Hello community,
here is the log from the commit of package MozillaThunderbird for openSUSE:Factory checked in at 2018-11-06 15:35:53
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Comparing /work/SRC/openSUSE:Factory/MozillaThunderbird (Old)
and /work/SRC/openSUSE:Factory/.MozillaThunderbird.new (New)
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "MozillaThunderbird"
Tue Nov 6 15:35:53 2018 rev:199 rq:645920 version:60.3.0
Changes:
--------
--- /work/SRC/openSUSE:Factory/MozillaThunderbird/MozillaThunderbird.changes 2018-10-22 11:05:42.544153852 +0200
+++ /work/SRC/openSUSE:Factory/.MozillaThunderbird.new/MozillaThunderbird.changes 2018-11-06 15:36:04.351549496 +0100
@@ -1,0 +2,45 @@
+Tue Oct 30 08:18:23 UTC 2018 - wr@rosenauer.org
+
+- update to Thunderbird 60.3.0
+ * various theme fixes
+ * Shift+PageUp/PageDown in Write window
+ * Gloda attachment filtering
+ * Mailing list address auto-complete enter/return handling
+ * Thunderbird hung if HTML signature references non-existent image
+ * Filters not working for headers that appear more than once
+- Security fixes for the Mozilla platform picked up from 60.3
+ (Firefox ESR release). In general, these flaws cannot be exploited
+ through email in Thunderbird because scripting is disabled when
+ reading mail, but are potentially risks in browser or browser-like
+ contexts (MFSA 2018-28) (bsc#1112852)
+ * CVE-2018-12391 (bmo#1478843) (Android only)
+ HTTP Live Stream audio data is accessible cross-origin
+ * CVE-2018-12392 (bmo#1492823)
+ Crash with nested event loops
+ * CVE-2018-12393 (bmo#1495011)
+ Integer overflow during Unicode conversion while loading JavaScript
+ * CVE-2018-12389 (bmo#1498460, bmo#1499198)
+ Memory safety bugs fixed in Firefox ESR 60.3
+ * CVE-2018-12390 (bmo#1487098, bmo#1487660, bmo#1490234, bmo#1496159,
+ bmo#1443748, bmo#1496340, bmo#1483905, bmo#1493347, bmo#1488803,
+ bmo#1498701, bmo#1498482, bmo#1442010, bmo#1495245, bmo#1483699,
+ bmo#1469486, bmo#1484905, bmo#1490561, bmo#1492524, bmo#1481844)
+ Memory safety bugs fixed in Firefox 63 and Firefox ESR 60.3
+
+-------------------------------------------------------------------
+Thu Oct 25 14:40:14 UTC 2018 - guillaume.gardet@opensuse.org
+
+- Update _constraints for armv6/7
+
+-------------------------------------------------------------------
+Thu Oct 25 08:26:12 UTC 2018 - guillaume.gardet@opensuse.org
+
+- Add patch to fix build on armv7:
+ * mozilla-bmo1463035.patch
+
+-------------------------------------------------------------------
+Thu Oct 25 08:25:52 UTC 2018 - guillaume.gardet@opensuse.org
+
+- Add memory-constraints to avoid OOM errors
+
+-------------------------------------------------------------------
Old:
----
l10n-60.2.1.tar.xz
thunderbird-60.2.1.source.tar.xz
thunderbird-60.2.1.source.tar.xz.asc
New:
----
l10n-60.3.0.tar.xz
mozilla-bmo1463035.patch
thunderbird-60.3.0.source.tar.xz
thunderbird-60.3.0.source.tar.xz.asc
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Other differences:
------------------
++++++ MozillaThunderbird.spec ++++++
--- /var/tmp/diff_new_pack.Uf7UWP/_old 2018-11-06 15:36:46.275486023 +0100
+++ /var/tmp/diff_new_pack.Uf7UWP/_new 2018-11-06 15:36:46.279486016 +0100
@@ -13,13 +13,13 @@
# license that conforms to the Open Source Definition (Version 1.9)
# published by the Open Source Initiative.
-# Please submit bugfixes or comments via http://bugs.opensuse.org/
+# Please submit bugfixes or comments via https://bugs.opensuse.org/
#
-%define mainversion 60.2.1
+%define mainversion 60.3.0
%define update_channel release
-%define releasedate 20180930223627
+%define releasedate 20181025202514
%bcond_without mozilla_tb_kde4
%bcond_with mozilla_tb_valgrind
@@ -42,6 +42,7 @@
BuildRequires: libcurl-devel
BuildRequires: libidl-devel
BuildRequires: libnotify-devel
+BuildRequires: memory-constraints
BuildRequires: mozilla-nspr-devel >= 4.19
BuildRequires: mozilla-nss-devel >= 3.36.4
BuildRequires: python
@@ -119,6 +120,7 @@
Patch8: mozilla-bmo1464766.patch
Patch9: mozilla-i586-DecoderDoctorLogger.patch
Patch10: mozilla-i586-domPrefs.patch
+Patch11: mozilla-bmo1463035.patch
BuildRoot: %{_tmppath}/%{name}-%{version}-build
PreReq: coreutils fileutils textutils /bin/sh
Recommends: libcanberra0
@@ -202,6 +204,7 @@
%patch9 -p1
%patch10 -p1
%endif
+%patch11 -p1
%build
# no need to add build time to binaries
@@ -251,6 +254,8 @@
# is not forced into CFLAGS
export MOZ_DEBUG_FLAGS="-pipe"
#
+# Limit RAM usage to avoid OOM
+%limit_build -m 1500
cat << EOF > $MOZCONFIG
mk_add_options MOZILLA_OFFICIAL=1
mk_add_options BUILD_OFFICIAL=1
++++++ _constraints ++++++
--- /var/tmp/diff_new_pack.Uf7UWP/_old 2018-11-06 15:36:46.363485889 +0100
+++ /var/tmp/diff_new_pack.Uf7UWP/_new 2018-11-06 15:36:46.363485889 +0100
@@ -12,15 +12,6 @@
<conditions>
<arch>armv6l</arch>
<arch>armv7l</arch>
- </conditions>
- <hardware>
- <memory>
- <size unit="M">2600</size>
- </memory>
- </hardware>
- </overwrite>
- <overwrite>
- <conditions>
<arch>aarch64</arch>
</conditions>
<hardware>
++++++ compare-locales.tar.xz ++++++
++++++ create-tar.sh ++++++
--- /var/tmp/diff_new_pack.Uf7UWP/_old 2018-11-06 15:36:46.427485792 +0100
+++ /var/tmp/diff_new_pack.Uf7UWP/_new 2018-11-06 15:36:46.427485792 +0100
@@ -2,9 +2,9 @@
CHANNEL="esr60"
BRANCH="releases/comm-$CHANNEL"
-RELEASE_TAG="5cdee4ae33c0868ae420a5a826c63b42d823c584"
-MOZ_RELEASE_TAG="8d71faee5dcdd0773b7e0830b8fad96a6bda559b"
-VERSION="60.2.1"
+RELEASE_TAG="dd958ef605d132d08a063f29606737ffb3453e68"
+MOZ_RELEASE_TAG="ab014151d4c338562949c28aa140786b548856ca"
+VERSION="60.3.0"
VERSION_SUFFIX=""
LOCALE_FILE="thunderbird-$VERSION/comm/mail/locales/l10n-changesets.json"
++++++ l10n-60.2.1.tar.xz -> l10n-60.3.0.tar.xz ++++++
/work/SRC/openSUSE:Factory/MozillaThunderbird/l10n-60.2.1.tar.xz /work/SRC/openSUSE:Factory/.MozillaThunderbird.new/l10n-60.3.0.tar.xz differ: char 26, line 1
++++++ mozilla-bmo1463035.patch ++++++
# HG changeset patch
# User Mike Hommey