Works good both firefox thunderbird with Mageia 5 x86_64 lightning is integrated to main thunderbird so that extension can be obsoleted now.

CC: (none) => ozkyster

I'll mark has_procedure mark to whiteboard.

Whiteboard: MGA4TOO => MGA4TOO has_procedure

firefox: no obvious issues, flash-player-plugin - ok 

thunderbird: no obvious issues, created user, sent mail to pop3 - ok, received ok

CC: (none) => westel

Firefox tested Mga5 and 4 both arch not problems found flash icedtea html5 works tested that new openh264 codec works.
Thunderbird Mga5 and 4 both arch no problems pop3 imap works with gmail.
Need to wait for advisory so no validate it yet.

Whiteboard: MGA4TOO has_procedure => MGA4TOO has_procedure MGA4-64-OK MGA4-32-OK MGA5-64-OK MGA5-32-OK

On mga5 64bit (en_GB) the thunderbird packages installed cleanly except that urpmi reported:

(process:26441): GLib-CRITICAL **: g_slice_set_config: assertion 'sys_page_size == 0' failed

I've no idea as to the significance of that.

Testing results:

Mail retrieval via pop from my ISP's mail server and sending via my ISP's server both work and my mail filters are all correctly applied

Usenet and RSS feeds working normally

Unix Movemail account functioning normally


I installed the Lightning Add-on from Mozilla. (Perhaps we should alert users that they will have to do this in future. I assume that it will not be packaged.) It installed cleanly. It recognized my Calendar and is working normally - to the extent that I use it. I do not use the "tasks" feature.

According to Mozilla, the calendar should be installed and enabled by default in thunderbird 38.0.1. This did not happen on my system. As I reported in comment #5 I had to download the Lightning Add-on from Mozilla.

A thought about the calendar, perhaps this update should obsolete the thunderbird-lightning package. Perhaps its presence on my system is why the default installation did not provide the calendar extension.

(In reply to Otto Leipälä from comment #4)
> Firefox tested Mga5 and 4 both arch not problems found flash icedtea html5
> works tested that new openh264 codec works.
> Thunderbird Mga5 and 4 both arch no problems pop3 imap works with gmail.
> Need to wait for advisory so no validate it yet.

Thanks for testing.  As I said, this version will not be validated and pushed.

(In reply to James Kerr from comment #7)
> A thought about the calendar, perhaps this update should obsolete the
> thunderbird-lightning package. Perhaps its presence on my system is why the
> default installation did not provide the calendar extension.

Can you try uninstalling thunderbird-lightning (and the extension you manually downloaded) then and see?

It should not be possible because ligthning is integrated to main thunderbird package from 38.0.
You need to try with new profile to get it working.

https://wiki.mozilla.org/Thunderbird/Thunderbird38
https://bugzilla.mozilla.org/show_bug.cgi?id=1113183

(In reply to David Walser from comment #8)
> (In reply to Otto Leipälä from comment #4)
> > Firefox tested Mga5 and 4 both arch not problems found flash icedtea html5
> > works tested that new openh264 codec works.
> > Thunderbird Mga5 and 4 both arch no problems pop3 imap works with gmail.
> > Need to wait for advisory so no validate it yet.
> 
> Thanks for testing.  As I said, this version will not be validated and
> pushed.
> 
> (In reply to James Kerr from comment #7)
> > A thought about the calendar, perhaps this update should obsolete the
> > thunderbird-lightning package. Perhaps its presence on my system is why the
> > default installation did not provide the calendar extension.
> 
> Can you try uninstalling thunderbird-lightning (and the extension you
> manually downloaded) then and see?

I noticed it now that and remember it we change from 38.1 to new esr.

I'll take ok marks away now as this not version we push to updates.

Whiteboard: MGA4TOO has_procedure MGA4-64-OK MGA4-32-OK MGA5-64-OK MGA5-32-OK => MGA4TOO has_procedure

None of the following worked:

Remove the thunderbird-lightning package and the downloaded Add-on

Reinstall thunderbird using replacepkgs

Remove and install again thunderbird

I'm quite happy downloading and installing the Add-on from Mozilla. Starting over  with a new profile, as suggested by Otto, is not a solution for me nor I expect for many other thunderbird/lightning users.

I've been using Firefox and the related dependencies on Mageia 5 64bit for a couple of days, works like a charm.

According to arch wiki it's build config to enable it at build time.

https://bbs.archlinux.org/viewtopic.php?id=198536

https://developer.mozilla.org/en-US/docs/Simple_Thunderbird_build#Building_Thunderbird_and_Lightning

(In reply to Otto Leipälä from comment #14)
> According to arch wiki it's build config to enable it at build time.
> 
> https://bbs.archlinux.org/viewtopic.php?id=198536
> 
> https://developer.mozilla.org/en-US/docs/
> Simple_Thunderbird_build#Building_Thunderbird_and_Lightning

Thanks Otto!

I've pushed thunderbird-38.0.1-2.mga4 and thunderbird-38.0.1-2.mga5 to the build system, which should enable the lightning build.  The build system is being slow so it'll be a few hours before they're available, but please test when they are.

I restored my system to its original state with the release versions of thunderbird, lightning and thunderbird-en_GB and then installed the new thunderbird package from testing, thunderbird-38.0.1-2.mga5.x86_64

The update installed cleanly (although urpmi again displayed the GLib-CRITICAL message that I reported in comment #5). 

On opening thunderbird I was able to access my calendar. The list of installed Add-ons confirmed that the update had removed lightning v3 and installed lightning v4. 

I'll do some more testing, but this version of the thunderbird package seems to be OK.

(In reply to David Walser from comment #15)
> (In reply to Otto Leipälä from comment #14)
> > According to arch wiki it's build config to enable it at build time.
> > 
> > https://bbs.archlinux.org/viewtopic.php?id=198536
> > 
> > https://developer.mozilla.org/en-US/docs/
> > Simple_Thunderbird_build#Building_Thunderbird_and_Lightning
> 
> Thanks Otto!
> 
> I've pushed thunderbird-38.0.1-2.mga4 and thunderbird-38.0.1-2.mga5 to the
> build system, which should enable the lightning build.  The build system is
> being slow so it'll be a few hours before they're available, but please test
> when they are.

Awesome works fine here no any problems with lightning.

thunderbird-38.0.1-2.mga5 gives a problem here with connecting to a mailserver using STARTTLS + encrypted password.

Connecting is impossible. This happens on a 32bit Mga5 system.

(The same was seen in caudron, with the Thunderbird update there on a 64bit system)

CC: (none) => marja11

(In reply to Marja van Waes from comment #18)
> thunderbird-38.0.1-2.mga5 gives a problem here with connecting to a
> mailserver using STARTTLS + encrypted password.
> 
> Connecting is impossible. This happens on a 32bit Mga5 system.
> 
> (The same was seen in caudron, with the Thunderbird update there on a 64bit
> system)

server type: IMAP

(In reply to Marja van Waes from comment #19)
> (In reply to Marja van Waes from comment #18)
> > thunderbird-38.0.1-2.mga5 gives a problem here with connecting to a
> > mailserver using STARTTLS + encrypted password.
> > 
> > Connecting is impossible. This happens on a 32bit Mga5 system.
> > 
> > (The same was seen in caudron, with the Thunderbird update there on a 64bit
> > system)
> 
> server type: IMAP

And the same configuration works with older Thunderbird?

CC: (none) => mageia

(In reply to Sander Lepik from comment #20)
> (In reply to Marja van Waes from comment #19)
> > (In reply to Marja van Waes from comment #18)
> > > thunderbird-38.0.1-2.mga5 gives a problem here with connecting to a
> > > mailserver using STARTTLS + encrypted password.
> > > 
> > > Connecting is impossible. This happens on a 32bit Mga5 system.
> > > 
> > > (The same was seen in caudron, with the Thunderbird update there on a 64bit
> > > system)
> > 
> > server type: IMAP
> 
> And the same configuration works with older Thunderbird?

yes

I checked it worked on this Mageia 5 32bits install, right before updating
On the 64bit cauldron machine the older Thunderbird also worked fine for that mailbox, but the update didn't
Note that I don't have issues with other IMAP mailboxes, with SSL/TLS and normal password (not encrypted)

I guess the next thing to try is downloading from upstream and see if their build is similarly broken.

(In reply to David Walser from comment #22)
> I guess the next thing to try is downloading from upstream and see if their
> build is similarly broken.

thunderbird-38.0.1 from upstream has the same problem.

I'll file a bug report (or find an existing one) tomorrow

upstream report:
https://bugzilla.mozilla.org/show_bug.cgi?id=1179002

RedHat has issued an advisory for Firefox on June 2:
https://rhn.redhat.com/errata/RHSA-2015-1207.html

Even though Thunderbird 38.1 was included in the upstream announcements yesterday, the tarball is not yet available.  Hopefully they'll fix Marja's bug.  Anyway, we'll split that off onto another bug and just do (mga4-sqlite3/)nss/firefox in this bug.

RedHat's advisory is missing some CVEs because they were fixed in NSS 3.19.1, which they already issued an advisory for on June 25, but the other CVEs weren't public yet:
https://rhn.redhat.com/errata/RHSA-2015-1185.html

RedHat's advisory also has some extra CVEs, because their previous Firefox update was to 38.0, so they have some CVEs that affected 38.0 but did not affect (our) 31.7.

New NSS 3.19.1 CVEs:
https://www.mozilla.org/en-US/security/advisories/mfsa2015-64/
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-2730
https://www.mozilla.org/en-US/security/advisories/mfsa2015-71/
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-2721

CVEs that affected only FF 38.0 and don't affect us:
CVE-2015-2725 and CVE-2015-2726 from MFSA2015-59 (CVE-2015-2724 does affect us)
CVE-2015-2727 from MFSA2015-60
CVE-2015-2729 from MFSA2015-62
CVE-2015-2731 from MFSA2015-63
CVE-2015-2741 from MFSA2015-67

Finally, these ones affect Firefox but not Thunderbird:
CVE-2015-2728 from MFSA2015-61
CVE-2015-2722 and CVE-2015-2733 from MFSA2015-65
CVE-2015-2743 from MFSA2015-69

Advisory (NSS and Firefox):
========================

Several flaws were found in the processing of malformed web content. A web
page containing malicious content could cause Firefox to crash or,
potentially, execute arbitrary code with the privileges of the user running
Firefox (CVE-2015-2722, CVE-2015-2724, CVE-2015-2728, CVE-2015-2733,
CVE-2015-2734, CVE-2015-2735, CVE-2015-2736, CVE-2015-2737, CVE-2015-2738,
CVE-2015-2739, CVE-2015-2740).

A flaw was discovered in Mozilla's PDF.js PDF file viewer. When combined
with another vulnerability, it could allow execution of arbitrary code with
the privileges of the user running Firefox (CVE-2015-2743).

A vulnerability in the TLS protocol allows a man-in-the-middle attacker to
downgrade vulnerable TLS connections using ephemeral Diffie-Hellman key
exchange to 512-bit export-grade cryptography. This vulnerability is known
as Logjam (CVE-2015-4000).

Security researcher Karthikeyan Bhargavan reported an issue in Network
Security Services (NSS) where the client allows for a ECDHE_ECDSA exchange
where the server does not send its ServerKeyExchange message instead of
aborting the handshake. Instead, the NSS client will take the EC key from the
ECDSA certificate. This violates the TLS protocol and also has some security
implications for forward secrecy. In this situation, the browser thinks it is
engaged in an ECDHE exchange, but has been silently downgraded to a
non-forward secret mixed-ECDH exchange instead. As a result, if False Start
is enabled, the browser will start sending data encrypted under these
non-forward-secret connection keys (CVE-2015-2721).

Mozilla community member Watson Ladd reported that the implementation of
Elliptical Curve Cryptography (ECC) multiplication for Elliptic Curve Digital
Signature Algorithm (ECDSA) signature validation in Network Security Services
(NSS) did not handle exceptional cases correctly. This could potentially
allow for signature forgery (CVE-2015-2730).

The nss package has been updated to version 3.19.2, which fixes issues
related to the minimum key sizes of finite field algorithms, including
CVE-2015-4000. It also fixes CVE-2015-2721 and CVE-2015-2730.

The Mageia 4 sqlite3 package has also been updated to version 3.8.10.2,
fixing an index corruption issue. Mageia 5 already shipped with version
3.8.10.2.

References:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-2721
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-2722
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-2724
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-2728
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-2730
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-2733
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-2734
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-2735
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-2736
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-2737
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-2738
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-2739
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-2740
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-2743
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4000
https://developer.mozilla.org/en-US/docs/Mozilla/Projects/NSS/NSS_3.19.1_release_notes
https://developer.mozilla.org/en-US/docs/Mozilla/Projects/NSS/NSS_3.19.2_release_notes
http://www.sqlite.org/releaselog/3_8_10_2.html
https://www.mozilla.org/en-US/security/advisories/mfsa2015-59/
https://www.mozilla.org/en-US/security/advisories/mfsa2015-61/
https://www.mozilla.org/en-US/security/advisories/mfsa2015-64/
https://www.mozilla.org/en-US/security/advisories/mfsa2015-65/
https://www.mozilla.org/en-US/security/advisories/mfsa2015-66/
https://www.mozilla.org/en-US/security/advisories/mfsa2015-69/
https://www.mozilla.org/en-US/security/advisories/mfsa2015-70/
https://www.mozilla.org/en-US/security/advisories/mfsa2015-71/
https://www.mozilla.org/en-US/security/known-vulnerabilities/firefox-esr/
https://rhn.redhat.com/errata/RHSA-2015-1185.html
https://rhn.redhat.com/errata/RHSA-2015-1207.html
========================

Updated packages in core/updates_testing:
========================
libsqlite3_0-3.8.10.2-1.mga4
libsqlite3-devel-3.8.10.2-1.mga4
libsqlite3-static-devel-3.8.10.2-1.mga4
sqlite3-tools-3.8.10.2-1.mga4
lemon-3.8.10.2-1.mga4
sqlite3-tcl-3.8.10.2-1.mga4
nss-3.19.2-1.mga4
nss-doc-3.19.2-1.mga4
libnss3-3.19.2-1.mga4
libnss-devel-3.19.2-1.mga4
libnss-static-devel-3.19.2-1.mga4
firefox-38.1.0-1.mga4
firefox-devel-38.1.0-1.mga4
firefox-af-38.1.0-1.mga4
firefox-ar-38.1.0-1.mga4
firefox-as-38.1.0-1.mga4
firefox-ast-38.1.0-1.mga4
firefox-az-38.1.0-1.mga4
firefox-be-38.1.0-1.mga4
firefox-bg-38.1.0-1.mga4
firefox-bn_IN-38.1.0-1.mga4
firefox-bn_BD-38.1.0-1.mga4
firefox-br-38.1.0-1.mga4
firefox-bs-38.1.0-1.mga4
firefox-ca-38.1.0-1.mga4
firefox-cs-38.1.0-1.mga4
firefox-cy-38.1.0-1.mga4
firefox-da-38.1.0-1.mga4
firefox-de-38.1.0-1.mga4
firefox-el-38.1.0-1.mga4
firefox-en_GB-38.1.0-1.mga4
firefox-en_US-38.1.0-1.mga4
firefox-en_ZA-38.1.0-1.mga4
firefox-eo-38.1.0-1.mga4
firefox-es_AR-38.1.0-1.mga4
firefox-es_CL-38.1.0-1.mga4
firefox-es_ES-38.1.0-1.mga4
firefox-es_MX-38.1.0-1.mga4
firefox-et-38.1.0-1.mga4
firefox-eu-38.1.0-1.mga4
firefox-fa-38.1.0-1.mga4
firefox-ff-38.1.0-1.mga4
firefox-fi-38.1.0-1.mga4
firefox-fr-38.1.0-1.mga4
firefox-fy_NL-38.1.0-1.mga4
firefox-ga_IE-38.1.0-1.mga4
firefox-gd-38.1.0-1.mga4
firefox-gl-38.1.0-1.mga4
firefox-gu_IN-38.1.0-1.mga4
firefox-he-38.1.0-1.mga4
firefox-hi_IN-38.1.0-1.mga4
firefox-hr-38.1.0-1.mga4
firefox-hsb-38.1.0-1.mga4
firefox-hu-38.1.0-1.mga4
firefox-hy_AM-38.1.0-1.mga4
firefox-id-38.1.0-1.mga4
firefox-is-38.1.0-1.mga4
firefox-it-38.1.0-1.mga4
firefox-ja-38.1.0-1.mga4
firefox-kk-38.1.0-1.mga4
firefox-km-38.1.0-1.mga4
firefox-kn-38.1.0-1.mga4
firefox-ko-38.1.0-1.mga4
firefox-lij-38.1.0-1.mga4
firefox-lt-38.1.0-1.mga4
firefox-lv-38.1.0-1.mga4
firefox-mai-38.1.0-1.mga4
firefox-mk-38.1.0-1.mga4
firefox-ml-38.1.0-1.mga4
firefox-mr-38.1.0-1.mga4
firefox-ms-38.1.0-1.mga4
firefox-nl-38.1.0-1.mga4
firefox-or-38.1.0-1.mga4
firefox-pa_IN-38.1.0-1.mga4
firefox-pl-38.1.0-1.mga4
firefox-pt_BR-38.1.0-1.mga4
firefox-pt_PT-38.1.0-1.mga4
firefox-ro-38.1.0-1.mga4
firefox-ru-38.1.0-1.mga4
firefox-si-38.1.0-1.mga4
firefox-sk-38.1.0-1.mga4
firefox-sl-38.1.0-1.mga4
firefox-sq-38.1.0-1.mga4
firefox-sr-38.1.0-1.mga4
firefox-sv_SE-38.1.0-1.mga4
firefox-ta-38.1.0-1.mga4
firefox-te-38.1.0-1.mga4
firefox-th-38.1.0-1.mga4
firefox-tr-38.1.0-1.mga4
firefox-uk-38.1.0-1.mga4
firefox-uz-38.1.0-1.mga4
firefox-vi-38.1.0-1.mga4
firefox-xh-38.1.0-1.mga4
firefox-zh_CN-38.1.0-1.mga4
firefox-zh_TW-38.1.0-1.mga4
nss-3.19.2-1.mga5
nss-doc-3.19.2-1.mga5
libnss3-3.19.2-1.mga5
libnss-devel-3.19.2-1.mga5
libnss-static-devel-3.19.2-1.mga5
firefox-38.1.0-1.mga5
firefox-devel-38.1.0-1.mga5
firefox-af-38.1.0-1.mga5
firefox-ar-38.1.0-1.mga5
firefox-as-38.1.0-1.mga5
firefox-ast-38.1.0-1.mga5
firefox-az-38.1.0-1.mga5
firefox-be-38.1.0-1.mga5
firefox-bg-38.1.0-1.mga5
firefox-bn_IN-38.1.0-1.mga5
firefox-bn_BD-38.1.0-1.mga5
firefox-br-38.1.0-1.mga5
firefox-bs-38.1.0-1.mga5
firefox-ca-38.1.0-1.mga5
firefox-cs-38.1.0-1.mga5
firefox-cy-38.1.0-1.mga5
firefox-da-38.1.0-1.mga5
firefox-de-38.1.0-1.mga5
firefox-el-38.1.0-1.mga5
firefox-en_GB-38.1.0-1.mga5
firefox-en_US-38.1.0-1.mga5
firefox-en_ZA-38.1.0-1.mga5
firefox-eo-38.1.0-1.mga5
firefox-es_AR-38.1.0-1.mga5
firefox-es_CL-38.1.0-1.mga5
firefox-es_ES-38.1.0-1.mga5
firefox-es_MX-38.1.0-1.mga5
firefox-et-38.1.0-1.mga5
firefox-eu-38.1.0-1.mga5
firefox-fa-38.1.0-1.mga5
firefox-ff-38.1.0-1.mga5
firefox-fi-38.1.0-1.mga5
firefox-fr-38.1.0-1.mga5
firefox-fy_NL-38.1.0-1.mga5
firefox-ga_IE-38.1.0-1.mga5
firefox-gd-38.1.0-1.mga5
firefox-gl-38.1.0-1.mga5
firefox-gu_IN-38.1.0-1.mga5
firefox-he-38.1.0-1.mga5
firefox-hi_IN-38.1.0-1.mga5
firefox-hr-38.1.0-1.mga5
firefox-hsb-38.1.0-1.mga5
firefox-hu-38.1.0-1.mga5
firefox-hy_AM-38.1.0-1.mga5
firefox-id-38.1.0-1.mga5
firefox-is-38.1.0-1.mga5
firefox-it-38.1.0-1.mga5
firefox-ja-38.1.0-1.mga5
firefox-kk-38.1.0-1.mga5
firefox-km-38.1.0-1.mga5
firefox-kn-38.1.0-1.mga5
firefox-ko-38.1.0-1.mga5
firefox-lij-38.1.0-1.mga5
firefox-lt-38.1.0-1.mga5
firefox-lv-38.1.0-1.mga5
firefox-mai-38.1.0-1.mga5
firefox-mk-38.1.0-1.mga5
firefox-ml-38.1.0-1.mga5
firefox-mr-38.1.0-1.mga5
firefox-ms-38.1.0-1.mga5
firefox-nl-38.1.0-1.mga5
firefox-or-38.1.0-1.mga5
firefox-pa_IN-38.1.0-1.mga5
firefox-pl-38.1.0-1.mga5
firefox-pt_BR-38.1.0-1.mga5
firefox-pt_PT-38.1.0-1.mga5
firefox-ro-38.1.0-1.mga5
firefox-ru-38.1.0-1.mga5
firefox-si-38.1.0-1.mga5
firefox-sk-38.1.0-1.mga5
firefox-sl-38.1.0-1.mga5
firefox-sq-38.1.0-1.mga5
firefox-sr-38.1.0-1.mga5
firefox-sv_SE-38.1.0-1.mga5
firefox-ta-38.1.0-1.mga5
firefox-te-38.1.0-1.mga5
firefox-th-38.1.0-1.mga5
firefox-tr-38.1.0-1.mga5
firefox-uk-38.1.0-1.mga5
firefox-uz-38.1.0-1.mga5
firefox-vi-38.1.0-1.mga5
firefox-xh-38.1.0-1.mga5
firefox-zh_CN-38.1.0-1.mga5
firefox-zh_TW-38.1.0-1.mga5

from SRPMS:
sqlite3-3.8.10.2-1.mga4.src.rpm
nss-3.19.2-1.mga4.src.rpm
firefox-38.1.0-1.mga4.src.rpm
firefox-l10n-38.1.0-1.mga4.src.rpm
nss-3.19.2-1.mga5.src.rpm
firefox-38.1.0-1.mga5.src.rpm
firefox-l10n-38.1.0-1.mga5.src.rpm

URL: (none) => http://lwn.net/Vulnerabilities/650129/

The Cauldron build failed, so this is not available yet:
http://pkgsubmit.mageia.org/uploads/failure/cauldron/core/release/20150704014129.luigiwalser.valstar.29279/log/firefox-38.1.0-1.mga6/build.0.20150704014204.log

Summary: Firefox and Thunderbird 38 => Firefox 38.1
Source RPM: firefox, thunderbird, nss => firefox, nss
Whiteboard: MGA4TOO has_procedure => MGA4TOO has_procedure feedback

This one is ready to go.  Enjoy :o)

Whiteboard: MGA4TOO has_procedure feedback => MGA4TOO has_procedure

Tested mga5-64, the usual battery:
general browsing, sunspider for javascript, javatester for java, youtube for flash, all OK.

CC: (none) => wrw105
Whiteboard: MGA4TOO has_procedure => MGA4TOO has_procedure mga5-64-ok

In VirtualBox, M4, KDE, 32-bit

Package(s) under test:
firefox firefox-en_GB libnss3 libsqlite3_0 sqlite3-tools

default install of firefox et al

[root@localhost wilcal]# urpmi firefox
Package firefox-31.7.0-1.mga4.i586 is already installed
[root@localhost wilcal]# urpmi firefox-en_GB
Package firefox-en_GB-31.7.0-1.mga4.noarch is already installed
[root@localhost wilcal]# urpmi libnss3
Package libnss3-3.19.0-1.mga4.i586 is already installed
[root@localhost wilcal]# urpmi libsqlite3_0
Package libsqlite3_0-3.8.10.1-1.mga4.i586 is already installed
[root@localhost wilcal]# urpmi sqlite3-tools
Package sqlite3-tools-3.8.10.1-1.mga4.i586 is already installed

Firefox works, common websites are accessible, YouTube/Vimeo videos play,
common plugins are active.

install firefox, firefox-en_GB, libnss3, libsqlite3_0, sqlite3-tools
from updates_testing

[root@localhost wilcal]# urpmi firefox
Package firefox-38.0.1-1.mga4.i586 is already installed
[root@localhost wilcal]# urpmi firefox-en_GB
Package firefox-en_GB-38.0.1-1.mga4.noarch is already installed
[root@localhost wilcal]# urpmi libnss3
Package libnss3-3.19.2-1.mga4.i586 is already installed
[root@localhost wilcal]# urpmi libsqlite3_0
Package libsqlite3_0-3.8.10.2-1.mga4.i586 is already installed
[root@localhost wilcal]# urpmi sqlite3-tools
Package sqlite3-tools-3.8.10.2-1.mga4.i586 is already installed

Firefox works, common websites are accessible, YouTube/Vimeo videos play,
common plugins are active.

Test platform:
Intel Core i7-2600K Sandy Bridge 3.4GHz
GIGABYTE GA-Z68X-UD3-B3 LGA 1155 MoBo
GIGABYTE GV-N440D3-1GI Nvidia GeForce GT 440 (Fermi) 1GB
RTL8111/8168B PCI Express 1Gbit Ethernet
DRAM 16GB (4 x 4GB)
Mageia 4 64-bit, Nvidia driver
virtualbox-4.3.26-1.mga4.x86_64
virtualbox-guest-additions-4.3.26-1.mga4.x86_64

CC: (none) => wilcal.int

Tested mga5-32 as above, including acid3, which I forgot to mention in previous report.  All OK.

Whiteboard: MGA4TOO has_procedure mga5-64-ok => MGA4TOO has_procedure mga5-64-ok mga5-32-ok

Everything looks good to me so far (Mageia 4 i586) except YouTube.  It'll play a video fine, but on the front page, a search results page, or on the right side of any video where it should show a small screenshot of each video listed, those screenshots do not appear.

(In reply to David Walser from comment #31)
> Everything looks good to me so far (Mageia 4 i586) except YouTube.  It'll
> play a video fine, but on the front page, a search results page, or on the
> right side of any video where it should show a small screenshot of each
> video listed, those screenshots do not appear.

Nevermind, my fault.  AdBlock Plus issue.  All's good now ;o)

Whiteboard: MGA4TOO has_procedure mga5-64-ok mga5-32-ok => MGA4TOO has_procedure mga5-64-ok mga5-32-ok mga4-32-ok

In VirtualBox, M4, KDE, 64-bit

Package(s) under test:
firefox firefox-en_GB lib64nss3 lib64sqlite3_0 sqlite3-tools

default install of firefox et al

[root@localhost wilcal]# urpmi firefox
Package firefox-31.7.0-1.mga4.x86_64 is already installed
[root@localhost wilcal]# urpmi firefox-en_GB
Package firefox-en_GB-31.7.0-1.mga4.noarch is already installed
[root@localhost wilcal]# urpmi lib64nss3
Package lib64nss3-3.19.0-1.mga4.x86_64 is already installed
[root@localhost wilcal]# urpmi lib64sqlite3_0
Package lib64sqlite3_0-3.8.10.1-1.mga4.x86_64 is already installed
[root@localhost wilcal]# urpmi sqlite3-tools
Package sqlite3-tools-3.8.10.1-1.mga4.x86_64 is already installed

Firefox works, common websites are accessible, YouTube/Vimeo videos play,
common plugins are active.

install firefox, firefox-en_GB, lib64nss3, lib64sqlite3_0, sqlite3-tools
from updates_testing

[root@localhost wilcal]# urpmi firefox
Package firefox-38.0.1-1.mga4.i586 is already installed
[root@localhost wilcal]# urpmi firefox-en_GB
Package firefox-en_GB-38.0.1-1.mga4.noarch is already installed
[root@localhost wilcal]# urpmi lib64nss3
Package libnss3-3.19.2-1.mga4.i586 is already installed
[root@localhost wilcal]# urpmi lib64sqlite3_0
Package libsqlite3_0-3.8.10.2-1.mga4.i586 is already installed
[root@localhost wilcal]# urpmi sqlite3-tools
Package sqlite3-tools-3.8.10.2-1.mga4.i586 is already installed

Firefox works, common websites are accessible, YouTube/Vimeo videos play,
common plugins are active.

Test platform:
Intel Core i7-2600K Sandy Bridge 3.4GHz
GIGABYTE GA-Z68X-UD3-B3 LGA 1155 MoBo
GIGABYTE GV-N440D3-1GI Nvidia GeForce GT 440 (Fermi) 1GB
RTL8111/8168B PCI Express 1Gbit Ethernet
DRAM 16GB (4 x 4GB)
Mageia 4 64-bit, Nvidia driver
virtualbox-4.3.26-1.mga4.x86_64
virtualbox-guest-additions-4.3.26-1.mga4.x86_64

Testing complete and advisory committed to svn.

Someone from the sysadmin team please push 16232 to updates.

Keywords: (none) => validated_update
Whiteboard: MGA4TOO has_procedure mga5-64-ok mga5-32-ok mga4-32-ok => MGA4TOO has_procedure mga5-64-ok mga5-32-ok mga4-32-ok mga4-64-ok advisory
CC: (none) => davidwhodgins, sysadmin-bugs

In VirtualBox, M5, KDE, 32-bit

Package(s) under test:
firefox firefox-en_GB libnss3 libsqlite3_0 sqlite3-tools

default install of firefox et al

[root@localhost wilcal]# urpmi firefox
Package firefox-31.7.0-1.mga5.i586 is already installed
[root@localhost wilcal]# urpmi firefox-en_GB
Package firefox-en_GB-31.7.0-1.mga5.noarch is already installed

Firefox works, common websites are accessible, YouTube/Vimeo videos play,
common plugins are active.

install firefox, firefox-en_GB, libnss3, libsqlite3_0, sqlite3-tools
from updates_testing

[root@localhost wilcal]# urpmi firefox
Package firefox-38.0.1-1.mga5.i586 is already installed
[root@localhost wilcal]# urpmi firefox-en_GB
Package firefox-en_GB-38.0.1-1.mga5.noarch is already installed

Firefox works, common websites are accessible, YouTube/Vimeo videos play,
common plugins are active.

Test platform:
Intel Core i7-2600K Sandy Bridge 3.4GHz
GIGABYTE GA-Z68X-UD3-B3 LGA 1155 MoBo
GIGABYTE GV-N440D3-1GI Nvidia GeForce GT 440 (Fermi) 1GB
RTL8111/8168B PCI Express 1Gbit Ethernet
DRAM 16GB (4 x 4GB)
Mageia 4 64-bit, Nvidia driver
virtualbox-4.3.26-1.mga4.x86_64
virtualbox-guest-additions-4.3.26-1.mga4.x86_64

In VirtualBox, M5, KDE, 64-bit

Package(s) under test:
firefox firefox-en_GB

default install of firefox et al

[root@localhost wilcal]# urpmi firefox
Package firefox-31.7.0-1.mga4.x86_64 is already installed
[root@localhost wilcal]# urpmi firefox-en_GB
Package firefox-en_GB-31.7.0-1.mga4.noarch is already installed

Firefox works, common websites are accessible, YouTube/Vimeo videos play,
common plugins are active.

install firefox, firefox-en_GB, from updates_testing

[root@localhost wilcal]# urpmi firefox
Package firefox-38.0.1-1.mga5.x86_64 is already installed
[root@localhost wilcal]# urpmi firefox-en_GB
Package firefox-en_GB-38.0.1-1.mga5.noarch is already installed

Firefox works, common websites are accessible, YouTube/Vimeo videos play,
common plugins are active.

Test platform:
Intel Core i7-2600K Sandy Bridge 3.4GHz
GIGABYTE GA-Z68X-UD3-B3 LGA 1155 MoBo
GIGABYTE GV-N440D3-1GI Nvidia GeForce GT 440 (Fermi) 1GB
RTL8111/8168B PCI Express 1Gbit Ethernet
DRAM 16GB (4 x 4GB)
Mageia 4 64-bit, Nvidia driver
virtualbox-4.3.26-1.mga4.x86_64
virtualbox-guest-additions-4.3.26-1.mga4.x86_64

Seems pretty clean. Check your addon's to see if they have to be reinstalled.
This one did: https://addons.mozilla.org/en-US/firefox/addon/password-exporter/

An update for this issue has been pushed to Mageia Updates repository.

http://advisories.mageia.org/MGASA-2015-0268.html

Status: NEW => RESOLVED
Resolution: (none) => FIXED

LWN reference for CVE-2015-2721 and CVE-2015-2730:
http://lwn.net/Vulnerabilities/650300/

There are reports that the Mageia 4 update is missing translations. Mirror issue or really missing translations? Eg nb_NO and nn_NO

(In reply to Samuel VERSCHELDE from comment #40)
> There are reports that the Mageia 4 update is missing translations. Mirror
> issue or really missing translations? Eg nb_NO and nn_NO

We don't have those packaged for 38.1.  According to the information in the firefox-l10n SPEC, we're supposed to disable any that don't have a corresponding locales package.  So, the real bug here is in glibc that it doesn't have a locales-nb or locales-nn package.

In the meantime, people wanting those ones can use:
ftp://ftp.mozilla.org/pub/mozilla.org/firefox/releases/38.1.0esr/linux-i686/xpi/nb-NO.xpi
ftp://ftp.mozilla.org/pub/mozilla.org/firefox/releases/38.1.0esr/linux-i686/xpi/nn-NO.xpi

Um, you are kidding, right ?

the ESR 31 had norwegian translations, so the ESR 38 needs them too...


and:

urpmq --provides locales-no
locales-nb[== 2.20-4.mga5]
locales-nn[== 2.20-4.mga5]
locales-no[== 2.20-4.mga5]
locales-no(x86-64)[== 2.20-4.mga5]

CC: (none) => tmb

No, I'm not kidding.

I don't know where you're seeing that.

We don't have locales-nb or locales-nn, like I said.  The only ones with n* are:
 locales-nds-2.20-4.mga5.i586.rpm
 locales-ne-2.20-4.mga5.i586.rpm
 locales-nhn-2.20-4.mga5.i586.rpm
 locales-niu-2.20-4.mga5.i586.rpm
 locales-nl-2.20-4.mga5.i586.rpm
 locales-no-2.20-4.mga5.i586.rpm
 locales-nr-2.20-4.mga5.i586.rpm
 locales-nso-2.20-4.mga5.i586.rpm

That's all I know.  I also read something that said that urpmi somehow knows which firefox-l10n package to install based on which locales package you have installed, so you have to have a matching one.  I don't have any history with this package and only got stuck updating it because nobody else would help this time.  You can complain to those who do have a history with and/or better understanding of it if there's something I missed (but please do let me know).

(In reply to Thomas Backlund from comment #42)
> Um, you are kidding, right ?
> 
> the ESR 31 had norwegian translations, so the ESR 38 needs them too...
> 
> 
> and:
> 
> urpmq --provides locales-no
> locales-nb[== 2.20-4.mga5]
> locales-nn[== 2.20-4.mga5]
> locales-no[== 2.20-4.mga5]
> locales-no(x86-64)[== 2.20-4.mga5]

This is mga5, not mga4. However I agree that losing the translations from ESR 31 to ESR 38 is a regression and we should fix it.

(In reply to Thomas Backlund from comment #42)
> urpmq --provides locales-no
> locales-nb[== 2.20-4.mga5]
> locales-nn[== 2.20-4.mga5]
> locales-no[== 2.20-4.mga5]
> locales-no(x86-64)[== 2.20-4.mga5]

This is not about mga4 vs mga5, but locales-nn and locales-nb are virtual provides of the locales-no package.

Anyway, this should be discussed in another bug report as this one is closed and won't be reopened.

(In reply to David Walser from comment #43)
> No, I'm not kidding.
> 
> I don't know where you're seeing that.
> 
> We don't have locales-nb or locales-nn, like I said.  The only ones with n*
> are:
>  locales-nds-2.20-4.mga5.i586.rpm
>  locales-ne-2.20-4.mga5.i586.rpm
>  locales-nhn-2.20-4.mga5.i586.rpm
>  locales-niu-2.20-4.mga5.i586.rpm
>  locales-nl-2.20-4.mga5.i586.rpm
>  locales-no-2.20-4.mga5.i586.rpm
>  locales-nr-2.20-4.mga5.i586.rpm
>  locales-nso-2.20-4.mga5.i586.rpm
> 

The packages are there as virtual provides, and has been for years

Oh, and disabling packages in an update should have raised a red flag...

> That's all I know.  I also read something that said that urpmi somehow knows
> which firefox-l10n package to install based on which locales package you
> have installed, so you have to have a matching one. 

Yes it does, and the virtual provides covers that...

>  I don't have any
> history with this package and only got stuck updating it because nobody else
> would help this time. 

Yeah, that it not your fault...

> You can complain to those who do have a history with
> and/or better understanding of it if there's something I missed (but please
> do let me know).

Well... many locales packages have virtual provides to cover several language variants in the same package so drakx can add the matching locales vs translations...

so the check cant be done against physical rpms only, it need to verify virtual provides too


(In reply to Samuel VERSCHELDE from comment #44)
> (In reply to Thomas Backlund from comment #42)
> > Um, you are kidding, right ?
> > 
> > the ESR 31 had norwegian translations, so the ESR 38 needs them too...
> > 
> > 
> > and:
> > 
> > urpmq --provides locales-no
> > locales-nb[== 2.20-4.mga5]
> > locales-nn[== 2.20-4.mga5]
> > locales-no[== 2.20-4.mga5]
> > locales-no(x86-64)[== 2.20-4.mga5]
> 
> This is mga5, not mga4. However I agree that losing the translations from
> ESR 31 to ESR 38 is a regression and we should fix it.

rpm -qp --provides locales-no-2.18-2.mga4.x86_64.rpm 
locales-nn = 2.18-2.mga4
locales-nb = 2.18-2.mga4
locales-no = 2.18-2.mga4
locales-no(x86-64) = 2.18-2.mga4

(In reply to Thomas Backlund from comment #47)
> The packages are there as virtual provides, and has been for years

So those are the only languages that work this way.  Exceptions like that are not helpful.

> Oh, and disabling packages in an update should have raised a red flag...

We tested 38.0.1 before moving onto 38.1 and releasing it.  It would have been nice if someone had raised this issue then.  This wasn't the only change I had to make in l10n, and I still believe the other changes were correct.  This particular one comes from some undocumented exception that I had no way of knowing about.

> Yes it does, and the virtual provides covers that...

I'm glad you know that.  I have no idea how it works.

> Yeah, that it not your fault...

I'm really dismayed at the increasing lack of help I get from packagers for security updates :o(

> Well... many locales packages have virtual provides to cover several
> language variants in the same package so drakx can add the matching locales
> vs translations...
> 
> so the check cant be done against physical rpms only, it need to verify
> virtual provides too

With regards to the languages in the Mozilla l10n packages, I wasn't aware of any other such exceptions.  I did just find one more by checking package provides.  The "an" language is provided by locales-es, so I'll have to re-enable that one too.

Too add "an" I need a language name.  What language does "an" correspond to?

(In reply to David Walser from comment #49)
> Too add "an" I need a language name.  What language does "an" correspond to?

Pascal just told me it's Aragonese.  Fixing this in SVN now.  It'll be fixed in our next update.

Are latest comments in bug 12195 related?

(In reply to Samuel VERSCHELDE from comment #51)
> Are latest comments in bug 12195 related?

No, but that bug should be fixed now that there's a firefox-en_US package.  The dependency error recently posted there looks invalid.