Mozilla has released Thunderbird 115.13 on July 16: https://www.thunderbird.net/en-US/thunderbird/115.13.0/releasenotes/ Security issues fixed: https://www.mozilla.org/en-US/security/advisories/mfsa2024-31/
CVE: (none) => CVE-2024-6600, CVE-2024-6601, CVE-2024-6602, CVE-2024-6603, CVE-2024-6604Whiteboard: (none) => MGA9TOOSource RPM: (none) => thunderbird, thunderbird-l10n
Assignee: bugsquad => nicolas.salguero
Suggested advisory: ======================== The updated packages fix a security vulnerability: Memory corruption in WebGL API. (CVE-2024-6600) Race condition in permission assignment. (CVE-2024-6601) Memory corruption in NSS. (CVE-2024-6602) Memory corruption in thread creation. (CVE-2024-6603) Memory safety bugs fixed in Firefox 128, Firefox ESR 115.13, and Thunderbird 115.13. (CVE-2024-6604) References: https://www.thunderbird.net/en-US/thunderbird/115.13.0/releasenotes/ https://www.mozilla.org/en-US/security/advisories/mfsa2024-31/ ======================== Updated packages in core/updates_testing: ======================== thunderbird-115.13.0-1.mga9 thunderbird-af-115.13.0-1.mga9 thunderbird-ar-115.13.0-1.mga9 thunderbird-ast-115.13.0-1.mga9 thunderbird-be-115.13.0-1.mga9 thunderbird-bg-115.13.0-1.mga9 thunderbird-br-115.13.0-1.mga9 thunderbird-ca-115.13.0-1.mga9 thunderbird-cs-115.13.0-1.mga9 thunderbird-cy-115.13.0-1.mga9 thunderbird-da-115.13.0-1.mga9 thunderbird-de-115.13.0-1.mga9 thunderbird-dsb-115.13.0-1.mga9 thunderbird-el-115.13.0-1.mga9 thunderbird-en_CA-115.13.0-1.mga9 thunderbird-en_GB-115.13.0-1.mga9 thunderbird-en_US-115.13.0-1.mga9 thunderbird-es_AR-115.13.0-1.mga9 thunderbird-es_ES-115.13.0-1.mga9 thunderbird-es_MX-115.13.0-1.mga9 thunderbird-et-115.13.0-1.mga9 thunderbird-eu-115.13.0-1.mga9 thunderbird-fi-115.13.0-1.mga9 thunderbird-fr-115.13.0-1.mga9 thunderbird-fy_NL-115.13.0-1.mga9 thunderbird-ga_IE-115.13.0-1.mga9 thunderbird-gd-115.13.0-1.mga9 thunderbird-gl-115.13.0-1.mga9 thunderbird-he-115.13.0-1.mga9 thunderbird-hr-115.13.0-1.mga9 thunderbird-hsb-115.13.0-1.mga9 thunderbird-hu-115.13.0-1.mga9 thunderbird-hy_AM-115.13.0-1.mga9 thunderbird-id-115.13.0-1.mga9 thunderbird-is-115.13.0-1.mga9 thunderbird-it-115.13.0-1.mga9 thunderbird-ja-115.13.0-1.mga9 thunderbird-ka-115.13.0-1.mga9 thunderbird-kab-115.13.0-1.mga9 thunderbird-kk-115.13.0-1.mga9 thunderbird-ko-115.13.0-1.mga9 thunderbird-lt-115.13.0-1.mga9 thunderbird-lv-115.13.0-1.mga9 thunderbird-ms-115.13.0-1.mga9 thunderbird-nb_NO-115.13.0-1.mga9 thunderbird-nl-115.13.0-1.mga9 thunderbird-nn_NO-115.13.0-1.mga9 thunderbird-pa_IN-115.13.0-1.mga9 thunderbird-pl-115.13.0-1.mga9 thunderbird-pt_BR-115.13.0-1.mga9 thunderbird-pt_PT-115.13.0-1.mga9 thunderbird-ro-115.13.0-1.mga9 thunderbird-ru-115.13.0-1.mga9 thunderbird-sk-115.13.0-1.mga9 thunderbird-sl-115.13.0-1.mga9 thunderbird-sq-115.13.0-1.mga9 thunderbird-sr-115.13.0-1.mga9 thunderbird-sv_SE-115.13.0-1.mga9 thunderbird-th-115.13.0-1.mga9 thunderbird-tr-115.13.0-1.mga9 thunderbird-uk-115.13.0-1.mga9 thunderbird-uz-115.13.0-1.mga9 thunderbird-vi-115.13.0-1.mga9 thunderbird-zh_CN-115.13.0-1.mga9 thunderbird-zh_TW-115.13.0-1.mga9 from SRPMS: thunderbird-115.13.0-1.mga9.src.rpm thunderbird-l10n-115.13.0-1.mga9.src.rpm
Assignee: nicolas.salguero => qa-bugsVersion: Cauldron => 9Status: NEW => ASSIGNEDWhiteboard: MGA9TOO => (none)
CVE-2024-6602 shouldn't be in this advisory since we're not building with the bundled nss.
Suggested advisory: ======================== The updated packages fix a security vulnerability: Memory corruption in WebGL API. (CVE-2024-6600) Race condition in permission assignment. (CVE-2024-6601) Memory corruption in thread creation. (CVE-2024-6603) Memory safety bugs fixed in Firefox 128, Firefox ESR 115.13, and Thunderbird 115.13. (CVE-2024-6604) References: https://www.thunderbird.net/en-US/thunderbird/115.13.0/releasenotes/ https://www.mozilla.org/en-US/security/advisories/mfsa2024-31/
CVE: CVE-2024-6600, CVE-2024-6601, CVE-2024-6602, CVE-2024-6603, CVE-2024-6604 => CVE-2024-6600, CVE-2024-6601, CVE-2024-6603, CVE-2024-6604
Keywords: (none) => advisory
mga9-64 OK Plasma X11 Intel I7-870, kernel-desktop-6.6.37-1 Nvidia GTX750 with nvidia-current Closed Thunderbird, updated, started: Thunderbird just keep working OK: Opened tabs restored Settings and local mail kept Swedish locale IMAP (offline, IMAP to synk to server) SMTP Sent mail with inline jpg, and attached pdf Received mail with inline jpg, and attached pdf, viewed and årinted the pdf. I do not use calendar nor tasks or filters
CC: (none) => fri
Mageia 9 - 64 Installed in two computers. Works fine. Send and receive ok. Spanish translation ok. Settings ok. Signatures ok. POP3 and IMAP accouns ok Calendar and task ok. Greetings!
CC: (none) => joselp
CC: (none) => tarazed25
Len, you are a well known user of thunderbird, please give a look to this
In reply to katnatek comment 6; Will do. Just back and catching up with 400 emails and a dead nvidia machine.
mga9, x64 Updated to thunderbird-115.13.0-1.mga9 thunderbird-en_CA-115.13.0-1.mga9 thunderbird-en_GB-115.13.0-1.mga9 Restarted thunderbird without any issues. Address book functioning. POP3 gmail account - sent an email and read incoming mail. All Local Folders present and correct. Interface responds as normal. Clicking on a headline in Ruby Weekly opened a link in Firefox. Saved various messages to local folders.... Not a calendar user but set up an alarm for today a few minutes ahead and that tripped OK. So far it works normally.
MGA9-64 Plasma Wayland on HP-Pavillion No installation issues, overwriting previous version. Displaying calendar-info, sending and receiving e-mail with and wothout attachment, all work OK.
CC: (none) => herman.viaene
Would be good to have a test on 32 bit for this important application.
(In reply to Morgan Leijström from comment #10) > Would be good to have a test on 32 bit for this important application. Lot of previous rounds were validated with just 64bit test Call to Thomas to take the decision
Whiteboard: (none) => MGA9-64-OKCC: (none) => andrewsfarm
The 64-bit US English version has been working for me for a couple of days now. I don't normally run Thunderbird in 32-bit, but just for the sake of thoroughness, I installed it in a 32-bit Xfce VM, and ran it. The initial setup screen came up easily. I didn't take it any farther than that. Adding a 32-bit OK on that basis, and validating.
Keywords: (none) => validated_updateWhiteboard: MGA9-64-OK => MGA9-64-OK MGA9-32-OKCC: (none) => sysadmin-bugs
An update for this issue has been pushed to the Mageia Updates repository. https://advisories.mageia.org/MGASA-2024-0274.html
Status: ASSIGNED => RESOLVEDResolution: (none) => FIXED