Thunderbird 115.3.1 got released to all supported series.
** Changed in: thunderbird (Ubuntu)
Status: Confirmed => Fix Released
--
You received this bug notification because you are a member of Desktop
Packages, which is subscribed to thunderbird in Ubuntu.
> Also issues like having to be able to update nodejs in a stable Ubuntu
serie to build a newer thunderbird should make us consider phasing out
the deb in favor of using a snap as we did for firefox...
Funny, I was just about to say this :)
People on Reddit will be mad but from both a security
The real issue is that our previous thunderbird maintainer left and we
didn't get a new member to replace him and the other team members have
more than enough to do already. I'm doing my best to get the updates out
but I'm not that familiar with the project and I'm also busy, if anyone
wants to
Thunderbird 115.0 came out 11 weeks ago, first confirmed working Test
build 6 weeks ago but after that the focus seems to have shifted back
from bringing TB 115 towards TB 102 maintenance and fighting evil button
colors.
Now, when Mozillas transition phase is completely over, the first real
show
@Rico: I left CVE-2023-5174 and CVE-2023-5168 out on purpose because
according to Mozilla these two vulnerabilities only affect Windows
users.
--
You received this bug notification because you are a member of Desktop
Packages, which is subscribed to thunderbird in Ubuntu.
The 115 update is being worked on, unfortunately it requires a newer
nodejs than the version currently available in 22.04 to build (12.22.12
vs 12.22.9). We will need to figure out if we can revert that
requirement somehow or if updating nodejs as a stable update is
doable...
--
You received
** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2023-5174
** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2023-5168
--
You received this bug notification because you are a member of Desktop
Packages, which is subscribed to thunderbird in Ubuntu.
Now we have reached the point, from which security vulnerabilities rated as
"high" will stay unfixed in Thunderbird 102!
https://www.mozilla.org/en-US/security/advisories/mfsa2023-43/
The CVEs CVE-2023-5169, CVE-2023-5171 and CVE-2023-5176 got fixed in
Thunderbird 115.3 but stay open in TB 102.
Thunderbird 102.15.1 and 115.2.2 are out and fix a "critical" issue
(CVE-2023-4863)
See: https://www.mozilla.org/en-US/security/advisories/mfsa2023-40/
Please push the updates here and to thunderbird-next. Thanks! :)
Keep in mind, that this might be the final security fix coming to Thunderbird
** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2023-4863
--
You received this bug notification because you are a member of Desktop
Packages, which is subscribed to thunderbird in Ubuntu.
https://bugs.launchpad.net/bugs/2029913
Title:
[SRU request] Update Thunderbird to 115.x (as
> while at the same time security vulnerabilities remain unpatched for
months
we just updated to 102.15.0 so there is currently no unpatched security
vulnerabilities
--
You received this bug notification because you are a member of Desktop
Packages, which is subscribed to thunderbird in Ubuntu.
I've been watching the situation around the outdated Thunderbird package
for quite some years now, and I have to speak up as well.
It's ridiculous to have a discussion about "regressions" through
recolored buttons in an otherwise fully functional mail client version,
while at the same time
** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2023-4581
** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2023-4576
** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2023-4054
** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2023-4055
--
You
the 102.15.0 update are stagged in the security ppa so there is no need
to pause those updates, that's the last version on that serie
sorry but not matching the theme color is an annoying regression still
in 115, https://bugzilla.mozilla.org/show_bug.cgi?id=1849509
we will work on updating to
The 102.15.0 update got prepared and will be published next week.
Note that all mentioned CVEs are addressed in 102.15.0 as well.
--
You received this bug notification because you are a member of Desktop
Packages, which is subscribed to thunderbird in Ubuntu.
After the regression reported by Qwerty Chouskie turned out to be
expected behavior
(https://bugzilla.mozilla.org/show_bug.cgi?id=1849284#c8), I don't see
any reason to hold back TB 115.2 Update any longer.
@Sebastian: Please don't spend more time on 102.x, when 115.2 is ready
and the future of
I installed "thunderbird - 1:115.2.0+build2-0ubuntu0.22.04.1~mt1" from
thunderbird-next on my Jammy test VM. Played around but didn't find any
errors. Thunderbird 115 and all my Addons work as expected. Is there
anything special to test? If not, I'd ask you to push the 115.2 update!
:)
--
You
17 matches
Mail list logo