---
- branch: MAIN
  date: Sat Dec  3 11:14:48 UTC 2016
  files:
  - new: '1.180'
    old: '1.179'
    path: pkgsrc/mail/thunderbird/Makefile
    pathrev: pkgsrc/mail/thunderbird/Makefile@1.180
    type: modified
  - new: '1.184'
    old: '1.183'
    path: pkgsrc/mail/thunderbird/distinfo
    pathrev: pkgsrc/mail/thunderbird/distinfo@1.184
    type: modified
  id: 20161203T111448Z.ade959d63c55b3791aca9f02e037b6f4dc161b7e
  log: |
    Update to 45.5.1

    Changelog:
    45.5.1:
     #CVE-2016-9079: Use-after-free in SVG Animation

    45.5.0:
     #CVE-2016-5296: Heap-buffer-overflow WRITE in rasterize_edges_1
     #CVE-2016-5294: Arbitrary target directory for result files of update process
     #CVE-2016-5297: Incorrect argument length checking in JavaScript
     #CVE-2016-9066: Integer overflow leading to a buffer overflow in nsScriptLoadHandler
     #CVE-2016-5291: Same-origin policy violation using local HTML file and saved shortcut file
     #CVE-2016-9074: Insufficient timing side-channel resistance in divSpoiler
     #CVE-2016-5290: Memory safety bugs fixed in Thunderbird 45.5
  module: pkgsrc
  subject: 'CVS commit: pkgsrc/mail/thunderbird'
  unixtime: '1480763688'
  user: ryoon