The Stand-Alone Mozilla Mail Component
Mozilla Thunderbird is a redesign of the Mozilla Mail component. It is
written using the XUL user interface language and designed to be
cross-platform. It is a stand-alone application instead of part of the
Mozilla application suite.
- Developed at mozilla:Factory
- Sources inherited from project openSUSE:Factory
-
6
derived packages
- Download package
-
Checkout Package
osc -A https://api.opensuse.org checkout openSUSE:Factory:PowerPC/MozillaThunderbird && cd $_
- Create Badge
Refresh
Refresh
Source Files
Revision 304 (latest revision is 335)
Dominique Leuenberger (dimstar_suse)
accepted
request 1066604
from
Wolfgang Rosenauer (wrosenauer)
(revision 304)
- Mozilla Thunderbird 102.8.0 * https://www.thunderbird.net/en-US/thunderbird/102.8.0/releasenotes MFSA 2023-07 (bsc#1208144) * CVE-2023-0616 (bmo#1806507) User Interface lockup with messages combining S/MIME and OpenPGP * CVE-2023-25728 (bmo#1790345) Content security policy leak in violation reports using iframes * CVE-2023-25730 (bmo#1794622) Screen hijack via browser fullscreen mode * CVE-2023-0767 (bmo#1804640) Arbitrary memory write via PKCS 12 in NSS * CVE-2023-25735 (bmo#1810711) Potential use-after-free from compartment mismatch in SpiderMonkey * CVE-2023-25737 (bmo#1811464) Invalid downcast in SVGUtils::SetupStrokeGeometry * CVE-2023-25738 (bmo#1811852) Printing on Windows could potentially crash Thunderbird with some device drivers * CVE-2023-25739 (bmo#1811939) Use-after-free in mozilla::dom::ScriptLoadContext::~ScriptLoadContext * CVE-2023-25729 (bmo#1792138) Extensions could have opened external schemes without user knowledge * CVE-2023-25732 (bmo#1804564) Out of bounds memory write from EncodeInputStream * CVE-2023-25734 (bmo#1784451, bmo#1809923, bmo#1810143, bmo#1812338) Opening local .url files could cause unexpected network loads * CVE-2023-25742 (bmo#1813424) Web Crypto ImportKey crashes tab * CVE-2023-25746 (bmo#1544127, bmo#1762368, bmo#1789449, bmo#1803628, bmo#1810536)
Comments 6
just a tip. thunderbird version is now up to 78.1.1. can you please update this app?
we decided to not update as long as OpenPGP support is not available. This is supposed to be with 78.2
oh, ok. that's understandable.
i am having major probs with contact or mail. can't even download my emails. can't send emails either. i have sent a debug thingy to plasma or kde developers
Is there a reason why the new 115 Nova update is not yet available?
yes, the reason is because it's WIP
Okay thanks, sorry I did not want to be rude. I just thought it might be delayed on purpose, because it is such a big change.