summaryrefslogtreecommitdiff
path: root/mail/thunderbird
AgeCommit message (Collapse)AuthorFilesLines
2009-01-07Include xdg-dirs for the share/applications and share/pixmaps directories,ghen3-3/+8
otherwise thunderbird doesn't install properly if these directories don't exist on the system, noted by tron. Bump PKGREVISION, brick jmcneill. ;-)
2009-01-05Update thunderbird and thunderbird-gtk1 to 2.0.0.19.ghen3-8/+7
Security fixes in this version: MFSA 2008-68 XSS and JavaScript privilege escalation MFSA 2008-67 Escaped null characters ignored by CSS parser MFSA 2008-66 Errors parsing URLs with leading whitespace and control characters MFSA 2008-65 Cross-domain data theft via script redirect error message MFSA 2008-64 XMLHttpRequest 302 response disclosure MFSA 2008-61 Information stealing via loadBindingDocument MFSA 2008-60 Crashes with evidence of memory corruption (rv:1.9.0.5/1.8.1.19) For more info, see http://www.mozilla.com/en-US/thunderbird/2.0.0.19/releasenotes/
2008-12-21Add .desktop file for GNOME/KDE/Xfce integration, bump PKGREVISION.jmcneill4-3/+27
ok wiz@
2008-12-19Add an INSTALL template instead of post-install: target so thatroy2-4/+18
binary packages and unpriv cleaning work.
2008-11-24Upgrade to 2.0.0.18 (some security fix)is2-6/+6
2008-09-26Update thunderbird and thunderbird-gtk1 to 2.0.0.17.ghen2-6/+6
Security fixes in this version: MFSA 2008-46 Heap overflow when canceling newsgroup message MFSA 2008-44 resource: traversal vulnerabilities MFSA 2008-43 BOM characters stripped from JavaScript before execution MFSA 2008-42 Crashes with evidence of memory corruption (rv:1.9.0.2/1.8.1.17) MFSA 2008-41 Privilege escalation via XPCnativeWrapper pollution MFSA 2008-38 nsXMLDocument::OnChannelRedirect() same-origin violation MFSA 2008-37 UTF-8 URL stack buffer overflow For more info, see http://www.mozilla.com/en-US/thunderbird/2.0.0.17/releasenotes/
2008-09-18Catch up with the usual platform specific mess in the mozilla buildjoerg3-1/+29
system. Fixes bus errors in shlibsign. From PR 39576.
2008-08-22Update thunderbird and thunderbird-gtk1 to 2.0.0.16.ghen6-33/+21
Security fixes in this version: MFSA 2008-34 Remote code execution by overflowing CSS reference counter MFSA 2008-33 Crash and remote code execution in block reflow MFSA 2008-31 Peer-trusted certs can use alt names to spoof MFSA 2008-29 Faulty .properties file results in uninitialized memory being used MFSA 2008-26 Buffer length checks in MIME processing MFSA 2008-25 Arbitrary code execution in mozIJSSubScriptLoader.loadSubScript() MFSA 2008-24 Chrome script loading from fastload file MFSA 2008-21 Crashes with evidence of memory corruption For more info, see http://www.mozilla.com/en-US/thunderbird/2.0.0.16/releasenotes/
2008-05-20Update thunderbird and thunderbird-gtk1 to 2.0.0.14 (2.0.0.13 was skipped toghen2-6/+6
stay on par with Firefox version numbering?) Security fixes in this version: MFSA 2008-15 Crashes with evidence of memory corruption (rv:1.8.1.13) MFSA 2008-14 JavaScript privilege escalation and arbitrary code execution For more info, see http://www.mozilla.com/en-US/thunderbird/2.0.0.14/releasenotes/
2008-05-19Fix assorted pkglint complaints and warns.tnn3-6/+8
2008-02-27Update thunderbrd and thunderbird-gtk1 to 2.0.0.12 (.10 and .11 where skipped).ghen2-6/+6
Security fixes in this version: MFSA 2008-12 Heap buffer overflow in external MIME bodies MFSA 2008-07 Possible information disclosure in BMP decoder MFSA 2008-05 Directory traversal via chrome: URI MFSA 2008-03 Privilege escalation, XSS, Remote Code Execution MFSA 2008-01 Crashes with evidence of memory corruption (rv:1.8.1.12) For more info, see http://www.mozilla.com/en-US/thunderbird/2.0.0.12/releasenotes/
2007-12-22Change MOZILLA master sites difinitions, related to PR 37379.obache1-3/+2
There are three types Mozilla mirrors. (http://www.mozilla.org/mirroring.html) * mozilla-current contains only the current version of Firefox and Thunderbird * mozilla-release contains Firefox, Thunderbird, and Sunbird releases * mozilla-all complete archive Define following variables for mozilla master sites: MASTER_SITE_MOZILLA_ALL = mozilla-all MASTER_SITE_MOZILLA = mozilla-release and change some packages to use appropriate variable. Update contents of MASTER_SITE_MOZILLA with master and primary mirrors taken from http://www.mozilla.org/mirrors.html and add some sample definitions.
2007-11-15Update "thunderbird" package to version 2.0.0.9. It fixes the followingtron4-19/+18
security problems: - MFSA 2007-36 URIs with invalid %-encoding mishandled by Windows - MFSA 2007-29 Crashes with evidence of memory corruption (rv:1.8.1.8)
2007-10-16Make thunderbird also obey the mozilla-single-profile package option thatdmcmahill2-4/+3
is used already for firefox and thunderbird.
2007-10-08Fix file permissions for default profile. Bump PKGREVISION.ghen2-2/+4
2007-08-15In a comment, add reference to tbird bug report about LD_LIBRARY_PATHgdt1-1/+4
being left in the environemnt. (There is no patch to fix this in pkgsrc, so the comment is at top level instead of in a patch file.)
2007-08-02Update thunderbrd and thunderbird-gtk1 to 2.0.0.6.ghen2-6/+6
Security fixes in this version: MFSA 2007-27 Unescaped URIs passed to external programs MFSA 2007-26 Privilege escalation through chrome-loaded about:blank windows For more info, see http://www.mozilla.com/en-US/thunderbird/2.0.0.6/releasenotes/
2007-07-26Update thunderbrd and thunderbird-gtk1 to 2.0.0.5.ghen3-7/+9
Security fixes in this version: MFSA 2007-15 Security Vulnerability in APOP Authentication MFSA 2007-12 Crashes with evidence of memory corruption For more info, see http://www.mozilla.com/en-US/thunderbird/2.0.0.5/releasenotes/
2007-06-15Include sqlite3 locking patch from Firefox.joerg3-2/+41
2007-06-15Update thunderbrd and thunderbird-gtk1 to 2.0.0.4.ghen3-7/+9
(2.0.0.1-2.0.0.3 skipped to keep the version on par with Firefox?) Security fixes in this version: MFSA 2007-15 Security Vulnerability in APOP Authentication MFSA 2007-12 Crashes with evidence of memory corruption For more info, see http://www.mozilla.com/en-US/thunderbird/2.0.0.4/releasenotes/
2007-05-12Update to Thunderbird 2.0.0.0.ghen6-101/+163
What's New in Thunderbird 2 * Message Tags: Create your own tags for organizing email. Messages can be assigned any number of tags. Tags can be combined with saved searches and mail views to make it easier to organize email. * Visual Theme: Thunderbird 2's theme and user interface have been updated to improve usability and maximize screen real estate. * Session History Navigation: Back and Forward buttons allow navigation through message history. * Advanced Folder Views: Customize the folder pane to show favorite, unread or recent folders. * Easy Access to Popular Web Mail Services: Gmail and .Mac users can access their accounts in Thunderbird by simply providing their user names and passwords. * Improved Support For Extensions: Extensions can now add custom columns to the message list pane in addition to storing custom message data in the mail database. * Improved New Mail Notification Alerts: New mail alerts include information such as the subject, sender and message preview text. * Folder Summary Popups: Mouse over a folder with new messages to see a summary of the new messages in that folder. * Saved Search Folder Performance: Search results for saved search folders are now cached, improving folder loading performance. * Find As You Type: Finds and highlights message text as you type. * Improved Filing Tools: Recent folder menu items for moving and copying messages to recently used folders. Move / Copy again functionality. * Updates to the Extension System: The extension system has been updated to provide enhanced security and to allow for easier localization of extensions. The Rumbling Edge has a more detailed list of notable bug fixes: http://weblogs.mozillazine.org/rumblingedge/archives/2007/03/tb_2.html
2007-03-07Fix build on DragonFly as RNG_RNGInit was calling itself due to badjoerg2-1/+15
linkage. I love platform dependent magic in each Makefile.
2007-03-07Dynamically generate the part of the PLIST for libfreebl. This is becausedmcmahill2-8/+5
the exact names of the freebl libraries depends on the platform and they have a habit of changing even on minor releases. This causes these mozilla packages to be broken quite a lot on platforms other than NetBSD/i386. Hopefully this fix will last longer than previous ones. pkgrevision bumps all around.
2007-03-02Update thunderbird and thunderbird-gtk1 to 1.5.0.10. Fixed in this version:ghen7-53/+20
MFSA 2007-06 Mozilla Network Security Services (NSS) SSLv2 buffer overflow MFSA 2007-01 Crashes with evidence of memory corruption (rv:1.8.0.10/1.8.1.2) For more info, see http://www.mozilla.com/en-US/thunderbird/releases/1.5.0.10.html
2007-02-04Get these mozilla clients to work on Solaris-2.9/sparc. There weredmcmahill3-6/+10
two issues. The PLIST was incorrect and since the PLIST is used by the "moz-install" script, anything missing from the PLIST is never installed even when building from source. When libfreebl* were not installed it caused the clients to fail to load the security component and fail with "The browser failed to load its security component". The second issue is that many installations of solaris-2.9 include various glib/gtk/gnome libraries in /usr/lib. This causes failures because the pkgsrc ones were used at link time and the /usr/lib ones at run time. Work around this by setting a LD_LIBRARY_PATH that includes the pkgsrc lib directory first. pkgrevision bumps all around.
2007-01-26fix a makefile to work with the new way gmake-3.81 handles backslash-newline ↵dmcmahill2-1/+33
inside of single quotes
2007-01-17Get this to build again on solaris. See NetBSD PR/31481,dmcmahill2-4/+4
PR/32905, and PR/33583 and also https://bugzilla.mozilla.org/show_bug.cgi?id=77788
2006-12-20Update thunderbird and thunderbird-gtk1 to 1.5.0.9. Fixed in this version:ghen2-6/+6
MFSA 2006-74 Mail header processing heap overflows MFSA 2006-73 Mozilla SVG Processing Remote Code Execution MFSA 2006-72 XSS by setting img.src to javascript: URI MFSA 2006-71 LiveConnect crash finalizing JS objects MFSA 2006-70 Privilege escallation using watch point MFSA 2006-68 Crashes with evidence of memory corruption (rv:1.8.0.9/1.8.1.1) For more info, see http://www.mozilla.com/en-US/thunderbird/releases/1.5.0.9.html
2006-11-08Update thunderbird and thunderbird-gtk1 to 1.5.0.8. Fixed in this version:ghen4-9/+49
MFSA 2006-67 Running Script can be recompiled MFSA 2006-66 RSA signature forgery (variant) MFSA 2006-65 Crashes with evidence of memory corruption (rv:1.8.0.8) For more info, see http://www.mozilla.com/en-US/thunderbird/releases/1.5.0.8.html
2006-10-23thunderbird's ldap doesn't work talking to an ipv4 ldap server ifmarkd3-3/+40
talking to ipv4 addresses using ipv6 addresses isn't allowed, which is the default on NetBSD. Patch to use a v4 socket when talking to an ipv4 ldap server. Fixes my PR 33511. seamonkey/firefox/sunbird have the same code so make the same patch. OKed ghen. Bump PKGREVISION.
2006-10-23Build the default set of extensions in thunderbird{,-gtk1}. Allowsmarkd3-5/+12
GSSAPI authentication to work on NetBSD-current. Fixes my PR 33512. OKed by ghen. Bump PKGREVISION.
2006-10-20Fix "if [ ... == ...]" in a build script.tron2-1/+15
2006-10-19Fix crash after printing caused by trying to destroy the same charsetmarkd3-9/+19
structure multiple times. Bump PKGREVISION.
2006-09-24Use Makefile.common from seamonkey dir instead of mozilla.salo1-2/+2
2006-09-15Update thunderbird and thunderbird-gtk1 to 1.5.0.7. Fixed in this version:ghen3-25/+6
MFSA 2006-64 Crashes with evidence of memory corruption (rv:1.8.0.7) MFSA 2006-63 JavaScript execution in mail via XBL MFSA 2006-60 RSA Signature Forgery MFSA 2006-59 Concurrency-related vulnerability MFSA 2006-58 Auto-Update compromise through DNS and SSL spoofing MFSA 2006-57 JavaScript Regular Expression Heap Corruption For more info, see http://www.mozilla.com/thunderbird/releases/1.5.0.7.html
2006-07-31Make this build with GCC 4.1.x.tron2-1/+20
2006-07-29Update Thunderbird to 1.5.0.5.uebayasi2-6/+6
This is a security update announce at July 26, 2006. See the following URLs in detail: http://www.mozilla.org/security/announce/2006/mfsa2006-56.html http://www.mozilla.org/security/announce/2006/mfsa2006-55.html http://www.mozilla.org/security/announce/2006/mfsa2006-54.html http://www.mozilla.org/security/announce/2006/mfsa2006-53.html http://www.mozilla.org/security/announce/2006/mfsa2006-52.html http://www.mozilla.org/security/announce/2006/mfsa2006-51.html http://www.mozilla.org/security/announce/2006/mfsa2006-50.html http://www.mozilla.org/security/announce/2006/mfsa2006-49.html http://www.mozilla.org/security/announce/2006/mfsa2006-48.html http://www.mozilla.org/security/announce/2006/mfsa2006-47.html http://www.mozilla.org/security/announce/2006/mfsa2006-46.html http://www.mozilla.org/security/announce/2006/mfsa2006-45.html http://www.mozilla.org/security/announce/2006/mfsa2006-44.html
2006-06-10Use xpcom code for linux on amd64, similar to the earlier fix for firefox,ghen2-4/+4
from PR pkg/33181.
2006-06-07Add some additional headers introduced with ff1504/tb1504/sm102. Not worthghen1-1/+4
bumping PKGREVISION for.
2006-06-03Update www/firefox and www/firefox-gtk to 1.5.0.4, mail/thunderbird andghen3-8/+8
mail/thunderbird-gtk1 to 1.5.0.4, and www/seamonkey, www/seamonkey-gtk1 and www/seamonkey-bin to 1.0.2 (salo has already updated www/firefox-bin). Note that thunderbird skipped one release number (again) to stay on par with firefox. These updates provide: * improvements to product stability, * several important security fixes (see below). Fixed in Firefox 1.5.0.4: MFSA 2006-43 Privilege escalation using addSelectionListener MFSA 2006-42 Web site XSS using BOM on UTF-8 pages MFSA 2006-41 File stealing by changing input type (variant) MFSA 2006-39 "View Image" local resource linking (Windows) MFSA 2006-38 Buffer overflow in crypto.signText() MFSA 2006-37 Remote compromise via content-defined setter on object prototypes MFSA 2006-36 PLUGINSPAGE privileged JavaScript execution 2 MFSA 2006-35 Privilege escalation through XUL persist MFSA 2006-34 XSS viewing javascript: frames or images from context menu MFSA 2006-33 HTTP response smuggling MFSA 2006-32 Fixes for crashes with potential memory corruption MFSA 2006-31 EvalInSandbox escape (Proxy Autoconfig, Greasemonkey) Fixed in Thunderbird 1.5.0.4: MFSA 2006-42 Web site XSS using BOM on UTF-8 pages MFSA 2006-40 Double-free on malformed VCard MFSA 2006-38 Buffer overflow in crypto.signText() MFSA 2006-37 Remote compromise via content-defined setter on object prototypes MFSA 2006-35 Privilege escalation through XUL persist MFSA 2006-33 HTTP response smuggling MFSA 2006-32 Fixes for crashes with potential memory corruption MFSA 2006-31 EvalInSandbox escape (Proxy Autoconfig, Greasemonkey) Fixed in SeaMonkey 1.0.2: MFSA 2006-43 Privilege escalation using addSelectionListener MFSA 2006-42 Web site XSS using BOM on UTF-8 pages MFSA 2006-41 File stealing by changing input type (variant) MFSA 2006-40 Double-free on malformed VCard MFSA 2006-39 "View Image" local resource linking (Windows) MFSA 2006-38 Buffer overflow in crypto.signText() MFSA 2006-37 Remote compromise via content-defined setter on object prototypes MFSA 2006-35 Privilege escalation through XUL persist MFSA 2006-34 XSS viewing javascript: frames or images from context menu MFSA 2006-33 HTTP response smuggling MFSA 2006-32 Fixes for crashes with potential memory corruption MFSA 2006-31 EvalInSandbox escape (Proxy Autoconfig, Greasemonkey)
2006-06-03Remove MESSAGE, as this seems to be no longer true for 1.5+ releases.ghen2-11/+1
2006-05-21Set MESSAGE_SRC instead of MESSAGE so that we can take advantage ofjlam1-2/+2
MESSAGE_SUBST properly. No package should be setting MESSAGE anyway.
2006-04-23Update to Thunderbird 1.5.0.2 (1.5.0.1 was skipped to stay in sync withghen4-26/+25
Firefox). Thunderbird 1.5.0.2 offers improved stability, and several security fixes: MFSA 2006-28 Security check of js_ValueToFunctionObject() can be circumvented MFSA 2006-27 Table Rebuilding Code Execution Vulnerability MFSA 2006-26 Mail Multiple Information Disclosure MFSA 2006-25 Privilege escalation through Print Preview MFSA 2006-24 Privilege escalation using crypto.generateCRMFRequest MFSA 2006-22 CSS Letter-Spacing Heap Overflow Vulnerability MFSA 2006-21 JavaScript execution in mail when forwarding in-line MFSA 2006-20 Crashes with evidence of memory corruption (rv:1.8.0.2) MFSA 2006-08 "AnyName" entrainment and access control hazard MFSA 2006-07 Read beyond buffer while parsing XML MFSA 2006-06 Integer overflows in E4X, SVG and Canvas MFSA 2006-05 Localstore.rdf XML injection through XULDocument.persist() MFSA 2006-04 Memory corruption via QueryInterface on Location, Navigator objects MFSA 2006-02 Changing postion:relative to static corrupts memory MFSA 2006-01 JavaScript garbage-collection hazards For a detailed ChangeLog, see: http://weblogs.mozillazine.org/rumblingedge/archives/2006/02/1-5-0-2.html
2006-03-29Make thunderbird pass CHECK_FILES by skipping automatically generated files.ghen1-2/+6
2006-03-23Readd minor DragonFly patch. Disable use of visibility attributes,joerg4-6/+17
It's Just Broken (TM). Bump revision.
2006-02-06Remove a non-existant directory from PLIST.ghen1-2/+1
2006-02-06s/_MOZILLA_USE_GTK2/MOZILLA_USE_GTK2/g, as to silent pkglint (WARN: Variableghen1-2/+2
names starting with an underscore are reserved for internal pkgsrc use). Ok with wiz.
2006-02-05Recursive revision bump / recommended bump for gettext ABI change.joerg1-1/+2
2006-02-05Update to Thunderbird 1.5.ghen28-642/+515
What's new: * Automated update to streamline product upgrades. Notification of an update is more prominent, and updates to Thunderbird may now be half a megabyte or smaller. Updating extensions has also improved. * Sort address autocomplete results by how often you send e-mail to each recipient. * Spell check as you type. * Saved Search Folders can now search across multiple accounts. * Built in phishing detector to help protect users against email scams. * Podcasting and other RSS Improvements. * Deleting attachments from messages. * Integration with server side spam filtering. * Reply and forward actions for message filters. * Kerberos Authentication. * Auto save as draft for mail composition. * Message aging. * Filters for Global Inbox. * Improvements to product usability including redesigned options interface, and SMTP server management. * Many security enhancements. For a more detailed list of changes, see http://weblogs.mozillazine.org/rumblingedge/archives/2006/01/1-5.html Ok with wiz.
2006-02-05It's firefox and firefox-gtk1, resp. thunderbird and thunderbird-gtk1 these ↵ghen1-2/+2
days.