head 1.2; access; symbols pkgsrc-2026Q1:1.2.0.2 pkgsrc-2026Q1-base:1.2 pkgsrc-2025Q4:1.1.0.2 pkgsrc-2025Q4-base:1.1; locks; strict; comment @# @; 1.2 date 2026.01.22.19.41.09; author ryoon; state Exp; branches; next 1.1; commitid VHsDqQGErEoxoqrG; 1.1 date 2025.11.14.17.28.39; author ryoon; state Exp; branches; next ; commitid ynlAqS94XHnuSxiG; desc @@ 1.2 log @mail/thunderbird: Update to 147.0 Changelog: 147.0: What's New new Add "Show Full Path" folder pane option for compact view modes new Add `mail.useLocalizedFolderNames' to toggle special folder name localization What's Changed changed Special folders are now localized based on a restricted set of names What's Fixed fixed Selected status and priority was not displayed in search widgets fixed Compacting multiple folders failed and did not compact fixed Resetting manual folder sorting did not work for sub folders fixed Unified archive subfolders could show wrong names and no messages fixed Folders with deep hierarchy and long folder names could fail to display fixed Moving saved search/virtual folder under IMAP could fail fixed "Open and Show" for OpenPGP-signed message (.eml) did not work fixed "Search Messages" search did not finish due to unparsable local folders fixed Compose command line flag no longer worked correctly fixed Search for "Attachment" in Settings menu did not find "Files and Attachments" fixed Account Hub did not show error message on failure when creating OAuth2 EWS account fixed Thunderbird could crash during exchange address account setup fixed Japanese locale users could not create message filters fixed Moving virtual folder within maildir based IMAP or local folder could fail fixed Thunderbird could crash when marking all messages as read fixed Startup could be slow with large number of folders not using subscriptions fixed EWS message send that required a password errored instead of prompting fixed EWS HTTP 500 backoff errors were not handled gracefully fixed SMTP sending could hang when when multiple messages queued for sending fixed Thunderbird could crash when emptying EWS trash fixed Broken feed icon could prevent updating of feeds fixed Calendar did not alert user for connection issues fixed Creation of tasks with Start or Due date was not possible fixed Visual and UX improvements fixed Security fixes Security fixes: Mozilla Foundation Security Advisory 2026-04 #CVE-2026-0877: Mitigation bypass in the DOM: Security component #CVE-2026-0878: Sandbox escape due to incorrect boundary conditions in the Graphics: CanvasWebGL component #CVE-2026-0879: Sandbox escape due to incorrect boundary conditions in the Graphics component #CVE-2026-0880: Sandbox escape due to integer overflow in the Graphics component #CVE-2026-0881: Sandbox escape in the Messaging System component #CVE-2026-0882: Use-after-free in the IPC component #CVE-2026-0883: Information disclosure in the Networking component #CVE-2026-0884: Use-after-free in the JavaScript Engine component #CVE-2026-0885: Use-after-free in the JavaScript: GC component #CVE-2026-0886: Incorrect boundary conditions in the Graphics component #CVE-2026-0887: Clickjacking issue, information disclosure in the PDF Viewer component #CVE-2026-0888: Information disclosure in the XML component #CVE-2026-0889: Denial-of-service in the DOM: Service Workers component #CVE-2026-0890: Spoofing issue in the DOM: Copy & Paste and Drag & Drop component #CVE-2026-0891: Memory safety bugs fixed in Firefox ESR 140.7, Thunderbird ESR 140.7, Firefox 147 and Thunderbird 147 #CVE-2026-0892: Memory safety bugs fixed in Firefox 147 and Thunderbird 147 @ text @$NetBSD: patch-comm_third__party_openpgp.configure,v 1.1 2025/11/14 17:28:39 ryoon Exp $ * Pass CC for detecting C++ compiler (GCC/clang). A logic in botan/configure.py does not detect c++ from cwrappers correctly. * GCC does not accept --target= as argument. Remove it. --- comm/third_party/openpgp.configure.orig 2026-01-08 21:45:29.000000000 +0000 +++ comm/third_party/openpgp.configure @@@@ -347,8 +347,8 @@@@ with only_when(in_tree_librnp): log.info("Botan: failed to inject libstdc++ include dirs: {}".format(e)) botan_flags = [ + "--cc={}".format(os.getenv("CC")), "--cc-bin={}".format(cxx_compiler.compiler), - "--cc-abi-flags={}".format(" ".join(abi_flags)), "--cpu={}".format(target.cpu), "--os={}".format(botan_os), "--with-build-dir={}".format(botan_objdir), @ 1.1 log @mail/thunderbird: Update to 145.0 Changelog: 145.0: What's New new Enable support for DNS over HTTPS new Account Hub email manual config option added new Add manual configuration to EWS account creation new Enable support for Microsoft Exchange via Exchange Web Services What's Changed changed Skype has been retired and therefore dropped from Address book IM selection changed Removed pref default_supports_diskspace.{HOST} changed Removed pref default_offline_support_level.{HOST} changed Use of the string "Junk" has been replaced with "Spam" changed Stop shipping 32-bit Linux x86 binaries What's Fixed fixed 'Save All' attachments with same names overwrote existing files without warning fixed Message headers were re-downloaded at every startup fixed Could not drag and drop ICS file to Today Pane fixed 'Show remote content' did not display remote content for EML message fixed Emoji sequences were not properly handled in subject lines fixed Unified toolbar Spam button did not switch to "Not Spam" when spam message selected fixed Upgrading Thunderbird hid the Menu bar fixed When configuring external GnuPG, user was not promted to import public key fixed Message compose window could incorrectly disappear from Task Bar on Windows fixed Add-on account creation did not work with Account Hub fixed Owl install did not show link to website in Account Hub fixed Username field did not appear in Account Hub when exchange authentication failed fixed Disabled inputs could be toggled in Account Hub address book fixed Manual account setup in Account Hub defaulted Connection Security to None fixed Close button from Account Hub was not narrated fixed Account Hub email creation error notifications were not narrated fixed Users could not disable spinning overlay in Account Hub for email fixed Deleted account data remained in "Export to mobile device" menu fixed 'Sent' and 'Spam' folders were not always created when setting up new IMAP accounts fixed Some third-party hosted accounts could not be created in Account Hub fixed Account Hub allowed keyboard shortcuts to be executed in background screen fixed Spam was not checked with mail.server.default.check_all_folders_for_new on fixed Upgrade from 128.x->140.x broke authentication for @@att.net using Yahoo backend fixed Task reminders could fail for tasks without end dates or with shifted due dates fixed Visual and UX improvements fixed Security fixes Security fixes: Mozilla Foundation Security Advisory 2025-90 #CVE-2025-13021: Incorrect boundary conditions in the Graphics: WebGPU component #CVE-2025-13022: Incorrect boundary conditions in the Graphics: WebGPU component #CVE-2025-13012: Race condition in the Graphics component #CVE-2025-13023: Sandbox escape due to incorrect boundary conditions in the Graphics: WebGPU component #CVE-2025-13016: Incorrect boundary conditions in the JavaScript: WebAssembly component #CVE-2025-13024: JIT miscompilation in the JavaScript Engine: JIT component #CVE-2025-13025: Incorrect boundary conditions in the Graphics: WebGPU component #CVE-2025-13026: Sandbox escape due to incorrect boundary conditions in the Graphics: WebGPU component #CVE-2025-13017: Same-origin policy bypass in the DOM: Notifications component #CVE-2025-13018: Mitigation bypass in the DOM: Security component #CVE-2025-13019: Same-origin policy bypass in the DOM: Workers component #CVE-2025-13013: Mitigation bypass in the DOM: Core & HTML component #CVE-2025-13020: Use-after-free in the WebRTC: Audio/Video component #CVE-2025-13014: Use-after-free in the Audio/Video component #CVE-2025-13015: Spoofing issue in Thunderbird #CVE-2025-13027: Memory safety bugs fixed in Firefox 145 and Thunderbird 145 @ text @d1 1 a1 1 $NetBSD$ d7 1 a7 1 --- comm/third_party/openpgp.configure.orig 2025-11-12 23:23:21.000000000 +0000 d9 2 a10 2 @@@@ -319,8 +319,8 @@@@ with only_when(in_tree_librnp): ) d15 1 a15 1 - "--cc-abi-flags=--target={}".format(target.alias), @