- Wed Feb 1 2012 doktor5000 <doktor5000> 0:3.1.18-1.mga1
+ Revision: 203788
- new version 3.1.18
o fixes http://www.mozilla.org/security/announce/2011/mfsa2011-59.html
(.jar files not being treated as executables on MacOS [CVE-2011-3666]
fixed in 3.1.17)
o fixes http://www.mozilla.org/security/announce/2012/mfsa2012-01.html
(Miscellaneous memory safety hazards [(rv:10.0/ 1.9.2.26) [CVE-2012-0443,
CVE-2012-0442])
o fixes http://www.mozilla.org/security/announce/2012/mfsa2012-02.html
(Overly permissive IPv6 literal syntax [CVE-2011-3670])
o fixes http://www.mozilla.org/security/announce/2012/mfsa2012-04.html
(Child nodes from nsDOMAttribute still accessible after removal of nodes,
[CVE-2011-3659])
o fixes http://www.mozilla.org/security/announce/2012/mfsa2012-07.html
(Potential Memory Corruption When Decoding Ogg Vorbis files [CVE-2012-0444])
o fixes http://www.mozilla.org/security/announce/2012/mfsa2012-08.html
(Crash with malformed embedded XSLT stylesheets [CVE-2012-0449])
- new version 3.1.16
o fixes http://www.mozilla.org/security/announce/2011/mfsa2011-46.html
(loadSubScript unwraps XPCNativeWrapper scope parameter, a malicious page
could potentially exploit a Thunderbird user who had installed an add-on
that used loadSubscript in vulnerable ways)
o fixes http://www.mozilla.org/security/announce/2011/mfsa2011-47.html
(Potential cross-site-scripting against sites using Shift-JIS encoding,
CVE-2011-3648)
o fixes http://www.mozilla.org/security/announce/2011/mfsa2011-49.html
(memory corruption while profiling using Firebug, CVE-2011-3650)
- fixed CVE-2011-3640, untrusted search path vulnerability which might allow
local users to gain privileges via a Trojan horse pkcs11.txt file in a
top-level directory (fix-CVE-2011-3640.patch, from upstream)
- new version 3.1.15
o fixes http://www.mozilla.org/security/announce/2011/mfsa2011-34.html
(Protection against fraudulent DigiNotar certificates,
fixed in thunderbird 3.1.13)
o fixes http://www.mozilla.org/security/announce/2011/mfsa2011-35.html
(Additional protection against fraudulent DigiNotar certificates,
fixed in thunderbird 3.1.14)
+ fwang
- new version 3.1.12 - Fri Apr 29 2011 ahmad <ahmad> 0:3.1.10-1.mga1
+ Revision: 93463
- Update to 3.1.10
- Rediff run-mozilla patch
- Drop an old patch from SOURCES dir - Fri Mar 25 2011 ahmad <ahmad> 0:3.1.9-11.mga1
+ Revision: 77483
- revert previous commit, gio support doesn't work as it should resulting in http/
https links handler having to be configured manually for all new and old tb profiles.
gnomevfs support at least reads the value from gconf settings (which uses www-
browser by default) - Mon Mar 21 2011 ahmad <ahmad> 0:3.1.9-10.mga1
+ Revision: 75310
- disable gnomvfs support
- enable gio support
- disable updater as we don't support updating the application this way - Wed Mar 16 2011 ahmad <ahmad> 0:3.1.9-8.mga1
+ Revision: 72283
- conflict with mozilla-thunderbird-lightning <= 1.3.9 - Fri Mar 11 2011 ahmad <ahmad> 0:3.1.9-7.mga1
+ Revision: 68321
- drop old/uneeded scriptlets that update the destkop-database and hicolor
icon-cache; they were replaced by rpm filetriggers ages ago - Fri Mar 11 2011 ahmad <ahmad> 0:3.1.9-6.mga1
+ Revision: 68246
- don't obsolete -lightning here and in the mozilla-thunderbird-lightning src.rpm
urpmi can't smoothly handle a package obsoleted by two packages - Fri Mar 11 2011 ahmad <ahmad> 0:3.1.9-5.mga1
+ Revision: 68165
- obsolete the -lightning sub-package that was built from thunderbird src.rpm - Fri Mar 11 2011 ahmad <ahmad> 0:3.1.9-4.mga1
+ Revision: 68147
- define build_bundled_lightning, and disable it:
o the thunderbird tarball doesn't have the langpacks for lightning
o lightning has a separate release schedule (Fedora) - Wed Mar 9 2011 colin <colin> 0:3.1.9-2.mga1
+ Revision: 66827
- Extract the correct plugin id from lightning extension - Sat Mar 5 2011 ahmad <ahmad> 0:3.1.9-1.mga1
+ Revision: 64596
- update to 3.1.9
+ dmorgan
- obsoletes old package - Tue Mar 1 2011 ahmad <ahmad> 0:3.1.8-1.mga1
+ Revision: 62332
- update to 3.1.8 - Mon Feb 28 2011 dmorgan <dmorgan> 0:3.1.7-3.mga1
+ Revision: 61407
- Remove remaining mdv macro
- Remove remaining mdv macro
- Fix %els
- Fix %else
- Adapt for mageia
- Remove mdv macros
Adapt for mageia
+ ennael
- imported package mozilla-thunderbird