Bug 442704

Summary:	mail-client/thunderbird: security bump to 16.0.2 ?
Product:	Gentoo Security	Reporter:	Klaus Kusche <klaus.kusche>
Component:	Vulnerabilities	Assignee:	Gentoo Security <security>
Status:	RESOLVED DUPLICATE
Severity:	major
Priority:	Normal
Version:	unspecified
Hardware:	All
OS:	Linux
Whiteboard:
Package list:		Runtime testing required:	---

Description Klaus Kusche 2012-11-11 11:33:25 UTC

Thunderbird 16.0.2 is out for almost 2 weeks now,
and it fixes a critical security advisory.

mail-client/thunderbird-bin has been updated almost immediately,
mail-client/thunderbird is still missing?

Comment 1 Agostino Sarubbo gentoo-dev

2012-11-11 12:15:02 UTC


*** This bug has been marked as a duplicate of bug 439960 ***

Comment 2 Klaus Kusche 2012-11-15 19:47:18 UTC

Please reopen and redispatch.

I found absolutely no reference in bug 439960 
to either firefox 16.0.2 or thunderbird 16.0.2,
and the people working on bug 439960 don's seem to care 
about thunderbird 16.0.2 at all - it seems that this bug
was dup'ed to the wrong bug.

Fact is that thunderbird 16.0.2 was a security release,
has been available upstream for more than 2 weeks now,
and is still not in portage.

Comment 3 Sean Amoss (RETIRED) gentoo-dev

2012-11-15 19:53:09 UTC

The security issues exist in both 10.0.x and 16.0.x. 

Bug 439960 requires that 10.0.x and 16.0.x be bumped and 10.0.x be stabilized to fix those security issues. 

This bug was not dup'ed to the wrong bug.

*** This bug has been marked as a duplicate of bug 439960 ***