Hello community,
here is the log from the commit of package MozillaThunderbird for
openSUSE:Factory checked in at 2018-05-20 17:19:25
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Comparing /work/SRC/openSUSE:Factory/MozillaThunderbird (Old)
and /work/SRC/openSUSE:Factory/.MozillaThunderbird.new (New)
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "MozillaThunderbird"
Sun May 20 17:19:25 2018 rev:192 rq:610619 version:52.8
Changes:
--------
--- /work/SRC/openSUSE:Factory/MozillaThunderbird/MozillaThunderbird.changes
2018-04-02 22:48:02.620426809 +0200
+++
/work/SRC/openSUSE:Factory/.MozillaThunderbird.new/MozillaThunderbird.changes
2018-05-20 17:19:36.388290356 +0200
@@ -1,0 +2,37 @@
+Sat May 19 06:16:58 UTC 2018 - [email protected]
+
+- update to Thunderbird 52.8 (bsc#1092548)
+ MFSA 2018-13
+ * CVE-2018-5183 (bmo#1454692)
+ Backport critical security fixes in Skia
+ * CVE-2018-5184 (bmo#1411592, bsc#1093152)
+ Full plaintext recovery in S/MIME via chosen-ciphertext attack
+ * CVE-2018-5154 (bmo#1443092)
+ Use-after-free with SVG animations and clip paths
+ * CVE-2018-5155 (bmo#1448774)
+ Use-after-free with SVG animations and text paths
+ * CVE-2018-5159 (bmo#1441941)
+ Integer overflow and out-of-bounds write in Skia
+ * CVE-2018-5161 (bmo#1411720)
+ Hang via malformed headers
+ * CVE-2018-5162 (bmo#1457721, bsc#1093152)
+ Encrypted mail leaks plaintext through src attribute
+ * CVE-2018-5170 (bmo#1411732)
+ Filename spoofing for external attachments
+ * CVE-2018-5168 (bmo#1449548)
+ Lightweight themes can be installed without user interaction
+ * CVE-2018-5174 (bmo#1447080) (Windows only)
+ Windows Defender SmartScreen UI runs with less secure behavior
+ for downloaded files in Windows 10 April 2018 Update
+ * CVE-2018-5178 (bmo#1443891)
+ Buffer overflow during UTF-8 to Unicode string conversion
+ through legacy extension
+ * CVE-2018-5185 (bmo#1450345)
+ Leaking plaintext through HTML forms
+ * CVE-2018-5150 (bmo#1388020,bmo#1433609,bmo#1409440,bmo#1448705,
+ bmo#1451376,bmo#1452202,bmo#1444668,bmo#1393367,bmo#1411415,
+ bmo#1426129)
+ Memory safety bugs fixed in Firefox 60, Firefox ESR 52.8 and
+ Thunderbird 52.8
+
+-------------------------------------------------------------------
Old:
----
l10n-52.7.tar.xz
thunderbird-52.7-source.tar.xz
New:
----
l10n-52.8.tar.xz
thunderbird-52.8-source.tar.xz
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Other differences:
------------------
++++++ MozillaThunderbird.spec ++++++
--- /var/tmp/diff_new_pack.1WFaSi/_old 2018-05-20 17:20:23.546560822 +0200
+++ /var/tmp/diff_new_pack.1WFaSi/_new 2018-05-20 17:20:23.550560676 +0200
@@ -17,9 +17,9 @@
#
-%define mainversion 52.7
+%define mainversion 52.8
%define update_channel release
-%define releasedate 201803230000
+%define releasedate 201805170000
%bcond_without mozilla_tb_kde4
%bcond_with mozilla_tb_valgrind
++++++ compare-locales.tar.xz ++++++
++++++ create-tar.sh ++++++
--- /var/tmp/diff_new_pack.1WFaSi/_old 2018-05-20 17:20:23.678555981 +0200
+++ /var/tmp/diff_new_pack.1WFaSi/_new 2018-05-20 17:20:23.678555981 +0200
@@ -2,8 +2,8 @@
CHANNEL="esr52"
BRANCH="releases/comm-$CHANNEL"
-RELEASE_TAG="THUNDERBIRD_52_7_0_RELEASE"
-VERSION="52.7"
+RELEASE_TAG="THUNDERBIRD_52_8_0_RELEASE"
+VERSION="52.8"
echo "cloning $BRANCH..."
hg clone http://hg.mozilla.org/$BRANCH thunderbird
++++++ l10n-52.7.tar.xz -> l10n-52.8.tar.xz ++++++
/work/SRC/openSUSE:Factory/MozillaThunderbird/l10n-52.7.tar.xz
/work/SRC/openSUSE:Factory/.MozillaThunderbird.new/l10n-52.8.tar.xz differ:
char 26, line 1
++++++ thunderbird-52.7-source.tar.xz -> thunderbird-52.8-source.tar.xz ++++++
/work/SRC/openSUSE:Factory/MozillaThunderbird/thunderbird-52.7-source.tar.xz
/work/SRC/openSUSE:Factory/.MozillaThunderbird.new/thunderbird-52.8-source.tar.xz
differ: char 26, line 1
