lp:ubuntu/feisty-security/mozilla-thunderbird

Branch merges

Propose for merging

No branches dependent on this one.

Related source package recipes

No recipes using this branch. (?)

Create packaging recipe

Related snap packages

Related bugs

Related blueprints

24. By Alexander Sack on 2008-09-25

* RELEASE security/stability backports for tbird 1.5 as of 2.0.0.17
  (USN-647-1)
  - http://people.ubuntu.com/~asac/mozilla-security/1.8.1.17/moz_1.8.0.15prepatches080614g.tar.gz

23. By Alexander Sack on 2008-07-24

* RELEASE security/stability backports for tbird 1.5 as of 2.0.0.16
  (USN-629-1)
  - http://people.ubuntu.com/~asac/mozilla-security/1.8.1.16/moz_1.8.0.15prepatches080614d.tar.gz
  - http://people.ubuntu.com/~asac/mozilla-security/1.8.1.16/xulrunner_1.5.0.15pre080614d-source.tar.bz2

* debian/patches/00list: disable 10_visibility_hidden_patch.dpatch - which is now shipped
  in upstream tarballs.

22. By Alexander Sack on 2008-05-02

* RELEASE security/stability backports for tbird 1.5 as of 2.0.0.14
  (USN-605-1)
  - http://people.ubuntu.com/~asac/mozilla-security/1.8.1.14/moz_1.8.0.15prepatches080417a.tar.gz

* drop patches applied upstream from debian/patches
  - 0071_279505-attachment-297724-fix-396613-regression.dpatch

21. By Alexander Sack on 2008-03-04

* fix memory access regression (LP: #197504)
  - add debian/patches/0071_279505-attachment-297724-(fix-396613-regression).dpatch
  - update debian/patches/00list

20. By Alexander Sack on 2008-02-27

* USN-582-1 - release security backports for 1.8.0.12 (including previously
  not released firefox patches for 1.8.0.10/11)
* add distro version patch to indicate post-EOL maintainence release
  - add debian/patches/98_ubuntu_eol_distro_version.dpatch
  - update debian/patches/00list

19. By Alexander Sack on 2007-10-22

* New upstream security/stability update:
* MFSA 2007-29 aka CVE-2007-5339 (browser), CVE-2007-5340 (javascript)
* MFSA 2007-30 aka CVE-2007-1095
* MFSA 2007-31 aka CVE-2007-2292
* MFSA 2007-32 aka CVE-2007-3511, CVE-2006-2894
* MFSA 2007-33 aka CVE-2007-5334
* MFSA 2007-34 aka CVE-2007-5337
* MFSA 2007-35 aka CVE-2007-5338
* MFSA 2007-36 aka CVE-2007-4841 (windows only)

18. By Alexander Sack on 2007-08-24

* New upstream security/stability update:
  - CVE-2007-3734, CVE-2007-3735 - MFSA 2007-18: Crashes with evidence of
    memory corruption (rv:1.8.0.13/1.8.1.5)
  - CVE-2007-3670 - MFSA 2007-23: Remote code execution by launching Firefox
    from Internet Explorer.
  - CVE-2007-3844 - MFSA 2007-26: Privilege escalation through chrome-loaded
    about:blank windows.
  - CVE-2007-3845 - MFSA 2007-27: Unescaped URIs passed to external
    programs.

17. By Alexander Sack on 2007-06-03

* New upstream security/stability update:
  - CVE-2007-2867, CVE-2007-2868, MFSA 2007-12: Crashes with evidence of
    memory corruption (rv:1.8.0.12/1.8.1.4)
  - CVE-2007-1558, MFSA 2007-15: Security Vulnerability in APOP
    Authentication

16. By Alexander Sack on 2007-04-02

* debian/rules: use --disable-strip in configure to make noopt effective;
  add -g to OPTFLAGS even for noopt; dbgsym packages can now be generated
  (LP#101923).
* debian/control: fix outdated Suggest entry to firefox (LP# 82805)
* debian/mozilla-thunderbird-restart-required.update-notifier,
  debian/mozilla-thunderbird.install, debian/mozilla-thunderbird.postinst:
  install restart-required hook for "restart required on update2 notification
  (LP#90624).
* debian/mozilla-thunderbird.desktop: support gnome startup notification,
  contributed by John Vivirito <email address hidden> (LP#11463).
* 77_ubuntu-look-and-feel-report-a-bug-menuitem.dpatch: add 'Report a bug ...'
  menu entry, which invokes /usr/bin/ubuntu-bug -pmozilla-thunderbird

15. By Alexander Sack on 2007-03-07

debian/rules/: make thunderbird DEB_BUILD_OPTIONS=noopt aware