDT8mD7sOUShV3c+AOxdDhO5vZfSs9LY6H131p9Jxpy18ZTXJyxcgPcO2K
|
||||
4UYwnLFWLyU8fTre4TMGGe3dxOTVKsuicX3qtuRbtaQDf0+t2+13zbngpj0eu8ol
|
||||
LSuYP8I85Vo4g97DLCMQcX7sA5ef9ZR9sVsabkdeVD5CNvm5vWjkgwu9qlHHUeW3
|
||||
awZqufmoNaMM5UMWmWFi7wOPVYv0G/OgiMdwcHkTtBrurCBzBezve9t7H7H6zhOS
|
||||
FWxoqQQN+QKTB9ytpmhZ1ZV39IU87ijrUnBpjhs66EufkADpD24ombG5cMU9JO+9
|
||||
hFqrc7hNTRcCdhDvm2m450+vbUY8EZ1k0PKKcAdRzFyvRPKKJ+Y+KV0kjyJ2PgN8
|
||||
ev+1IiN/9hHQVPnOEh66YyPgoiegIAVZVZzJDd9JOfUwcRCrODRVlwlFdiw+INDY
|
||||
F1YRVvRnMq7cmXNBA31WkrTT2yCB7wY3dzLUzsXvN7KZYDWgqfI=
|
||||
=8WEs
|
||||
-----END PGP SIGNATURE-----
|
||||
3
thunderbird-128.5.0esr.source.tar.xz
Normal file
3
thunderbird-128.5.0esr.source.tar.xz
Normal file
@ -0,0 +1,3 @@
|
||||
version https://git-lfs.github.com/spec/v1
|
||||
oid sha256:e92ef24c1da888853d78d926c56599d1e0c7ad67a404d10dfea9483124e731cd
|
||||
size 677426000
|
||||
16
thunderbird-128.5.0esr.source.tar.xz.asc
Normal file
16
thunderbird-128.5.0esr.source.tar.xz.asc
Normal file
@ -0,0 +1,16 @@
|
||||
-----BEGIN PGP SIGNATURE-----
|
||||
|
||||
iQIzBAABCgAdFiEErdcHlHlwDcrf3VM34207E/PZMnQFAmdE3WoACgkQ4207E/PZ
|
||||
MnTOtBAArzDhhzvgO1pf31tzSu0HXZq01mCMjadDl4CZR4pVWbDvwnNf34y19MQ5
|
||||
68TcR5Fj03xnrJC2x+MfJVW36Ry2T1B6oUmxJznPom9HrTa22E9wvdgZu9rQhtLN
|
||||
SIQVTndqAXZeNxkLoY2lqtx25pHmPh8JqiaiA0Mg2Uws2xHmCZrdU9ZqZm76gF/J
|
||||
IqaSdK3ZcfV3FPbTEBhg67JYchqwepXwlyrl2lg7uLAaQyNGwFVTzGn+U9VGp3xw
|
||||
BYTJLebnJc/H0I9r6O+9Pnqj2o2GlhEKVKabhO9/dzoa1keFKjaPHLkStioHXc8f
|
||||
in2aoEqH3cgIkKLNxmpCpcO5RVelDSFE5xQxiB8MGQTRyLGtMNFHzXvCEFZVF3Hx
|
||||
HJ1vxEuwaEhbHTDjGNpjy57y25BJnJR0JFxxUlZ4upSymqp8iW1JhQhQAFMJoDUn
|
||||
EvMRMntD+9EUjbD2Cp/OO7dddACi1a50HLP4OlHU5pGEyNShIHoBJdo1Q0VHeg/7
|
||||
bXumwStRiWob/RoFAFFxjcxmxeyX9L/qynPh718PLdmXrzk7Xldwf9nCd222UE1/
|
||||
Zet9iXZOwhQSGziwu0JOzy4PJhFWZrVkpNLwL69Kpk6Lfz/9PnLM+oxa83Jep7Ic
|
||||
Bi6lVFGx2MCRlophhRpDaT72pfkcsYfXkAPgUzWM4yDQS6E/LrQ=
|
||||
=ebtR
|
||||
-----END PGP SIGNATURE-----
|
||||
Loading…
Reference in New Issue
Block a user