Accepted mozilla-thunderbird 1.5.0.2-0ubuntu1 (source)

Adam Conrad adconrad at ubuntu.com
Thu May 18 15:10:11 BST 2006 

Accepted:
 OK: mozilla-thunderbird_1.5.0.2-0ubuntu1.dsc
     -> Component: main Section: mail
 OK: mozilla-thunderbird_1.5.0.2.orig.tar.gz
 OK: mozilla-thunderbird_1.5.0.2-0ubuntu1.diff.gz

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Format: 1.7
Date: Sun, 14 May 2006 04:50:44 +1000
Source: mozilla-thunderbird
Binary: mozilla-thunderbird-dev mozilla-thunderbird-inspector mozilla-thunderbird mozilla-thunderbird-typeaheadfind
Architecture: source
Version: 1.5.0.2-0ubuntu1
Distribution: dapper
Urgency: low
Maintainer: Alexander Sack <asac at debian.org>
Changed-By: Adam Conrad <adconrad at ubuntu.com>
Description: 
 mozilla-thunderbird - Mozilla Thunderbird standalone mail client
 mozilla-thunderbird-dev - mozilla thunderbird development files
 mozilla-thunderbird-inspector - mozilla thunderbird dom inspector extension
 mozilla-thunderbird-typeaheadfind - mozilla thunderbird typeaheadfind extension
Changes: 
 mozilla-thunderbird (1.5.0.2-0ubuntu1) dapper; urgency=low
 .
   * New upstream incremental security and bugfix release (launchpad.net/41096):
     - MFSA 2006-28, CVE-2006-1726: Security check of js_ValueToFunctionObject()
       can be circumvented
     - MFSA 2006-27, CVE-2006-0748: Table Rebuilding Code Execution Vuln
     - MFSA 2006-26, CVE-2006-1045: Mail Multiple Information Disclosure
     - MFSA 2006-25, CVE-2006-1727: Privilege escalation through Print Preview
     - MFSA 2006-24, CVE-2006-1728: Privilege escalation using
       crypto.generateCRMFRequest
     - MFSA 2006-22, CVE-2006-1730: CSS Letter-Spacing Heap Overflow Vuln
     - MFSA 2006-21, CVE-2006-0884: JavaScript execution in mail when
       forwarding in-line
     - MFSA 2006-20, CVE-2006-1529, CVE-2006-1530, CVE-2006-1531,
       CVE-2006-1723, CVE-2006-1724: Crashes with memory corruption.
     - MFSA 2006-08, CVE-2006-0299: "AnyName" entrainment and access control
       hazard
     - MFSA 2006-07, CVE-2006-0298: Read beyond buffer while parsing XML
     - MFSA 2006-06, CVE-2006-0297: Integer overflows in E4X, SVG and Canvas
     - MFSA 2006-05, CVE-2006-0296: Localstore.rdf XML injection through
       XULDocument.persist()
     - MFSA 2006-04, CVE-2006-0295: Memory corruption via QueryInterface on
       Location, Navigator objects
     - MFSA 2006-02, CVE-2006-0294: Changing postion:relative to static
       corrupts memory
     - MFSA 2006-01, CVE-2006-0292: JavaScript garbage-collection hazards
   * New upstream should have restored the ability to send attachments
     via the command line interface (launchpad.net/35690)
   * Add the (at this point, very well-tested) GNOME/MIME handling patch
     from Firefox, so we get GNOME MIME definitions (launchpad.net/30375)
   * Sync 91_fontsfix_359763.dpatch from Debian, to use the generic font
     aliases instead of demanding "Times", "Courier", and "Helvetica".
   * Sync isolated arch build failure fixes from Debian as well, for people
     who feel the urge to port dapper after it's released: 50_arch_*.dpatch
   * Drop all references to mozilla-thunderbird-update-chrome, and the *.d
     directories in /var/lib/mozilla-thunderbird and stop shipping them, as
     they've been obsolete and broken since 1.5 (launchpad.net/{35465,25997})
   * Stop shipping /tmp in the typeaheadfind package (launchpad.net/43470)
   * Rework the Debconf www-browser selection so it automatically chooses to
     use gnome-control-center's choice if it detects it installed, otherwise
     falling back to x-www-browser (launchpad.net/{31841,34546,41706,25704})
   * Drop suggests on xprint, which we stopped using (launchpad.net/33307)
   * Depend on "myspell-en-us | myspell-dictionary", since we now appear to
     require it unconditionally for operation (launchpad.net/{35212,37825})
   * Fix the default theme so it shows up in themes list, so you can remove
     added themes, since they're not the "last one" (launchpad.net/43022)
   * Hide the Profile Manager menu icon by default (launchpad.net/12874)
   * Add proper branding (Yay, we're Thunderbird again, not Mail/News, and we
     have an icon and an about box, oh my!), icon thanks to Andy Fitzsimon,
     integration mangling thanks to Alexander Sack. (launchpad.net/19439)
Files: 
 719d376b8fa6df7bb8d0e8c87d31a7c9 952 mail optional mozilla-thunderbird_1.5.0.2-0ubuntu1.dsc
 d28a86a003f621848d91ab4f6f335a45 35334720 mail optional mozilla-thunderbird_1.5.0.2.orig.tar.gz
 31c2597dc1f05e5fb47eabff134f0953 446524 mail optional mozilla-thunderbird_1.5.0.2-0ubuntu1.diff.gz

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.2.2 (GNU/Linux)

iD8DBQFEbH3NvjztR8bOoMkRApvxAJ9wgRqhF9xBiLzMB6zKOfNyqF+b9QCg6zH0
b0HiMRhVK7FwmS+TAu6AViw=
=caUw
-----END PGP SIGNATURE-----

More information about the dapper-changes mailing list