UbuntuUpdates.org

Package "enigmail"

Name: enigmail

Description:

GPG support for Thunderbird and Debian Icedove

Latest version: 2:2.2.4-0ubuntu0.18.04.1
Release: bionic (18.04)
Level: security
Repository: universe
Homepage: https://www.enigmail.net/

Links


Download "enigmail"


Other versions of "enigmail" in Bionic

Repository Area Version
base universe 2:1.9.9-2
updates universe 2:2.2.4-0ubuntu0.18.04.1
PPA: Ubuntu Mozilla Security 2:2.2.4-0ubuntu0.18.04.1

Changelog

Version: 2:2.2.4-0ubuntu0.18.04.1 2021-06-23 18:06:19 UTC

  enigmail (2:2.2.4-0ubuntu0.18.04.1) bionic; urgency=medium

  * new upstream release for Thunderbird 78 (LP: #1895643)
  * drop a number of obsolete patches
  * remove obsolete autopkgtests
  * depend on thunderbird >= 78.0

 -- Olivier Tilloy <email address hidden> Fri, 12 Mar 2021 16:27:25 +0100

Source diff to previous version
1895643 Backport Thunderbird 78 to 20.04 LTS and 18.04 LTS

Version: 2:2.1.6+ds1-1~ubuntu0.18.04.1 2020-04-21 20:06:55 UTC

  enigmail (2:2.1.6+ds1-1~ubuntu0.18.04.1) bionic; urgency=medium

  * Backport to bionic
    - relax build dependency on debhelper
    - relax runtime dependency on gnupg
  * Specify utf8 encoding in util/checkFiles.py
    - add debian/patches/specify-encoding-in-check-files.patch

 -- Chris Coulson <email address hidden> Tue, 21 Apr 2020 15:06:59 +0100

Source diff to previous version

Version: 2:2.1.2-0ubuntu1~18.04.2 2019-11-26 19:07:31 UTC

  enigmail (2:2.1.2-0ubuntu1~18.04.2) bionic; urgency=medium

  * new upstream release
  * do not repack the upstream tarball to strip OpenPGP.js
    - d/copyright
  * remove patches as a consequence:
    - d/patches/0003-avoid-OpenPGP.js-when-building.patch
    - d/patches/0004-copy-enums.armor-from-OpenPGP.js.patch
    - d/patches/0005-avoid-OpenPGP.js-during-key-file-import.patch
    - d/patches/0006-drop-use-of-OpenPGP.js-for-generating-minimal-keys.patch
    - d/patches/0008-enable-the-use-of-extra-file-descriptors-and-test-th.patch
    - d/patches/0009-add-test-to-do-symmetric-encryption-decryption-with-.patch
    - d/patches/0010-use-GnuPG-instead-of-openpgp.js-for-symmetric-encryp.patch
  * refresh patches:
    - d/patches/0001-avoid-eslint-during-buildtest.patch
    - d/patches/0002-Avoid-auto-download-of-pEpEngine-Closes-891882.patch
    - d/patches/0007-add-more-logging-to-autocrypt-test.patch
    - d/patches/0011-tests-wrap-individual-tests-in-key-test-with-withTes.patch
  * new patches:
    - d/patches/0012-fix-stdlib-Makefile.patch
    - d/patches/0013-strip-comment-from-manifest.patch
  * use dh_webext to install the extension
    - d/control
    - d/rules
    - d/run-tests
    - d/install-webext
  * update autopgktests to jsunit API changes
    - d/tests/tbird-sqlite{,.js}
    - d/tests/unit-tests
  * downgrade build dependency on debhelper to 11, because 12 is not in bionic
    - d/control
  * downgrade runtime dependency on gnupg to 2.0.14, which is what enigmail
    really defines as the minimum supported version (MINIMUM_GPG_VERSION)
    - d/control

 -- Olivier Tilloy <email address hidden> Thu, 31 Oct 2019 14:57:22 +0100

Source diff to previous version

Version: 2:2.0.8-1~ubuntu0.18.04.2 2018-10-15 17:06:29 UTC

  enigmail (2:2.0.8-1~ubuntu0.18.04.2) bionic-security; urgency=medium

  * Backport 2.0.8 to bionic for Thunderbird 60.*
  * Revert the Debian changes to drop OpenPGP.js, as it requires a newer gnupg
    - update debian/control
    - remove debian/patches/remove-openpgpjs/0017-avoid-OpenPGP.js-when-building.patch
    - remove debian/patches/remove-openpgpjs/0018-copy-enums.armor-from-OpenPGP.js.patch
    - remove debian/patches/remove-openpgpjs/0019-avoid-OpenPGP.js-during-key-file-import.patch
    - remove debian/patches/remove-openpgpjs/0020-drop-use-of-OpenPGP.js-for-generating-minimal-keys.patch
    - add debian/patches/restore-openpgpjs.patch
    - update debian/patches/series

 -- Chris Coulson <email address hidden> Mon, 08 Oct 2018 18:10:33 +0100

Source diff to previous version

Version: 2:2.0.7-0ubuntu1~18.04.1 2018-06-14 19:06:49 UTC

  enigmail (2:2.0.7-0ubuntu1~18.04.1) bionic-security; urgency=medium

  * SECURITY UPDATE: Spoofing of Email signatures
    - CVE-2018-12019, CVE-2018-12020

  * Backport 2.0.7 to bionic

 -- Chris Coulson <email address hidden> Thu, 14 Jun 2018 13:29:27 +0100

CVE-2018-12019 The signature verification routine in Enigmail before 2.0.7 interprets ...
CVE-2018-12020 mainproc.c in GnuPG before 2.2.8 mishandles the original filename during decryption and verification actions, which allows remote attackers to spoof



About   -   Send Feedback to @ubuntu_updates