Opened 7 weeks ago
Closed 6 weeks ago
#21193 closed enhancement (fixed)
thunderbird-128.8.0esr
| Reported by: | Joe Locash | Owned by: | Douglas R. Reno |
|---|---|---|---|
| Priority: | high | Milestone: | 12.4 |
| Component: | BOOK | Version: | git |
| Severity: | normal | Keywords: | |
| Cc: |
Description ¶
What’s Fixed
- Opening an .EML file in profiles with many folders could take a long time.
- Users with many folders experienced poor performance when resizing message panes.
- "Replace" button in compose window was overwritten when the window was narrow.
- Export to mobile did not work when "Use default server" was selected.
- "Save Link As" was not working in feed web content.
Security fixes
https://www.mozilla.org/en-US/security/advisories/mfsa2025-18/
- CVE-2024-43097: Overflow when growing an SkRegion's RunArray (critical)
- CVE-2025-1930: AudioIPC StreamData could trigger a use-after-free in the Browser process (high)
- CVE-2025-1931: Use-after-free in WebTransportChild (high)
- CVE-2025-1932: Inconsistent comparator in XSLT sorting led to out-of-bounds access (high)
- CVE-2025-1933: JIT corruption of WASM i32 return values on 64-bit CPUs (high)
- CVE-2025-1934: Unexpected GC during RegExp bailout processing (moderate)
- CVE-2025-1935: Clickjacking the registerProtocolHandler info-bar (low)
- CVE-2025-1936: Adding %00 and a fake extension to a jar: URL changed the interpretation of the contents (low)
- CVE-2025-1937: Memory safety bugs fixed in Firefox 136, Thunderbird 136, Firefox ESR 115.21, Firefox ESR 128.8, and Thunderbird 128.8 (high)
- CVE-2025-1938: Memory safety bugs fixed in Firefox 136, Thunderbird 136, Firefox ESR 128.8, and Thunderbird 128.8 (high)
Change History (2)
comment:1 by , 7 weeks ago
| Owner: | changed from to |
|---|---|
| Status: | new → assigned |
comment:2 by , 6 weeks ago
| Resolution: | → fixed |
|---|---|
| Status: | assigned → closed |
Note:
See TracTickets
for help on using tickets.
Fixed at cbaa10864426025804fc9c0bb35719a2ac09a24d
SA-12.3-003 issued