« 2006-09-01 Thunderbird 1.5.0.7 builds | Main | 2006-09-10 Thunderbird 2.0 builds »
Thunderbird 1.5.0.7 Released
Sponsored links:
Changelog for previous release (Thunderbird 1.5.0.5) | Changelogs for other releases
Make a donation to the upkeep of The Rumbling Edge.
Released on 14 Sep 06, and this changelog was last updated on 22 Sep 06.
Mozilla Thunderbird 1.5.0.7 has been released. Release notes are available. This post lists the improvements in Thunderbird 1.5.0.7 over 1.5.0.5. This list encompasses almost every single known fix that went into this release. Do check out the known issues as well.
The Gecko 1.8.0.x branch (Thunderbird 1.5.0.x series) will only bring stability and security bug fixes. As such, no new features will be added. To synchronize the version numbering with Firefox, the 1.5.0.6 numbering was dropped in favour of 1.5.0.7.
Impact key for security issues listed on the Mozilla Foundation Security Advisories webpage:
- Critical: Vulnerability can be used to run attacker code and install software, requiring no user interaction beyond normal browsing.
- High: Vulnerability can be used to gather sensitive data from sites in other windows or inject data or code into those sites, requiring no more than normal browsing actions.
- Moderate: Vulnerabilities that would otherwise be High or Critical except they only work in uncommon non-default configurations or require the user to perform complicated and/or unlikely steps.
- Low: Minor security vulnerabilities such as Denial of Service attacks, minor data leaks, or spoofs. (Undetectable spoofs of SSL indicia would have "High" impact because those are generally used to steal sensitive data intended for other sites.)
Changes in 1.5.0.7: (19)
Security issues: (6)
- Fixed: CVE-2006-4571 - Crashes with evidence of memory corruption (rv:1.8.0.7) (Critical)
- Fixed: 350640, 351079, 351848, CVE-2006-4340, US-CERT Vulnerability Note, Message Post - RSA Signature Forgery (Critical)
- Fixed: 346984 - JavaScript execution in mail via XBL (High)
- Fixed: 345071, 348514 - Concurrency-related vulnerability (Moderate)
- Fixed: 346090, 346794 - JavaScript Regular Expression Heap Corruption (Moderate)
- Fixed: 340198 - Auto-update compromise through DNS and SSL spoofing (Low)
Crashes: (2)
- Fixed: 339518 - Switching IMAP folders while "mark-as-spam" is running causes a crash
- Fixed: 336957 - Crash when calling messageServiceFromURI("file://...").streamMessage
Localization: (1)
- Fixed: 349192 - Ship Thunderbird 1.5.0.x lt (Lithuanian)
Networking: (3)
- Fixed: 222394 - IMAP: MYRIGHTS command used on names marked \Noselect
- Fixed: 325379 - STARTTLS negotiation skipped when account set to "TLS, if available"
- Fixed: 349929 - APOP information is reset after stepping up a TLS connection
Printing: (1)
- Fixed: 342439 - printing certain urls (google groups and maps) from print preview shows the style/meta tags on paper
UI improvements: (1)
- Fixed: 337815 - Messages don't show; summary-file increases every time Tb opens
XULRunner: (2)
- Fixed: 348781 - Add 7-Zip SFX source to the tree
- Fixed: 349007 - Trunk XULRunner doesn' t package with modern PackageMaker
Miscellaneous fixes: (2)
- Fixed: 344694 - Conflict of linkage-specification for "MimeExternalObjectClass mimeExternalObjectClass"
- Fixed: 346302 - Yet another RFC 2231 violation (0x2a is not escaped)
Mac-specific: (1)
- Fixed: 345047 - [XULRunner] Universal Build fixup for XULRunner
Filed under 'Thunderbird Releases' | Posted on 2 Sep 2006 (Sat) by Gary Kwong at 11:58 PM. (GMT+8)
Comments
any chance that the option to have the original message close when you reply to it?
Posted by: Dan at September 16, 2006 9:03 AM
In the news-reader it would be nice if insignificant (selected by me) could be removed. With a group of over 40000 messages it takes up space and is extremely time consuming to find a message more than a week back.
Posted by: Erik T. S�rensen at September 16, 2006 3:53 PM
Would be very nice to see https://bugzilla.mozilla.org/show_bug.cgi?id=309371 repaired. :(
Posted by: Steve V at September 17, 2006 6:00 AM
Re: Firefox & Thundrbird 1.5.0.7
Ever installing these new updates I constantly get the following error upon starting either program:
ReferenceError: Jevent is not defined.
Any idea what this is or how to find out about this (I've been using these appps for a few years and this is the first time I've seen this)? Until I click OK, the applications don't open.
Thanks,
Gary
Posted by: gary speiser at September 17, 2006 4:24 PM
Hi,
I think it would be good to have an 'empty junk' option on the right click menu of the junk folder, it would be much neater than having to use the 'delete mail marked as junk in folder' option in the tools menu.
regards
Jeff Ross
Posted by: Jeff Ross at September 18, 2006 5:12 PM
Feature Request:
Option to move signature exactly below my forward, not below the letter, like the one on reply.
regards,
Husein Musawa
Posted by: Husein Musawa at September 19, 2006 4:56 PM
How configure authentified SMTP with the same parameters than pop acces on thunderbird 1.5.07?
Posted by: Pascal at September 19, 2006 8:59 PM
1.5.0.7 has fixed the problem of informing me that I had 199,000 odd emails but it now only advises the no of emails in the last folder looked at. Shouldn't thunderbird advise of the total number of emails in local folders, not the no of the last folder looked at?
Posted by: allen at September 22, 2006 7:08 AM
With the upgrade to version 1.5.0.7, Thunderbird started to ask for the password to connect with dcwis.com (my ISP). Even though I enter the correct password, Thunderbird will not let me connect to dcwis.com. The message is: "Sending of username did not succeed. Mail server dcwis.com responded: authentication exchange failed." Thunderbird only asks for the password, not the username.
When contacted, DCWIS says many of their subscribers who have been using Thunderbird successfuly for many months but installed the 1.5.0.7 upgrade have encountered the same problem. The only solution DCWIS and its subscribers know is to revert to Microsoft's Outlook Express which continue to work.
What's the fix for this?
Ed Douglass
Posted by: Ed Douglass at September 25, 2006 10:21 PM
One way is uninstall 1.5.0.7, go to http://ftp.mozilla.org/pub/mozilla.org/thunderbird/releases/1.5.0.5/ , download 1.5.0.5, install it, turn off the automatic updates on options/update and await next version to be released. This is classified as bug #352801, if you want to track it.
Posted by: Antonio J. de Oliveira at September 26, 2006 12:07 AM
