commit MozillaThunderbird for openSUSE:Factory

28 May 2019

Hello community,

here is the log from the commit of package MozillaThunderbird for openSUSE:Factory checked in at 2019-05-28 09:40:54
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Comparing /work/SRC/openSUSE:Factory/MozillaThunderbird (Old)
 and      /work/SRC/openSUSE:Factory/.MozillaThunderbird.new.5148 (New)
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++

Package is "MozillaThunderbird"

Tue May 28 09:40:54 2019 rev:211 rq:705454 version:60.7.0

Changes:
--------

--- /work/SRC/openSUSE:Factory/MozillaThunderbird/MozillaThunderbird.changes	2019-04-25 17:52:11.765013389 +0200
+++ /work/SRC/openSUSE:Factory/.MozillaThunderbird.new.5148/MozillaThunderbird.changes	2019-05-28 09:40:56.233892393 +0200
@@ -1,0 +2,44 @@
+Fri May 24 08:53:57 UTC 2019 - Wolfgang Rosenauer <wr@rosenauer.org>
+
+- Mozilla Thunderbird 60.7.0
+  * Attachment pane of Write window no longer focussed when attaching
+    files using a keyboard shortcut
+  MFSA 2019-15 (boo#1135824)
+  * CVE-2019-9815 (bmo#1546544)
+    Disable hyperthreading on content JavaScript threads on macOS
+  * CVE-2019-9816 (bmo#1536768)
+    Type confusion with object groups and UnboxedObjects
+  * CVE-2019-9817 (bmo#1540221)
+    Stealing of cross-domain images using canvas
+  * CVE-2019-9818 (bmo#1542581) (Windows only)
+    Use-after-free in crash generation server
+  * CVE-2019-9819 (bmo#1532553)
+    Compartment mismatch with fetch API
+  * CVE-2019-9820 (bmo#1536405)
+    Use-after-free of ChromeEventHandler by DocShell
+  * CVE-2019-11691 (bmo#1542465)
+    Use-after-free in XMLHttpRequest
+  * CVE-2019-11692 (bmo#1544670)
+    Use-after-free removing listeners in the event listener manager
+  * CVE-2019-11693 (bmo#1532525)
+    Buffer overflow in WebGL bufferdata on Linux
+  * CVE-2019-7317 (bmo#1542829)
+    Use-after-free in png_image_free of libpng library
+  * CVE-2019-9797 (bmo#1528909)
+    Cross-origin theft of images with createImageBitmap
+  * CVE-2018-18511 (bmo#1526218)
+    Cross-origin theft of images with ImageBitmapRenderingContext
+  * CVE-2019-11694 (bmo#1534196) (Windows only)
+    Uninitialized memory memory leakage in Windows sandbox
+  * CVE-2019-11698 (bmo#1543191)
+    Theft of user history data through drag and drop of hyperlinks
+    to and from bookmarks
+  * CVE-2019-5798 (bmo#1535518)
+    Out-of-bounds read in Skia
+  * CVE-2019-9800 (bmo#1540166, bmo#1534593, bmo#1546327, bmo#1540136,
+    bmo#1538736, bmo#1538042, bmo#1535612, bmo#1499719, bmo#1499108,
+    bmo#1538619, bmo#1535194, bmo#1516325, bmo#1542324, bmo#1542097,
+    bmo#1532465, bmo#1533554, bmo#1541580)
+    Memory safety bugs fixed in Firefox 67 and Firefox ESR 60.7
+
+-------------------------------------------------------------------

Old:
----
  l10n-60.6.1.tar.xz
  thunderbird-60.6.1.source.tar.xz
  thunderbird-60.6.1.source.tar.xz.asc

New:
----
  l10n-60.7.0.tar.xz
  thunderbird-60.7.0.source.tar.xz
  thunderbird-60.7.0.source.tar.xz.asc

++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++

Other differences:
------------------
++++++ MozillaThunderbird.spec ++++++
--- /var/tmp/diff_new_pack.k83Pf0/_old	2019-05-28 09:41:05.969889185 +0200
+++ /var/tmp/diff_new_pack.k83Pf0/_new	2019-05-28 09:41:05.969889185 +0200
@@ -17,9 +17,9 @@
 #
 
 
-%define mainversion 60.6.1
+%define mainversion 60.7.0
 %define update_channel release
-%define releasedate 20190314112142
+%define releasedate 20190517095026
 
 %bcond_without mozilla_tb_kde4
 %bcond_with    mozilla_tb_valgrind

++++++ compare-locales.tar.xz ++++++

++++++ create-tar.sh ++++++
--- /var/tmp/diff_new_pack.k83Pf0/_old	2019-05-28 09:41:06.245889094 +0200
+++ /var/tmp/diff_new_pack.k83Pf0/_new	2019-05-28 09:41:06.245889094 +0200
@@ -2,9 +2,9 @@
 
 CHANNEL="esr60"
 BRANCH="releases/comm-$CHANNEL"
-RELEASE_TAG="ed1296af783ca23d9b07aac774cd104b14d246c3"
-MOZ_RELEASE_TAG="ac46edc9c4223fb6613501d3287705f49d1dfc57"
-VERSION="60.6.1"
+RELEASE_TAG="5822a83963e333699a33099c37c65bcd6527b988"
+MOZ_RELEASE_TAG="2ae9b50be57173c299c10df512590e2feb164977"
+VERSION="60.7.0"
 VERSION_SUFFIX=""
 LOCALE_FILE="thunderbird-$VERSION/comm/mail/locales/l10n-changesets.json"
 

++++++ l10n-60.6.1.tar.xz -> l10n-60.7.0.tar.xz ++++++
/work/SRC/openSUSE:Factory/MozillaThunderbird/l10n-60.6.1.tar.xz /work/SRC/openSUSE:Factory/.MozillaThunderbird.new.5148/l10n-60.7.0.tar.xz differ: char 26, line 1

++++++ mozilla-bmo1519629.patch ++++++
--- /var/tmp/diff_new_pack.k83Pf0/_old	2019-05-28 09:41:06.281889082 +0200
+++ /var/tmp/diff_new_pack.k83Pf0/_new	2019-05-28 09:41:06.281889082 +0200
@@ -1,32 +1,47 @@
-diff -rup thunderbird-60.6.1.orig/servo/components/style/lib.rs thunderbird-60.6.1/servo/components/style/lib.rs
---- thunderbird-60.6.1.orig/servo/components/style/lib.rs	2019-03-25 02:38:41.000000000 +0100
-+++ thunderbird-60.6.1/servo/components/style/lib.rs	2019-03-30 14:46:10.491001809 +0100
-@@ -23,7 +23,7 @@
+# HG changeset patch
+# Parent  ba0e794338a92e82d4b19e9fb012c848302b7dbd
+
+diff --git a/servo/components/style/lib.rs b/servo/components/style/lib.rs
+--- a/servo/components/style/lib.rs
++++ b/servo/components/style/lib.rs
+@@ -18,17 +18,17 @@
+ //! [recalc_style_at]: traversal/fn.recalc_style_at.html
+ //!
+ //! Major dependencies are the [cssparser][cssparser] and [selectors][selectors]
+ //! crates.
+ //!
  //! [cssparser]: ../cssparser/index.html
  //! [selectors]: ../selectors/index.html
  
 -#![deny(missing_docs)]
-+/// #![deny(missing_docs)]
++//#![deny(missing_docs)]
  
  extern crate app_units;
  extern crate arrayvec;
-diff -rup thunderbird-60.6.1.orig/servo/components/style_traits/values.rs thunderbird-60.6.1/servo/components/style_traits/values.rs
---- thunderbird-60.6.1.orig/servo/components/style_traits/values.rs	2019-03-25 02:38:43.000000000 +0100
-+++ thunderbird-60.6.1/servo/components/style_traits/values.rs	2019-03-30 12:31:55.070634646 +0100
-@@ -135,6 +135,7 @@ where
-     }
- }
- 
-+/// Documentation needed here, but the macro appears to be unused anyway...
- #[macro_export]
- macro_rules! serialize_function {
-     ($dest: expr, $name: ident($( $arg: expr, )+)) => {
-@@ -404,6 +405,8 @@ impl_to_css_for_predefined_type!(::csspa
- impl_to_css_for_predefined_type!(::cssparser::Color);
- impl_to_css_for_predefined_type!(::cssparser::UnicodeRange);
- 
-+
-+/// Define an enum type with unit variants that each correspond to a CSS keyword.
- #[macro_export]
- macro_rules! define_css_keyword_enum {
-     (pub enum $name:ident { $($variant:ident = $css:expr,)+ }) => {
+ extern crate atomic_refcell;
+ #[macro_use]
+ extern crate bitflags;
+ #[allow(unused_extern_crates)] extern crate byteorder;
+ #[cfg(feature = "gecko")] #[macro_use] #[no_link] extern crate cfg_if;
+diff --git a/servo/components/style_traits/lib.rs b/servo/components/style_traits/lib.rs
+--- a/servo/components/style_traits/lib.rs
++++ b/servo/components/style_traits/lib.rs
+@@ -4,17 +4,17 @@
+ 
+ //! This module contains shared types and messages for use by devtools/script.
+ //! The traits are here instead of in script so that the devtools crate can be
+ //! modified independently of the rest of Servo.
+ 
+ #![crate_name = "style_traits"]
+ #![crate_type = "rlib"]
+ 
+-#![deny(unsafe_code, missing_docs)]
++#![deny(unsafe_code)]
+ 
+ extern crate app_units;
+ #[macro_use] extern crate bitflags;
+ #[macro_use] extern crate cssparser;
+ extern crate euclid;
+ extern crate malloc_size_of;
+ #[macro_use] extern crate malloc_size_of_derive;
+ extern crate selectors;

++++++ thunderbird-60.6.1.source.tar.xz -> thunderbird-60.7.0.source.tar.xz ++++++
/work/SRC/openSUSE:Factory/MozillaThunderbird/thunderbird-60.6.1.source.tar.xz /work/SRC/openSUSE:Factory/.MozillaThunderbird.new.5148/thunderbird-60.7.0.source.tar.xz differ: char 15, line 1

    

root

tags

participants (1)