Whats New on Icedove?

What's changed inside the buildsystem or on the debian specific part? Take a look into the Changelog!


Icedove 31.8.0

http://www.mozilla.org/en-US/thunderbird/31.8.0/releasenotes/

New Features, Changes, Fixes

No new features there added.

Securityfixes

MFSA 2015-71

NSS incorrectly permits skipping of ServerKeyExchange

MFSA 2015-70

NSS accepts export-length DHE keys with regular DHE cipher suites

MFSA 2015-66

Vulnerabilities found through code inspection

MFSA 2015-59

Miscellaneous memory safety hazards (rv:39.0 / rv:31.8 / rv:38.1)


Icedove 31.7.0

http://www.mozilla.org/en-US/thunderbird/31.7.0/releasenotes/

New Features, Changes, Fixes

No new features there added.

Securityfixes

MFSA 2015-57

Privilege escalation through IPC channel messages

MFSA 2015-54

Buffer overflow when parsing compressed XML

MFSA 2015-51

Use-after-free during text processing with vertical text enabled

MFSA 2015-48

Buffer overflow with SVG content and CSS

MFSA 2015-47

Buffer overflow parsing H.264 video with Linux Gstreamer

MFSA 2015-46

Miscellaneous memory safety hazards (rv:38.0 / rv:31.7)


Icedove 31.6.0

http://www.mozilla.org/en-US/thunderbird/31.6.0/releasenotes/

New Features, Changes, Fixes

No new features there added.

Securityfixes

MFSA 2015-40

Same-origin bypass through anchor navigation

MFSA 2015-37

CORS requests should not follow 30x redirections after preflight

MFSA 2015-33

resource:// documents can load privileged pages

MFSA 2015-31

Use-after-free when using the Fluendo MP3 GStreamer plugin

MFSA 2015-30

Miscellaneous memory safety hazards (rv:37.0 / rv:31.6)


Icedove 31.5.0

http://www.mozilla.org/en-US/thunderbird/31.5.0/releasenotes/

New Features, Changes, Fixes

Securityfixes

MFSA 2015-24

Reading of local files through manipulation of form autocomplete

MFSA 2015-19

Out-of-bounds read and write while rendering SVG content

MFSA 2015-16

Use-after-free in IndexedDB

MFSA 2015-01

Miscellaneous memory safety hazards (rv:36.0 / rv:31.5)


Icedove 31.4.0

http://www.mozilla.org/en-US/thunderbird/31.4.0/releasenotes/

New Features, Changes, Fixes

Securityfixes

MFSA 2015-04

Cookie injection through Proxy Authenticate responses

MFSA 2015-03

sendBeacon requests lack an Origin header

MFSA 2015-01

Miscellaneous memory safety hazards (rv:35.0 / rv:31.4)


Icedove 31.3.0

http://www.mozilla.org/en-US/thunderbird/31.3.0/releasenotes/

New Features, Changes, Fixes

No new features there added.

Securityfixes

MFSA 2014-89

Bad casting from the BasicThebesLayer to BasicContainerLayer

MFSA 2014-88

Buffer overflow while parsing media content

MFSA 2014-87

Use-after-free during HTML5 parsing

MFSA 2014-85

XMLHttpRequest crashes with some input streams

MFSA 2014-83

Miscellaneous memory safety hazards (rv:34.0 / rv:31.3)


Icedove 31.2.0

http://www.mozilla.org/en-US/thunderbird/31.2.0/releasenotes/

New Features, Changes, Fixes

No new features there added.

Securityfixes

MFSA 2014-81

Inconsistent video sharing within iframe

MFSA 2014-79

Use-after-free interacting with text directionality

MFSA 2014-77

Out-of-bounds write with WebM video

MFSA 2014-76

Web Audio memory corruption issues with custom waveforms

MFSA 2014-75

Buffer overflow during CSS manipulation

MFSA 2014-74

Miscellaneous memory safety hazards (rv:33.0 / rv:31.2)


Icedove 31.1.2

http://www.mozilla.org/en-US/thunderbird/31.1.2/releasenotes/

New Features, Changes, Fixes

No new features there added.

Securityfixes

MFSA 2014-73

RSA Signature Forgery in NSS


Icedove 31.1.1

http://www.mozilla.org/en-US/thunderbird/31.1.1/releasenotes/

New Features, Changes, Fixes

No new features there added.


Icedove 31.1.0

http://www.mozilla.org/en-US/thunderbird/31.1.0/releasenotes/

New Features, Changes, Fixes

No new features there added.

Securityfixes

MFSA 2014-72

Use-after-free setting text directionality

MFSA 2014-70

Out-of-bounds read in Web Audio audio timeline

MFSA 2014-69

Uninitialized memory use during GIF rendering

MFSA 2014-68

Use-after-free during DOM interactions with SVG

MFSA 2014-67

Miscellaneous memory safety hazards (rv:32.0 / rv:31.1 / rv:24.8)


Icedove 31.0

http://www.mozilla.org/en-US/thunderbird/31.0/releasenotes/

New Features, Changes, Fixes

Securityfixes

MFSA 2014-66

IFRAME sandbox same-origin access through redirect

MFSA 2014-65

Certificate parsing broken by non-standard character encoding

MFSA 2014-64

Crash in Skia library when scaling high quality images

MFSA 2014-63

Use-after-free while when manipulating certificates in the trusted cache

MFSA 2014-62

Exploitable WebGL crash with Cesium JavaScript library

MFSA 2014-61

Use-after-free with FireOnStateChange event

MFSA 2014-59

Use-after-free in DirectWrite font handling

MFSA 2014-58

Use-after-free in Web Audio due to incorrect control message ordering

MFSA 2014-57

Buffer overflow during Web Audio buffering for playback

MFSA 2014-56

Miscellaneous memory safety hazards (rv:31.0 / rv:24.7)


Older releasenotes


CategoryIcedove