SEARCH
NEW RPMS
DIRECTORIES
ABOUT
FAQ
VARIOUS
BLOG

 
 
Changelog for MozillaThunderbird-debuginfo-8.0-33.3.test.7.i586.rpm :

* Mon Nov 07 2011 wrAATTrosenauer.org- update to version 8.0 (bnc#728520)
* MFSA 2011-47/CVE-2011-3648 (bmo#690225) Potential XSS against sites using Shift-JIS
* MFSA 2011-48/CVE-2011-3651/CVE-2011-3652/CVE-2011-3654 Miscellaneous memory safety hazards
* MFSA 2011-49/CVE-2011-3650 (bmo#674776) Memory corruption while profiling using Firebug
* MFSA 2011-52/CVE-2011-3655 (bmo#672182) Code execution via NoWaiverWrapper- rebased patches- update enigmail to 1.3.3- update icon cache after install/removal (bnc#726758)
* Fri Sep 30 2011 wrAATTrosenauer.org- update to minor version 7.0.1
* fixed staged addon updates
* Disabled the what\'s new tab for updaters from 7.0 (bmo#690290)
* Insert Characters & Symbols fix (bmo#690267)
* Mon Sep 26 2011 wrAATTrosenauer.org- update to version 7.0 (bnc#720264)
* MFSA 2011-36 Miscellaneous memory safety hazards
* MFSA 2011-39/CVE-2011-3000 (bmo#655389) Defense against multiple Location headers due to CRLF Injection
* MFSA 2011-40/CVE-2011-2372/CVE-2011-3001 Code installation through holding down Enter
* MFSA 2011-42/CVE-2011-3232 Potentially exploitable crash in the YARR regular expression library
* MFSA 2011-44/CVE-2011-3005 (bmo#675747) Use after free reading OGG headers- removed obsolete mozilla-cairo-lcd.patch
* Tue Sep 13 2011 wrAATTrosenauer.org- update enigmail to 1.3.2 (no changelog available)- add dbus-1-glib-devel to BuildRequires (not pulled automatically anymore with 12.1)
* Fri Sep 09 2011 wrAATTrosenauer.org- make enigmail a subversion of Thunderbird to fix %release number tracking issues with the Open Build Service (taken from dmueller\'s 3.1.x changes)
* Wed Sep 07 2011 pcernyAATTsuse.com- security update to 6.0.2 (bnc#714931)
* Complete blocking of certificates issued by DigiNotar (bmo#683449)
* Fri Sep 02 2011 pcernyAATTsuse.com- security update to 6.0.1 (bnc#714931)
* MFSA 2011-34 Protection against fraudulent DigiNotar certificates (bmo#682927)
* Wed Aug 17 2011 jslabyAATTsuse.de- update enigmail to 1.3 final
* Fri Aug 12 2011 wrAATTrosenauer.org- update to version 6.0 (bnc#712224) including security fixes MFSA 2011-31
* CVE-2011-2989/CVE-2011-2991/CVE-2011-2992/CVE-2011-2985 Miscellaneous memory safety hazards
* CVE-2011-2988 (bmo#665936) String crash using WebGL shaders
* CVE-2011-2987 (bmo#665934) Heap overflow in ANGLE library
* CVE-2011-0084 (bmo#648094) Crash in SVGTextElement.getCharNumAtPosition()
* CVE-2011-2986 (bmo#655836) Cross-origin data theft using canvas and Windows D2D- add mozilla-curl.patch to remove dependencies to obsolete curl header
* Sat Jul 30 2011 jslabyAATTsuse.de- update enigmail to 1.2.99 (1.3a1pre)
* Fri Jul 29 2011 wrAATTrosenauer.org- update to version 6.0b2
* removed obsolete patches - mozilla-gio.patch - thunderbird-gio.patch- fix symbol dumper for linux3 platform
* Sat Jul 09 2011 wrAATTrosenauer.org- update to version 5.0- update enigmail to version 1.2- improved logic for the launcher command- enable gio usage (instead of gnomevfs) for 11.4 and newer- build dump_syms dynamic to build on 12.1 and above
* Mon Jun 20 2011 wrAATTrosenauer.org- security update to version 3.1.11 (bnc#701296)
* MFSA 2011-19/CVE-2011-2374 CVE-2011-2376 CVE-2011-2364 CVE-2011-2365 Miscellaneous memory safety hazards
* MFSA 2011-20/CVE-2011-2373 (bmo#617247) Use-after-free vulnerability when viewing XUL document with script disabled
* MFSA 2011-21/CVE-2011-2377 (bmo#638018, bmo#639303) Memory corruption due to multipart/x-mixed-replace images
* MFSA 2011-22/CVE-2011-2371 (bmo#664009) Integer overflow and arbitrary code execution in Array.reduceRight()
* MFSA 2011-23/CVE-2011-0083 CVE-2011-0085 CVE-2011-2363 Multiple dangling pointer vulnerabilities
* MFSA 2011-24/CVE-2011-2362 (bmo#616264) Cookie isolation error- speed up find-external-requires.sh- do not build dump_syms static as it is not needed for us - > fixes build for 12.1 and above
* Fri Apr 15 2011 wrAATTrosenauer.org- security update to version 3.1.10 (bnc#689281)
* MFSA 2011-12/ CVE-2011-0069 CVE-2011-0070 CVE-2011-0072 CVE-2011-0074 CVE-2011-0075 CVE-2011-0077 CVE-2011-0078 CVE-2011-0080 CVE-2011-0081 Miscellaneous memory safety hazards
* Fri Mar 25 2011 idoenmezAATTnovell.com- Add mozilla-gcc46.patch: fix compilation with gcc 4.6 See the following bug reports: https://bugzilla.mozilla.org/show_bug.cgi?id=623116 https://bugzilla.mozilla.org/show_bug.cgi?id=623123 https://bugzilla.mozilla.org/show_bug.cgi?id=623126 https://bugzilla.mozilla.org/show_bug.cgi?id=628371
* Tue Feb 22 2011 wrAATTrosenauer.org- security update to version 3.1.8 (build3) (bnc#667155)
* MFSA 2011-01/CVE-2011-0053/CVE-2011-0062 Miscellaneous memory safety hazards (rv:1.9.2.14/ 1.9.1.17)
* MFSA 2011-08/CVE-2010-1585 (bmo#562547) ParanoidFragmentSink allows javascript: URLs in chrome documents
* MFSA 2011-09/CVE-2011-0061 (bmo#610601) Crash caused by corrupted JPEG image
* Thu Jan 13 2011 wrAATTrosenauer.org- rename desktop file for 11.4 and above (bnc#664211)
* Mon Jan 10 2011 wrAATTrosenauer.org- add x-scheme-handler/mailto as mimetype to the desktop file as needed by newer Gnome environment
* Mon Nov 29 2010 wrAATTrosenauer.org- security update to version 3.1.7 (bnc#657016)
* MFSA 2010-74/CVE-2010-3776/CVE-2010-3777/CVE-2010-3778 Miscellaneous memory safety hazards (rv:1.9.2.13/ 1.9.1.16)
* MFSA 2010-75/CVE-2010-3769 (bmo#608336) Buffer overflow while line breaking after document.write with long string
* MFSA 2010-78/CVE-2010-3768 (bmo#527276) Add support for OTS font sanitizer- provide versioned \"thunderbird\" symbol
* Wed Oct 27 2010 wrAATTrosenauer.org- security update to version 3.1.6 (bnc#649492)
* MFSA 2010-73/CVE-2010-3765 (bmo#607222) Heap buffer overflow mixing document.write and DOM insertion
* Wed Oct 06 2010 wrAATTrosenauer.org- security update to version 3.1.5 (bnc#645315)
* MFSA 2010-64/CVE-2010-3174/CVE-2010-3175/CVE-2010-3176 Miscellaneous memory safety hazards
* MFSA 2010-65/CVE-2010-3179 (bmo#583077) Buffer overflow and memory corruption using document.write
* MFSA 2010-66/CVE-2010-3180 (bmo#588929) Use-after-free error in nsBarProp
* MFSA 2010-67/CVE-2010-3183 (bmo#598669) Dangling pointer vulnerability in LookupGetterOrSetter
* MFSA 2010-69/CVE-2010-3178 (bmo#576616) Cross-site information disclosure via modal calls
* MFSA 2010-70/CVE-2010-3170 (bmo#578697) SSL wildcard certificate matching IP addresses
* MFSA 2010-71/CVE-2010-3182 (bmo#590753, bnc#642502) Unsafe library loading vulnerabilities
* MFSA 2010-72/CVE-2010-3173 Insecure Diffie-Hellman key exchange
* new extra locales
* removed upstreamed mozilla-helper-app.patch- require mozilla-nss >= 3.12.8
* Wed Sep 15 2010 wrAATTrosenauer.org- update to version 3.1.4
* fixing startup topcrash
* Mon Aug 30 2010 wrAATTrosenauer.org- security update to version 3.1.3 (bnc#637303)
* MFSA 2010-49/CVE-2010-3169 Miscellaneous memory safety hazards
* MFSA 2010-50/CVE-2010-2765 (bmo#576447) Frameset integer overflow vulnerability
* MFSA 2010-51/CVE-2010-2767 (bmo#584512) Dangling pointer vulnerability using DOM plugin array
* MFSA 2010-53/CVE-2010-3166 (bmo#579655) Heap buffer overflow in nsTextFrameUtils::TransformText
* MFSA 2010-54/CVE-2010-2760 (bmo#585815) Dangling pointer vulnerability in nsTreeSelection
* MFSA 2010-55/CVE-2010-3168 (bmo#576075) XUL tree removal crash and remote code execution
* MFSA 2010-56/CVE-2010-3167 (bmo#576070) Dangling pointer vulnerability in nsTreeContentView
* MFSA 2010-57/CVE-2010-2766 (bmo#580445) Crash and remote code execution in normalizeDocument
* MFSA 2010-59/CVE-2010-2762 (bmo#584180) SJOW creates scope chains ending in outer object
* MFSA 2010-61/CVE-2010-2768 (bmo#579744) UTF-7 XSS by overriding document charset using type attribute
* MFSA 2010-62/CVE-2010-2769 (bmo#520189) Copy-and-paste or drag-and-drop into designMode document allows XSS
* MFSA 2010-63/CVE-2010-2764 (bmo#552090) Information leak via XMLHttpRequest statusText- ESD notification sound fix included upstream
* Mon Aug 30 2010 wrAATTrosenauer.org- fixed build with latest Gnome (mozilla-gdk-pixbuf.patch)
* Sat Jul 24 2010 wrAATTrosenauer.org- update to version 3.1.1
* based on the Gecko 1.9.2 platform
* Faster Search Results
* Quick Filter Toolbar
* New Migration Assistant
* Saved Files Manager- update to enigmail 1.1.2- enable crashreporter and package buildsymbols- fixed esd sound output (notifications) (bmo#576365)
* Fri Jul 16 2010 wrAATTrosenauer.org- security update to 3.0.6 (bnc#622506)
* MFSA 2010-34/CVE-2010-1211/CVE-2010-1212 Miscellaneous memory safety hazards
* MFSA 2010-39/CVE-2010-2752 (bmo#574059) nsCSSValue::Array index integer overflow
* MFSA 2010-40/CVE-2010-2753 (bmo#571106) nsTreeSelection dangling pointer remote code execution vulnerability
* MFSA 2010-41/CVE-2010-1205 (bmo#570451) Remote code execution using malformed PNG image
* MFSA 2010-42/CVE-2010-1213 (bmo#568148) Cross-origin data disclosure via Web Workers and importScripts
* MFSA 2010-46/CVE-2010-0654 (bmo#524223) Cross-domain data theft using CSS
* MFSA 2010-47/CVE-2010-2754 (bmo#568564) Cross-origin data leakage from script filename in error messages
* Fri May 21 2010 wrAATTrosenauer.org- security update to 3.0.5 (bnc#603356)
* MFSA 2010-25/CVE-2010-1121 (bmo#555109) Re-use of freed object due to scope confusion
* MFSA 2010-26/CVE-2010-1200/CVE-2010-1201/CVE-2010-1202/ CVE-2010-1203 Crashes with evidence of memory corruption (rv:1.9.1.10)
* MFSA 2010-29/CVE-2010-1196 (bmo#534666) Heap buffer overflow in nsGenericDOMDataNode::SetTextInternal
* MFSA 2010-30/CVE-2010-1199 (bmo#554255) Integer Overflow in XSLT Node Sorting
* Mon Apr 12 2010 wrAATTrosenauer.org- do not encode the RPM release number into the useragent to avoid non useful republishing (bnc#593807)
* Wed Mar 17 2010 wrAATTrosenauer.org- security update to 3.0.4 (bnc#586567)
* MFSA 2010-16/CVE-2010-0173/CVE-2010-0174 Crashes with evidence of memory corruption
* MFSA 2010-17/CVE-2010-0175 (bmo#540100,375928) Remote code execution with use-after-free in nsTreeSelection
* MFSA 2010-18/CVE-2010-0176 (bmo#538308) Dangling pointer vulnerability in nsTreeContentView
* MFSA 2010-22/CVE-2009-3555 (bmo#545755) Update NSS to support TLS renegotiation indication
* MFSA 2010-24/CVE-2010-0182 (bmo#490790) XMLDocument::load() doesn\'t check nsIContentPolicy
* Sun Feb 28 2010 wrAATTrosenauer.org- update to 3.0.3
* Fix for missing folders or empty folder pane after updating to Thunderbird 3.0.2
* Fri Feb 26 2010 wrAATTrosenauer.org- security update to 3.0.2 (bnc#576969)
* MFSA 2010-01/CVE-2010-0159 Crashes with evidence of memory corruption
* MFSA 2010-03/CVE-2009-1571 Use-after-free crash in HTML parser
* various stability improvements- update enigmail to 1.0.1
* Czech, Dutch, Polish and Portuguese (Brazilian) languages were added to the release.
* there are several fixes related using OpenPGP Smartcards- use system hunspell again (bnc#582276)
* Mon Jan 11 2010 wrAATTrosenauer.org- update to 3.0.1
* fixed UI issues related to some combinations of installed addons (bmo#398702)- fixed session restore (bnc#528406, bmo#508986)- removed obsolete lightning stuff from spec file- removed obsolete orbit-devel build requirement
* Mon Dec 07 2009 wrAATTrosenauer.org- update to 3.0 (bnc#559819)- update enigmail to final version 1.0.0- use --disable-updater and removed obsolete UI patch and pref changes- use internal cairo up to 11.1 (Gecko now requires at least 1.8.8)- added mozilla-clipboard.patch fixing a common crash (bmo#495392)- removed upstreamed patch thunderbird-cs-smtpauth.patch
* Wed Oct 07 2009 wrAATTrosenauer.org- fixed startup-notification (bnc#518603) (mozilla-startup-notification.patch)
* Tue Sep 29 2009 wrAATTrosenauer.org- fixed CS locale to allow SMTP AUTH sending of mails (bnc#542809)
* Tue Sep 15 2009 wrAATTrosenauer.org- update to 3.0b4
* removed upstreamed patches
* based on Gecko 1.9.1.3 (inheriting security fixes)
* new global search
* Tue Aug 25 2009 wrAATTrosenauer.org- reversioned enigmail to 0.96.99 (as it\'s actually 0.97a and 0.96 has been released already)- fixed RPM group for the translation subpackages
* Fri Aug 21 2009 wrAATTrosenauer.org- remove obsolete code for protocol handlers (bmo#389732) (mozilla-protocol_handler.patch)- new enigmail snapshot (20090813)- require pinentry-gui for 11.2 and up (bnc#441084)
* Sun Aug 09 2009 wrAATTrosenauer.org- Gtk filechooser allows alternative button order (as used in KDE) (bnc#527418)- translations{,-common} package doesn\'t provide en-US- split translations into -common and -other packages (bnc#529180)
* Tue Jul 28 2009 wrAATTrosenauer.org- fixed wrong %exclude by removing unwanted files at %install stage
* Fri Jul 17 2009 wrAATTrosenauer.org- major update to 3.0b3- update enigmail to 0.96pre- created enigmail subpackage and install to system wide location for Thunderbird and SeaMonkey- define MOZ_APP_LAUNCHER for session management (bmo#453689) (mozilla-app-launcher.patch and mozilla.sh.in)- move opensuse.js prefs to all-opensuse.js prefs to be able to override prefs in all-thunderbird.js- move intl.locale.matchOS to all-opensuse.js- added mozilla-jemalloc_deepbind.patch to fix various possible crashes (bnc#503151, bmo#493541)
* Fri Jun 19 2009 cooloAATTnovell.com- disable as-needed for this package as it fails to build with it
* Tue Jun 02 2009 wrAATTrosenauer.org- Fixed build issue for gcc 4.4 (mozilla-gcc44.patch)
* Wed Mar 18 2009 wrAATTrosenauer.org- security update to version 2.0.0.21 (bnc#484321)
* MFSA 2009-07/CVE-2009-0771, CVE-2009-0772, CVE-2009-0773 CVE-2009-0774: Crashes with evidence of memory corruption (rv:1.9.0.7)
* MFSA 2009-09/CVE-2009-0776: XML data theft via RDFXMLDataSource and cross-domain redirect
* MFSA 2009-10/CVE-2009-0040: Upgrade PNG library to fix memory safety hazards
* Fri Jan 02 2009 hfiguiereAATTsuse.de- Review and approve changes.
* Wed Dec 31 2008 wrAATTrosenauer.org- security update to version 2.0.0.19 (bnc#455804) + MFSA 2008-68/CVE-2008-5511 and CVE-2008-5512: XSS and JavaScript privilege escalation + MFSA 2008-67/CVE-2008-5510: Escaped null characters ignored by CSS parser + MFSA 2008-66/CVE-2008-5508: Errors parsing URLs with leading whitespace and control characters + MFSA 2008-65/CVE-2008-5507: Cross-domain data theft via script redirect error message + MFSA 2008-64/CVE-2008-5506: XMLHttpRequest 302 response disclosure + MFSA 2008-61/CVE-2008-5503: Information stealing via loadBindingDocument + MFSA 2008-60/CVE-2008-5500, CVE-2008-5501 and CVE-2008-5502: Crashes with evidence of memory corruption (rv:1.9.0.5/1.8.1.19)- improved mozilla-shared-nss-db.patch and mozilla-system-hunspell.patch to be able to apply them unconditionally
* Fri Nov 21 2008 wrAATTrosenauer.org- Add mozilla-shared-nss-db.patch which allows migrating to and sharing with other applications using NSS (same functionality as in xulrunner/firefox) (can be disabled completely exporting MOZ_TB_NO_NSSHELPER=1)
* Fri Nov 21 2008 mawAATTsuse.de- Review and approve changes.
* Thu Nov 13 2008 wrAATTrosenauer.org- security update to version 2.0.0.18 (bnc#439841)
* MFSA 2008-48 / CVE-2008-5012 Image stealing via canvas and HTTP redirect
* MFSA 2008-50 / CVE-2008-5014 (bmo#436741) Crash and remote code execution via __proto__ tampering
* MFSA 2008-52 / CVE-2008-5016 / CVE-2008-5017 / CVE-2008-5018 Crashes with evidence of memory corruption (rv:1.9.0.4/1.8.1.18)
* MFSA 2008-55 / CVE-2008-5021 (bmo#456896) Crash and remote code execution in nsFrameManager
* MFSA 2008-56 / CVE-2008-5022 (bmo#460002) nsXMLHttpRequest::NotifyEventListeners() same-origin violation
* MFSA 2008-58 / CVE-2008-5024 (bmo#453915) Parsing error in E4X default namespace
* Wed Oct 15 2008 mawAATTsuse.de- Review and approve changes.
* Wed Oct 08 2008 wrAATTrosenauer.org- use system hunspell from 11.0 on (bnc#385739)- remove more executable bits from non-executable files
* Tue Sep 23 2008 wrAATTrosenauer.org- security update to version 2.0.0.17 (bnc#429179)
* MFSA 2008-37 / CVE-2008-0016 UTF-8 URL stack buffer overflow
* MFSA 2008-38 / CVE-2008-3835 nsXMLDocument::OnChannelRedirect() same-origin violation
* MFSA 2008-41 / CVE-2008-4058 / CVE-2008-4059 / CVE-2008-4060 Privilege escalation via XPCnativeWrapper pollution
* MFSA 2008-42 / CVE-2008-4061 / CVE-2008-4062 / CVE-2008-4063 CVE-2008-4064 Crashes with evidence of memory corruption
* MFSA 2008-43 / CVE-2008-4065 / CVE-2008-4066 BOM characters, low surrogates stripped from JavaScript before execution
* MFSA 2008-44 / CVE-2008-4067 / CVE-2008-4068 resource: traversal vulnerabilities
* MFSA 2008-46 / CVE-2008-4070 Heap overflow when canceling newsgroup message
* Mon Sep 15 2008 wrAATTrosenauer.org- fixed undefined operation in nsMailboxService.cpp (abuild.patch)- cleanup spec a bit while merging from OBS/mozilla
* forwarding old fixes to cups-paper.patch, mozilla.sh.in and add-plugins.sh (were fixed long ago in the OBS repo)
* Thu Sep 11 2008 mauroAATTsuse.de- Update to 2.0.0.16 (fixed bnc#417869), fixes: + MFSA 2008-34 Remote code execution by overflowing CSS reference counter + MFSA 2008-33 Crash and remote code execution in block reflow + MFSA 2008-31 Peer-trusted certs can use alt names to spoof + MFSA 2008-29 Faulty .properties file results in uninitialized memory being used + MFSA 2008-26 Buffer length checks in MIME processing + MFSA 2008-25 Arbitrary code execution in mozIJSSubScriptLoader.loadSubScript() + MFSA 2008-24 Chrome script loading from fastload file + MFSA 2008-21 Crashes with evidence of memory corruption (rv:1.8.1.15)
* Wed Jul 23 2008 schwabAATTsuse.de- Remove unused includes.
* Tue Jun 24 2008 mawAATTsuse.de- Security update to version 2.0.0.14 (bnc#390992): + MFSA 2008-15 / CVE-2008-1236 and CVE-2008-1237: Crashes with evidence of memory corruption (rv:1.8.1.13) + MFSA 2008-14 / CVE-2008-1233, CVE-2008-1234, and CVE-2008-1235: JavaScript privilege escalation and arbitrary code execution- Drop the following patches: thunderbird-2.0.0.14-backports.patch, mozilla-missing-decl.patch, and unused-includes.patch- Respin mozilla-gcc4.3-fixes.patch.
* Fri May 30 2008 mawAATTsuse.de- Add thunderbird-2.0.0.14-backports.patch (bnc390992).
* Fri May 16 2008 schwabAATTsuse.de- Remove unused includes.
* Mon Mar 24 2008 mawAATTsuse.de- Add mozilla-missing-decl.patch, which is necessary when building against new versions of mozilla-nss (bmo#399589).
* Fri Mar 07 2008 mawAATTsuse.de- Security update to version 2.0.0.12 (bnc#354469)
* MFSA 2008-12 Buffer overflow in external MIME bodies- Replace mozilla-maxpathlen.patch with mozilla-path_len.patch, for consistency\'s sake.
* Thu Jan 17 2008 mawAATTsuse.de- Add mozilla-maxpathlen.patch (#354150 and bmo #412610).
* Tue Jan 15 2008 mawAATTsuse.de- Merge changes from the build service (thanks, Wolfgang)- Update to version 2.0.9.9 (MFSA 2007-29)- Update enigmail to version 0.95.6- Add a -devel subpackage- Various fixes to enable building with gcc 4.3.
* Tue Nov 13 2007 mawAATTsuse.de- Add thunderbird-gcc4.3-fixes.patch- Add visibility.patch.
* Thu Sep 13 2007 cthielAATTsuse.de- recommend gpg instead of requireing a fixed path
* Wed Sep 12 2007 mawAATTsuse.de- Added gpg/pinentry requirements (#309160).
* Mon Sep 03 2007 mawAATTsuse.de- Don\'t run %fdupes on directories where multiple partitions are liable to be mounted.
* Mon Sep 03 2007 mawAATTsuse.de- Merge some changes from the build service (thanks, Wolfgang): + Provide locale info (#302288) + Update releasedate- Uncomment %clean.
* Tue Aug 21 2007 mawAATTsuse.de- Use %fdupes.
* Tue Aug 21 2007 mawAATTsuse.de- Merge updates from the build service:- Update to security release 2.0.0.6:
* MFSA 2007-26 Privilege escalation through chrome-loaded about:blank windows
* MFSA 2007-27 Unescaped URIs passed to external programs- Update enigmail to version 0.95.3.
* Wed Aug 15 2007 mawAATTsuse.de- On x86_64, s390, and s390x, deactivate the hidden visibility support, thereby fixing the build.
* Wed Jul 25 2007 mawAATTsuse.de- Security update to version 2.0.0.5 (#288115)- This new release has fixes for: MFSA 2007-18 CVE-2007-3734 - Browser flaws CVE-2007-3735 - Javascript flaws MFSA 2007-19 CVE-2007-3736 MFSA 2007-20 CVE-2007-3089 MFSA 2007-21 CVE-2007-3737 MFSA 2007-22 CVE-2007-3285 MFSA 2007-23 CVE-2007-3670 MFSA 2007-24 CVE-2007-3656 MFSA 2007-25 CVE-2007-3738- Update to enigmail 0.95.2.
* Thu Jun 21 2007 adrianAATTsuse.de- fix changelog entry order
* Fri Jun 15 2007 mawAATTsuse.de- Merge update to 2.0.0.4 from the build service (thanks, Wolfgang)- Remove some commented out stuff.
* Wed Jun 13 2007 wrAATTrosenauer.org- update to maintenance release 2.0.0.4- update enigmail to 0.95.1- adopted patches:
* fixed cups-paper.patch (copied from FF)
* removed obsolete visibility.patch
* Tue Jun 12 2007 mawAATTsuse.de- Merge chagnges from the build service (thanks, Wolfgang)- Now use l10n-%{version}.tar.bz2 instead of l10n.tar.bz2 as before.
* Tue Jun 05 2007 mawAATTsuse.de- Security update to version 1.5.0.12 (#271197).
* Tue Jun 05 2007 sbrabecAATTsuse.cz- Removed invalid desktop category \"Application\" (#254654).
* Thu Apr 19 2007 wrAATTrosenauer.org- update to final version 2.0.0.0 (http://www.mozilla.com/en-US/thunderbird/2.0.0.0/releasenotes/)- update enigmail to 0.95.0
* Wed Apr 18 2007 mfabianAATTsuse.de- add Japanese to the languages which get PANGO enabled in the start script to support the Japanese combining characters U+3099 U+309A (see bugzilla #262718 comment #29).
* Thu Apr 12 2007 wrAATTrosenauer.org- update to 2.0.0.0rc1- enabled translations package
* Fri Mar 30 2007 wrAATTrosenauer.org- update to snapshot 2.0.0.0pre-20070329- security update enigmail 0.94.3 (Bugtraq #22758)
* Fri Mar 30 2007 meissnerAATTsuse.de- require unzip
* Tue Mar 13 2007 wrAATTrosenauer.org- update to snapshot 2.0pre-20060312- removed implicit NSS version dependency
* Thu Mar 08 2007 meissnerAATTsuse.de- Upgraded to 1.5.0.10 security release.- Upgraded to enigmail 0.94.2.
* Thu Feb 15 2007 wrAATTrosenauer.org- update to snapshot 2.0beta2-20060214- fixed build on SLES9
* Mon Feb 05 2007 wrAATTrosenauer.org- fixed check in add-plugins.sh (#242237)
* Tue Jan 30 2007 mawAATTsuse.de- Add thunderbird-1.5.0.8-uninitalized-vars-232305.patch (#232305).
* Thu Jan 18 2007 mawAATTsuse.de- Add undefined-ops.patch, silencing some warnings.
* Thu Nov 09 2006 jhargadonAATTsuse.de- security update to version 1.5.0.8
* Tue Sep 12 2006 starkAATTsuse.de- security update to version 1.5.0.7
* Mon Aug 14 2006 starkAATTsuse.de- update enigmail to 0.94.1
* Added support for signing attachments with inline-PGP- update mailredirect to 0.7.4- added backend patch to allow replies to list with ReplyToListThunderbirdExtension (#199125, bmo #45715)- added mailnews.clobber_list_reply pref which switches \"Reply All\" to \"Reply List\" functionality if set
* Thu Jul 27 2006 starkAATTsuse.de- security update to version 1.5.0.5 (#195043)- fixed overwrite confirmation for GTK filesaver (#179531)
* Wed Jun 07 2006 starkAATTsuse.de- fixed up BuildRequires
* Fri Jun 02 2006 mlsAATTsuse.de- converted neededforbuild to BuildRequires
* Fri Jun 02 2006 starkAATTsuse.de- update to security/stability release 1.5.0.4 (#179011) (http://www.mozilla.org/projects/security/known-vulnerabilities.html#Thunderbird)
* Mon May 15 2006 starkAATTsuse.de- update to version 1.5.0.2- update mailredirect to 0.7.3- save printer settings properly (#174082, bmo #324072)- improved postscript output (bmo #334485)- changed defaults for printer properties (#6534)- get available paper sizes from CUPS (#65482)
* Sat Mar 18 2006 starkAATTsuse.de- translations package is suggested now by main package- yet another set of upstream fixes (#148876)
* Sun Mar 12 2006 starkAATTsuse.de- added Khmer (km-
*) to pango locales (#157397)- yet another set of upstream fixes (#148876)
* Sat Mar 04 2006 starkAATTsuse.de- latest security fixes from upstream (#148876)- show multiple Reply-To addresses (bmo #106189)
* Fri Feb 24 2006 starkAATTsuse.de- added GTK category to desktop-file- dumpstack.patch is in upstream patches now- get some more patches (#148876)
* Tue Feb 14 2006 starkAATTsuse.de- applied set of security patches (#148876)
* Tue Feb 07 2006 starkAATTsuse.de- fixed disabling of Pango (#148788)
* Thu Feb 02 2006 starkAATTsuse.de- defined gssapi lib explicitely (#147670)
* Wed Feb 01 2006 starkAATTsuse.de- removed additional CA certs from builtin NSS- make it possible to choose $HOME as download directory (#144894, bmo #300856)- cleaned up BuildRequires
* Wed Jan 25 2006 mlsAATTsuse.de- converted neededforbuild to BuildRequires
* Mon Jan 23 2006 starkAATTsuse.de- disable Pango if MOZ_ENABLE_PANGO is not set and no typical language which needs Pango is used (#143428)- preload libaoss for plugin sound (#117079)- fix to ignore X composite extension (#135373)
* Wed Jan 18 2006 starkAATTsuse.de- added default (font) settings- tweak useragent- fixed DumpStackToFile() for glibc 2.4
* Thu Jan 12 2006 starkAATTsuse.de- update to 1.5 (20060111)- added sytem extensions patch- added XUL filechooser patch (MOZ_XUL_PICKER)- update enigmail to 0.94.0- use -fstack-protector where available- use system NSS since CODE10
* Wed Dec 28 2005 starkAATTsuse.de- update to 1.5rc2 (20051227)
* Sun Dec 11 2005 starkAATTsuse.de- update to 1.5 (20051211)- update enigmail to 0.93.2
* Tue Nov 29 2005 starkAATTsuse.de- update enigmail to 0.93.1- added patch for GTK2 handling (#134831)
* Fri Nov 25 2005 starkAATTsuse.de- update to 1.5 (20051124)
* Fri Oct 28 2005 starkAATTsuse.de- update to latest 1.5 snapshot (20051027)- added patch to be able to reply to and forward rfc822 messages (bmo #204350)- again don\'t provide and require NSS stuff- removed disable-gconf patch (no registration needed in build process anymore)- added mailredirect extension- removed update functionality
* Mon Oct 10 2005 starkAATTsuse.de- update to 1.5b2 (20051008)- preinstall Enigmail (version 0.93.0) as global extension- add all supported locales and use if installed
* Tue Oct 04 2005 starkAATTsuse.de- update to 1.5b2 (20051003) (RPM version 1.4.1)- prerequire NSPR- prepared translations subpackage- fixed filelist- fixed build with new gcc
* Wed Sep 21 2005 starkAATTsuse.de- update to 1.5b1 (20050920)- added spellchecker integration with myspell (add-plugins.sh)- removed aviary-install-global patch (not needed anymore, with new EM)- enabled pango font rendering (through cairo hopefully)- fixed GNOME gconf registration (#117851)
* Sat Aug 20 2005 starkAATTsuse.de- workaround for linking with pangoxft and pangox (broken by gtk 2.8 update) (#105764)
* Thu Aug 18 2005 starkAATTsuse.de- fixed Gdk-WARNING at startup (gtk.patch)- fixed regression in profile locking change (bmo #303633)- fixed crash with gtk 2.7 (bmo #300226, bnc #104586)
* Wed Aug 03 2005 starkAATTsuse.de- fixed profile locking (bmo #151188)
* Fri Jul 29 2005 starkAATTsuse.de- don\'t require and provide NSS libs (#98002)
* Fri Jul 22 2005 starkAATTsuse.de- fixed printing patch
* Tue Jul 19 2005 starkAATTsuse.de- added NSPR to PreReq- disable stripping in specfile
* Fri Jul 15 2005 starkAATTsuse.de- update to 1.0.6 which restores API compatibility- fixed width calculation in Postscript module (bmo #290292)
* Thu Jul 14 2005 starkAATTsuse.de- fixed filelist to include icon-file and startscript again
* Tue Jul 12 2005 starkAATTsuse.de- fixed remote usage behaviour in start script (bnc #41903)- update to 1.0.5 security release- fixed quoting patch- moved desktop file to a Gnome independent location- don\'t strip explicitely- use RPM_OPT_FLAGS for NSS component- fixed implicit declarations and uninitialized used variables
* Thu Apr 28 2005 starkAATTsuse.de- updated to current 1.0 branch version- use static NSPR from other location
* Sat Apr 23 2005 starkAATTsuse.de- activate usage of system NSPR for distributions after 9.3- add patch to be able to use systen NSPR at all- extended desktop file
* Fri Apr 22 2005 roAATTsuse.de- apply mozilla-gcc4.patch
* Wed Mar 23 2005 starkAATTsuse.de- update to 1.0.2- use system NSPR on SUSE releases after 9.3- made startscript PIS aware- set g-application-name correctly (bmo #281979)
* Mon Mar 07 2005 starkAATTsuse.de- don\'t use gconfd in registration phase (#66381)
* Fri Feb 25 2005 starkAATTsuse.de- update to version 1.0.1
* Tue Feb 22 2005 starkAATTsuse.de- added patch to create Postscript level 2 (instead of 3) (special thanks to Jungshik Shin)- disabled freetype explicitly to be able to use the above patch (freetype wasn\'t used anymore since some time anyway)
* Wed Feb 02 2005 starkAATTsuse.de- added a JS crasher fix (bmc #268535)
* Sat Jan 22 2005 starkAATTsuse.de- added some backported bugfixes
* Tue Dec 07 2004 starkAATTsuse.de- update to 1.0- fixed extra lines in replies (bmo #144998)- fixed build on s390/s390x
* Wed Nov 24 2004 starkAATTsuse.de- update to 20041123 snapshot- inherit downloadFolder patch from Firefox
* Fri Nov 12 2004 starkAATTsuse.de- fixed chrome filelist
* Thu Nov 04 2004 starkAATTsuse.de- update to 0.9- sync patch-set with firefox base- fixed neededforbuild to get GNOME functionalities
* Fri Sep 17 2004 starkAATTsuse.de- added some missing fixes for official release- synced add-plugins.sh
* Sat Sep 11 2004 starkAATTsuse.de- update to official 0.8 version (20040911)- fixed enigmail config
* Mon Sep 06 2004 starkAATTsuse.de- fixed profile directory
* Fri Sep 03 2004 starkAATTsuse.de- update to thunderbird 0.8 (20040903)- update enigmail to 0.86.0 and ipc to 1.0.8 (deactivated)
* Tue Aug 24 2004 starkAATTsuse.de- update to thunderbird 0.7.3- update enigmail to 0.85.0 and ipc to 1.0.7
* Tue Jun 29 2004 starkAATTsuse.de- update to thunderbird 0.7.1- update enigmail to 0.84.1
* Wed May 12 2004 roAATTsuse.de- add some missing return values
* Mon May 03 2004 starkAATTsuse.de- update to Thunderbird 0.6 (based on 1.7rc1)- use official branding for release builds- added desktop-icon (#39139)
* Fri Apr 02 2004 starkAATTsuse.de- removing relocation of TEMP directory (#34391)
* Fri Mar 26 2004 uliAATTsuse.de- fixed hang during build on s390
* (bug #35440)
* Sun Mar 07 2004 roAATTsuse.de- match function declaration in enigmail mimedummy.cpp
* Fri Mar 05 2004 starkAATTsuse.de- more fixes for #35179- added firefox as default handler for its protocols- update enigmail to 0.83.4
* Wed Mar 03 2004 starkAATTsuse.de- removed unused patches for GTK2 build
* Sun Feb 29 2004 starkAATTsuse.de- improved start-script to interact with firefox and mozilla (#35179)
* Fri Feb 27 2004 starkAATTsuse.de- update to 0.5- spec-file cleanup
* Wed Oct 15 2003 starkAATTsuse.de- update to 0.3 (sync with mozilla 1.5)
* Tue Jul 15 2003 starkAATTsuse.de- initial package (snapshot 20030714)
  
ICM