Hello community, here is the log from the commit of package MozillaThunderbird for openSUSE:Factory checked in at 2019-10-28 16:45:05 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/MozillaThunderbird (Old) and /work/SRC/openSUSE:Factory/.MozillaThunderbird.new.2990 (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "MozillaThunderbird" Mon Oct 28 16:45:05 2019 rev:219 rq:742150 version:68.2.0 Changes: -------- --- /work/SRC/openSUSE:Factory/MozillaThunderbird/MozillaThunderbird.changes 2019-10-17 13:05:26.124368128 +0200 +++ /work/SRC/openSUSE:Factory/.MozillaThunderbird.new.2990/MozillaThunderbird.changes 2019-10-28 16:45:18.540620176 +0100 @@ -1,0 +2,35 @@ +Tue Oct 22 06:43:32 UTC 2019 - Wolfgang Rosenauer <[email protected]> + +- Mozilla Thunderbird 68.2.0 + * Message Display WebExtension API + * Message Search WebExtension API + * Better visual feedback for unread messages when using the dark theme + * Fixed various issues when editing mailing list + * Fixed application windows not maintaining their size after restart + MFSA 2019-33 (bsc#1154738) + * CVE-2019-15903 (bmo#1584907) + Heap overflow in expat library in XML_GetCurrentLineNumber + * CVE-2019-11757 (bmo#1577107) + Use-after-free when creating index updates in IndexedDB + * CVE-2019-11758 (bmo#1536227) + Potentially exploitable crash due to 360 Total Security + * CVE-2019-11759 (bmo#1577953) + Stack buffer overflow in HKDF output + * CVE-2019-11760 (bmo#1577719) + Stack buffer overflow in WebRTC networking + * CVE-2019-11761 (bmo#1561502) + Unintended access to a privileged JSONView object + * CVE-2019-11762 (bmo#1582857) + document.domain-based origin isolation has same-origin-property violation + * CVE-2019-11763 (bmo#1584216) + Incorrect HTML parsing results in XSS bypass technique + * CVE-2019-11764 (bmo#1558522, bmo#1577061, bmo#1548044, bmo#1571223, + bmo#1573048, bmo#1578933, bmo#1575217, bmo#1583684, bmo#1586845, + bmo#1581950, bmo#1583463, bmo#1586599) + Memory safety bugs fixed in Firefox 70 and Firefox ESR 68.2 +- removed obsolete patches + mozilla-bmo1573381.patch + mozilla-bmo1512162.patch + mozilla-bmo1585099.patch + +------------------------------------------------------------------- Old: ---- l10n-68.1.2.tar.xz mozilla-bmo1512162.patch mozilla-bmo1573381.patch mozilla-bmo1585099.patch thunderbird-68.1.2.source.tar.xz thunderbird-68.1.2.source.tar.xz.asc New: ---- l10n-68.2.0.tar.xz thunderbird-68.2.0.source.tar.xz thunderbird-68.2.0.source.tar.xz.asc ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ MozillaThunderbird.spec ++++++ --- /var/tmp/diff_new_pack.gQjKh1/_old 2019-10-28 16:45:46.464655696 +0100 +++ /var/tmp/diff_new_pack.gQjKh1/_new 2019-10-28 16:45:46.512655757 +0100 @@ -26,11 +26,11 @@ # major 69 # mainver %major.99 %define major 68 -%define mainver %major.1.2 -%define orig_version 68.1.2 +%define mainver %major.2.0 +%define orig_version 68.2.0 %define orig_suffix %{nil} %define update_channel release -%define releasedate 20191008153335 +%define releasedate 20191021120853 %define source_prefix thunderbird-%{mainver} # always build with GCC as SUSE Security Team requires that @@ -165,16 +165,13 @@ Patch13: mozilla-ppc-altivec_static_inline.patch Patch14: mozilla-bmo1005535.patch Patch15: mozilla-bmo1568145.patch -Patch16: mozilla-bmo1573381.patch Patch17: mozilla-bmo1504834-part1.patch Patch18: mozilla-bmo1504834-part2.patch Patch19: mozilla-bmo1504834-part3.patch Patch20: mozilla-bmo1511604.patch Patch21: mozilla-bmo1554971.patch Patch22: mozilla-nestegg-big-endian.patch -Patch23: mozilla-bmo1512162.patch Patch24: mozilla-fix-top-level-asm.patch -Patch25: mozilla-bmo1585099.patch Patch100: thunderbird-broken-locales-build.patch %endif # only_print_mozconfig BuildRoot: %{_tmppath}/%{name}-%{version}-build @@ -263,16 +260,13 @@ %patch13 -p1 %patch14 -p1 %patch15 -p1 -%patch16 -p1 %patch17 -p1 %patch18 -p1 %patch19 -p1 %patch20 -p1 %patch21 -p1 %patch22 -p1 -%patch23 -p1 %patch24 -p1 -%patch25 -p1 # Thunderbird %patch100 -p1 %endif # only_print_mozconfig ++++++ compare-locales.tar.xz ++++++ ++++++ l10n-68.1.2.tar.xz -> l10n-68.2.0.tar.xz ++++++ /work/SRC/openSUSE:Factory/MozillaThunderbird/l10n-68.1.2.tar.xz /work/SRC/openSUSE:Factory/.MozillaThunderbird.new.2990/l10n-68.2.0.tar.xz differ: char 26, line 1 ++++++ tar_stamps ++++++ --- /var/tmp/diff_new_pack.gQjKh1/_old 2019-10-28 16:45:47.264656714 +0100 +++ /var/tmp/diff_new_pack.gQjKh1/_new 2019-10-28 16:45:47.264656714 +0100 @@ -1,8 +1,8 @@ PRODUCT="thunderbird" CHANNEL="esr68" -VERSION="68.1.2" +VERSION="68.2.0" VERSION_SUFFIX="" -RELEASE_TAG="2e34f364630f1f65724bb6e70616b95a041c47ea" +RELEASE_TAG="bee94d0a067adc165b3fc06bde071ca5556164cf" PREV_VERSION="" PREV_VERSION_SUFFIX="" #SKIP_LOCALES="" # Uncomment to skip l10n and compare-locales-generation ++++++ thunderbird-68.1.2.source.tar.xz -> thunderbird-68.2.0.source.tar.xz ++++++ /work/SRC/openSUSE:Factory/MozillaThunderbird/thunderbird-68.1.2.source.tar.xz /work/SRC/openSUSE:Factory/.MozillaThunderbird.new.2990/thunderbird-68.2.0.source.tar.xz differ: char 15, line 1
