icedove (10.0.12-1~bpo60+1) squeeze-backports; urgency=low

  * Rebuild for squeeze-backports.

 -- Mike Hommey <glandium@debian.org>  Sat, 19 Jan 2013 09:16:51 +0000

icedove (10.0.12-1) unstable; urgency=high

  * [c45eb8d] New Upstream version 10.0.12
  * Fixes for MFSA-2013-{01,02,04,05,09,11,12,15-17,20}, also known as
    CVE-2013-0769, CVE-2013-0762, CVE-2013-0766, CVE-2013-0767,
    CVE-2013-0759, CVE-2013-0744, CVE-2013-0746, CVE-2013-0748,
    CVE-2013-0750, CVE-2013-0758, CVE-2013-0753, CVE-2013-0754,
    CVE-2013-0743

 -- Christoph Goehre <chris@sigxcpu.org>  Tue, 15 Jan 2013 18:33:23 -0500

icedove (10.0.11-1) unstable; urgency=high

  * [317e64c] New Upstream version 10.0.11
  * Fixes for MFSA2012-{91-93,100,101,103,105,106}, also known as
    CVE-2012-5842, CVE-2012-4202, CVE-2012-4201, CVE-2012-5841,
    CVE-2012-4207, CVE-2012-4209, CVE-2012-4214, CVE-2012-4215,
    CVE-2012-4216, CVE-2012-5829, CVE-2012-5839, CVE-2012-5840,
    CVE-2012-5830, CVE-2012-5833, CVE-2012-5835

 -- Christoph Goehre <chris@sigxcpu.org>  Thu, 22 Nov 2012 18:00:45 -0500

icedove (10.0.10-1) unstable; urgency=high

  * [8909154] New Upstream version 10.0.10
  * Fixes for MFSA2012-90, also known as CVE-2012-4194 and CVE-2012-4196

 -- Christoph Goehre <chris@sigxcpu.org>  Sat, 27 Oct 2012 13:14:06 -0400

icedove (10.0.9-1) unstable; urgency=high

  [ Christoph Goehre ]
  * [f2e80c5] New Upstream version 10.0.9
  * Fixes for MFSA2012-{59,74,77,79,81-87,89}, also known as
    CVE-2012-1956, CVE-2012-3982, CVE-2012-3986, CVE-2012-3988,
    CVE-2012-3991, CVE-2012-3994, CVE-2012-3993, CVE-2012-4184,
    CVE-2012-3992, CVE-2012-3995, CVE-2012-4179, CVE-2012-4180,
    CVE-2012-4181, CVE-2012-4182, CVE-2012-4183, CVE-2012-4185,
    CVE-2012-4186, CVE-2012-4187, CVE-2012-4188, CVE-2012-3990,
    CVE-2012-4193, CVE-2012-4192

  [ Jens Reyer ]
  * [bfe7fe6] clarify the relation between iceowl, lightning and sunbird
    (Closes: #686206)

 -- Christoph Goehre <chris@sigxcpu.org>  Sun, 14 Oct 2012 10:26:01 -0400

icedove (10.0.7-1) unstable; urgency=high

  * [d059477] New Upstream version 10.0.7 (Closes: #686201)
  * Fixes for MFSA2012-{57,58,61-63,65,70,72}, also known as
    CVE-2012-1970, CVE-2012-1972, CVE-2012-1973, CVE-2012-1974,
    CVE-2012-1975, CVE-2012-1976, CVE-2012-3956, CVE-2012-3957,
    CVE-2012-3958, CVE-2012-3959, CVE-2012-3960, CVE-2012-3961,
    CVE-2012-3962, CVE-2012-3963, CVE-2012-3964, CVE-2012-3966,
    CVE-2012-3968, CVE-2012-3967, CVE-2012-3969, CVE-2012-3970,
    CVE-2012-3972, CVE-2012-3978, CVE-2012-3980
  * [13e3592] rebuild patch queue from patch-queue branch
    added patches:
    - fixes/Allow-webGL-with-mesa-assuming-users-will-have-updat.patch

 -- Christoph Goehre <chris@sigxcpu.org>  Fri, 21 Sep 2012 21:11:01 -0400

icedove (10.0.6-2) unstable; urgency=low

  * [a657277] rebuild patch queue from patch-queue branch
    added patches:
    - fixes/Bug-693343-a11y-disabled-in-Gnome-3-when-GNOME_ACCES.patch
      (Closes: #682913)
    - porting/fix-FTBFS-on-Alpha-add-arch-support-for-IPC.patch
      (Closes: #685126)
  * [bf09ad9] update build dependencies (Thanks to Mike) (Closes: #666722)

 -- Christoph Goehre <chris@sigxcpu.org>  Fri, 17 Aug 2012 16:11:57 +0200

icedove (10.0.6-1) unstable; urgency=high

  * [1b75920] New Upstream version 10.0.6 (Closes: #682817)
  * Fixes for MFSA2012-{42,44-45,47-49,51-54,56}, also known as
    CVE-2012-1948, CVE-2012-1951, CVE-2012-1952, CVE-2012-1953,
    CVE-2012-1954, CVE-2012-1955, CVE-2012-1957, CVE-2012-1958,
    CVE-2012-1959, CVE-2012-1961, CVE-2012-1962, CVE-2012-1963,
    CVE-2012-1964, CVE-2012-1967
  * [5fdf662] rebuild patch queue from patch-queue branch
    added patches:
    - fixes/Bug-761082-Only-export-TabMessageUtils.h-in-mozilla-.patch
    modified patches:
    - icedove/fix-branding-in-migration-wizard-and-the-addon-manag.patch

 -- Christoph Goehre <chris@sigxcpu.org>  Sun, 05 Aug 2012 19:05:48 +0200

icedove (10.0.5-1) unstable; urgency=low

  * [9a9ff18] New Upstream version 10.0.5 (Closes: #677040)
  * Fixes for MFSA2012-{34,36-38,40}, also known as
    CVE-2012-1939, CVE-2012-1937, CVE-2011-3101, CVE-2012-1944,
    CVE-2012-1945, CVE-2012-1946, CVE-2012-1947, CVE-2012-1940,
    CVE-2012-1941
  * [0b143db] rebuild patch queue from patch-queue branch
    added patches:
    - fixes/Bug-709259-Try-creating-a-named-cursor-before-a-bitm.patch
    - fixes/Bug-734490-fix-build-failures-with-Clang-and-GCC-4.7.patch
  * [3d769ec] replace transitional depens ttf-lyx with fonts-lyx
    (Closes: #676505)

 -- Christoph Goehre <chris@sigxcpu.org>  Sun, 24 Jun 2012 10:37:07 +0200

icedove (10.0.4-1) unstable; urgency=low

  * [d98435f] New Upstream version 10.0.4
  * Fixes for MFSA2012-{20,22-24,26-27,29-31,33}, also known as
    CVE-2012-0467, CVE-2012-0469, CVE-2012-0470, CVE-2012-0471,
    CVE-2012-0473, CVE-2012-0474, CVE-2012-0477, CVE-2012-0478,
    CVE-2011-3062, CVE-2012-0479
  * [7754de6] rebuild patch queue from patch-queue branch
    added patches:
    - debian-hacks/Bug-508942-Use-Preprocessor.py-filters-in-defines-an.patch
    - fixes/Bug-706724-Fix-for-error-ftruncate-was-not-declared-.patch
      (Closes: #667205)
    - fixes/Bug-747322-Fix-jemalloc-mmap-wrapper-for-s390x.patch
    - fixes/Fix-more-gcc-4.7-errors-in-ipc-code.patch
    - porting/Bug-706787-Crash-on-s390x-nsXPCComponents-AttachNewC.patch
    - porting/Bug-747870-Properly-align-XPCLazyCallContext-mData.-.patch
    obsolete patches (fixed upstream):
    - fixes/Bug-710268-Sign-NSS-libraries-only-when-they-exist-r.patch
    - fixes/Fixup-bz-730195-for-Linux-ARM-use-_URC_FOREIGN_EXCEP.patch

 -- Christoph Goehre <chris@sigxcpu.org>  Thu, 10 May 2012 16:29:30 +0200

icedove (10.0.3-3) unstable; urgency=low

  * [c8d72a6] relax optimize to -O1 on sparc to fix FTBFS

 -- Christoph Goehre <chris@sigxcpu.org>  Thu, 29 Mar 2012 17:56:38 +0200

icedove (10.0.3-2) unstable; urgency=low

  [ Christoph Goehre ]
  * [1223204] bump up standards version to 3.9.3

  [ Guido Günther ]
  * [7d7b5f5] Don't put symlinks into iceowl/extensions

  [ Christoph Goehre ]
  * [94c07e5] update copyright file
  * [88098a8] GNOME 3 integration: Use GIO instead of deprecated GnomeVFS.
    Thanks to Michael Biebl <biebl@debian.org> (Closes: #658688)
  * [9543fd1] add build depends python
  * [ec62dcb] build a debug package, if DEB_BUILD_OPTIONS contains 'debug'

 -- Christoph Goehre <chris@sigxcpu.org>  Tue, 27 Mar 2012 18:21:52 +0200

icedove (10.0.3-1) unstable; urgency=low

  [ Christoph Goehre ]
  * [ee4b49c] adjust source.filter list
  * [b5f3064] New Upstream version 10.0.3 (Closes: #661115, #663897)
  * [fd35da8] build against system python-ply
  * [4964bb2] build against system libreadline
  * [5412685] rebuild patch queue from patch-queue branch
    added patches:
    - debian-hacks/Don-t-build-example-component.patch
    - fixes/Bug-515232-Try-getting-general.useragent.locale-as-a.patch
    - fixes/Bug-628252-os2.cc-fails-to-compile-against-GCC-4.6-m.patch
    - fixes/Bug-691898-Use-YARR-interpreter-instead-of-PCRE-on-p.patch
    - fixes/Bug-696636-Block-OpenGL-1-drivers-explicitly-to-stee.patch
    - fixes/Bug-710268-Sign-NSS-libraries-only-when-they-exist-r.patch
    - fixes/Bug-720682-Don-t-crash-an-app-using-libxul-because-o.patch
    - fixes/Bug-722127-Bump-required-libvpx-version-to-1.0.0.-r-.patch
    - fixes/Bug-728136-Port-bug-528687-to-comm-central.patch
    - fixes/Bug-728229-Allow-to-build-with-system-python-ply-lib.patch
    - fixes/Bug-729817-Allow-the-Nouveau-driver-with-Mesa-8.0.1-.patch
    - fixes/Bug-729817-Block-the-Nouveau-3D-driver-as-it-s-insta.patch
    - fixes/Fixup-bz-730195-for-Linux-ARM-use-_URC_FOREIGN_EXCEP.patch
    - fixes/Include-cstdlib-in-gfx-angle-src-compiler-Types.h-fo.patch
    - fixes/Link-libldap-against-libpthread.patch
    - fixes/Load-dependent-libraries-with-their-real-path-to-avo.patch
    - porting/Bug-703534-Fix-build-failure-on-platforms-without-YA.patch
    - prefs/Don-t-auto-disable-extensions-in-system-directories.patch
      (Closes: #648712)
    modified patches:
    - debian-hacks/Install-missing-nanojit-and-.tbl-headers-from-js-src.patch
    - fixes/Allow-.js-preference-files-to-set-locked-prefs-with-.patch
    - fixes/Properly-launch-applications-set-in-HOME-.mailcap.patch
    - icedove/fix-branding-in-migration-wizard-and-the-addon-manag.patch
    - porting/Allow-ipc-code-to-build-on-GNU-hurd.patch
    - porting/Bug-703833-Avoid-invalid-conversion-from-const-size_.patch
    - prefs/Set-javascript.options.showInConsole.patch
    obsolete patches (fixed upstream):
    - debian-hacks/get-ride-of-default-debian-hardering-options.patch
    - iceowl/Install-calendar-timezones-mode-0644-not-0755.patch
    - porting/Add-mips-hppa-ia64-s390-and-sparc-defines-in-ipc-chr.patch
    - porting/Bug-680917-Use-a-pool-size-of-16kB-on-ia64-for-bump-.patch
    - porting/Bug-694533-LDRH-STRH-LDRSB-STRSB-are-supported-on-AR.patch
    - porting/Bug-696393-Reimplement-NS_InvokeByIndex-in-C-on-S390.patch
    - porting/Revert-bz-164580.patch

  [ Michael Biebl ]
  * [c0a3ee2] Install chrome.manifest file to ensure the various components
    (like GNOME support module) are correctly loaded. (Closes: #658479)

  [ Christoph Goehre ]
  * [02687fc] adjust install/link files for new upstream
  * [b551d6a] omni.jar was renamed to omni.ja

 -- Christoph Goehre <chris@sigxcpu.org>  Sat, 24 Mar 2012 23:10:47 +0100

icedove (9.0.1-1) experimental; urgency=low

  * [e2002b8] New Upstream version 9.0.1 (Closes: #653266, #653556)
  * [9c14e8b] replace dfsg cleanup script with Mike's repack.py
  * [2a34bd8] rebuild patch queue from patch-queue branch
    added patches:
    - porting/Bug-698923-Don-t-require-16-bytes-alignment-for-VMFr.patch
    - porting/Bug-703531-Fix-ARMAssembler-getOp2RegScale-on-ARMv5.patch
    - porting/Bug-703833-Avoid-invalid-conversion-from-const-size_.patch
    - porting/Bug-703842-Avoid-R_SPARC_WDISP22-relocation-in-Tramp.patch
    - porting/Bug-711353-Add-support-for-GNU-kFreeBSD-and-GNU-Hurd.patch
    - porting/Fix-GNU-non-Linux-failure-to-build-because-of-ipc-ch.patch
  * [03ed85d] remove Build-Depends python-ply, it's shipped and searched in
    mozilla/other-licenses

 -- Christoph Goehre <chris@sigxcpu.org>  Tue, 24 Jan 2012 19:13:30 +0100

icedove (8.0-2) unstable; urgency=low

  * Upload to unstable
  * [b02c21d] fix crash in xpcshell on sparc linux

 -- Christoph Goehre <chris@sigxcpu.org>  Wed, 04 Jan 2012 18:09:14 +0100

icedove (8.0-1) experimental; urgency=low

  [ Guido Günther ]
  * [17a7a80] Add x-scheme-handler/mailto to. Thanks to Michael Biebl for the
    patch (Closes: #645556)

  [ Christoph Goehre ]
  * [4066038] New Upstream version 8.0
  * [aa9105e] update autoconfig for e-mail accounts from riseup.net
    (Closes: #648907)
  * [decc1ac] fix wrong description text in iceowl-extension (Closes: #649073)
  * [c97dda6] rebuild patch queue from patch-queue branch
    added patches:
    - debian-hacks/Statically-link-jemalloc-to-all-programs.patch
    - fixes/Bug-670719-Only-add-DENABLE_JIT-1-to-CXXFLAGS-if-any.patch
    - fixes/Bug-680642-Don-t-enable-YARR-JIT-on-MIPS-as-the-impl.patch
    - porting/Bug-589735-Allocate-memory-with-an-address-with-high.patch
    - porting/Bug-589735-Allow-static-JS-strings-to-be-turned-off-.patch
    - porting/Bug-680917-Use-a-pool-size-of-16kB-on-ia64-for-bump-.patch
    - porting/Bug-694533-LDRH-STRH-LDRSB-STRSB-are-supported-on-AR.patch
    - porting/Bug-696393-Reimplement-NS_InvokeByIndex-in-C-on-S390.patch
    - porting/Revert-bz-164580.patch

 -- Christoph Goehre <chris@sigxcpu.org>  Sun, 20 Nov 2011 19:58:37 +0100

icedove (8.0~b4-2) experimental; urgency=low

  [ Guido Günther ]
  * [5d043ec] Install calendar extension
  * [07feb49] Change extension's name to Iceowl
  * [c597212] iceowl-extension: don't ignore errors in postinst
  * [30ec51d] Disable patch numbers
  * [73f80ed] Don't install timezones file mode 0755

  [ Christoph Goehre ]
  * [0fa13be] remove duplicate build depends unzip

 -- Christoph Goehre <chris@sigxcpu.org>  Tue, 08 Nov 2011 22:29:19 +0100

icedove (8.0~b4-1) experimental; urgency=low

  * [4e90977] New Upstream Version 8.0b4 (Closes: #591771, #638161)
  * [955423a] replace duplicate .so files in icedove and icedove-dev with
    symlinks
  * [6ffb325] remove obsolete cdbs rule to extract tarball
  * [f98837b] build against libnotify4 (libnotify-dev >= 0.7)(Closes: #637194)
  * [66f72bc] Build-depend on libjpeg-dev instead of libjpeg62-dev
  * [8af21a2] rebuild patch queue from patch-queue branch
    added patches:
    - debian-hacks/get-ride-of-default-debian-hardering-options.patch
    - fixes/packager-fails-when-MOZILLA_DIR-is-a-relative-path.patch
    modified patches:
    - icedove/save-a-copy-of-a-attached-file-when-sending-from-OOo.patch
    obsolete patches (fixed upstream):
    - debian-hacks/bzXXX-ftbfs-static-with-system-hunspell.patch
    - fixes/Bug-626035-Modify-the-way-arm-compiler-flags-are-set.patch
    - fixes/Bug-639554-Install-sdk-bin-with-make-install.-r-bsme.patch
    - fixes/Bug-640494-part-1-Get-rid-of-STL-algorithm-use-in-js.patch
    - fixes/Bug-640494-part-2-Use-bitwise-operations-in-JSDOUBLE.patch
    - fixes/Bug-652139-Use-an-integer-type-in-DocumentViewerImpl.patch
    - fixes/Bug-662224-Define-NS_ATTR_MALLOC-and-NS_WARN_UNUSED_.patch
    - fixes/Bug-668906-Do-not-call-openUnsharedDatabase-with-a-n.patch
    - fixes/Bug-671564-Initialize-NS_XPCOM_LIBRARY_FILE-from-NS_.patch
    - fixes/Disable-building-embedded-libjpeg-turbo-when-buildin.patch
    - porting/Allow-to-build-yuv_convert_arm.cpp-on-armv4t.patch
    - porting/Bug-638056-Avoid-The-cacheFlush-support-is-missing-o.patch
    - porting/Fix-FTBFS-in-IPC-on-Linux-PPC.patch
    - porting/Fix-FTBFS-in-xpcom-base-on-armv4t.patch
    - system-libs/libxul-linking-error-with-enable-system-ffi-and-stat.patch
  * [5f6e50f] add Japanese translation for desktop menu entry. Thanks to
    Hideki Yamane <henrich@debian.org> (Closes: #640679)
  * [591f76c] add build depends unzip
  * [0af372f] remove upstream integrated CFLAGS and CXXFLAGS '-g -std=gnu++0x'
  * [a4c8b2f] adjust install and links file to new upstream
  * [332b7a8] Revert "override libtheora embedded-library error" no longer
    needed

 -- Christoph Goehre <chris@sigxcpu.org>  Sat, 05 Nov 2011 20:31:29 +0100

icedove (5.0-2) experimental; urgency=low

  * [7f92927] fix FTBFS on ia64: use gcc with -O2 instead of -Os
  * [b6b8dea] Disable methodjit on armel
  * [5b45336] remove obsolete conffiles with dpkg-maintscript-helper
    (Closes: #636819)
  * [868cfa3] rebuild patch queue from patch-queue branch
    added patches:
    - porting/Allow-ipc-code-to-build-on-GNU-hurd.patch - fix building on
      GNU/hurd - Thanks to Pino Toscano

 -- Christoph Goehre <chris@sigxcpu.org>  Sun, 07 Aug 2011 15:35:09 +0200

icedove (5.0-1) experimental; urgency=low

  * New Upstream Version (Closes: #632037)
  * [98c5a8f] build against libffi and libvpx
  * [52dff12] build javascript lib as shared library
  * [6f1c24d] build against mozilla png library
  * [9e16beb] c-sdk moved from directory/sdks/c-sdk to ldap/sdks/c-sdk
  * [57763a0] override libtheora embedded-library error
  * [fc71b62] adjust install/links files for new upstream version
  * [6e83a58] Revert "lintian: override ancient-libtool warning" override no
    longer needed
  * [d65b463] change hardcoded list of non-Linux build depends into linux-any
    (Closes: #634301)
  * [ff3a8f3] remove file compare in build run
  * [a21efa9] add branding for icedove 5.0
  * [7023939] update porting/Fix-FTBFS-in-xpcom-base-on-armv4t.patch - fix
    building on armhf

 -- Christoph Goehre <chris@sigxcpu.org>  Wed, 03 Aug 2011 18:25:17 +0200

icedove (3.1.11-1) unstable; urgency=high

  * New Upstream Version
    - MFSA 2011-19 aka CVE-2011-2364, CVE-2011-2365, CVE-2011-2374,
                       CVE-2011-2376:
      Miscellaneous memory safety hazards (rv:3.0/1.9.2.18)
    - MFSA 2011-20 aka CVE-2011-2373: Use-after-free vulnerability when
      viewing XUL document with script disabled
    - MFSA 2011-21 aka CVE-2011-2377: Memory corruption due to
      multipart/x-mixed-replace images
    - MFSA 2011-22 aka CVE-2011-2371: Integer overflow and arbitrary code
      execution in Array.reduceRight()
    - MFSA 2011-23 aka CVE-2011-0083, CVE-2011-0085, CVE-2011-2363:
      Multiple dangling pointer vulnerabilities
    - MFSA 2011-24 aka CVE-2011-2362: Cookie isolation error
  * [2a82ce8] DM-Upload-Allowed is superfluous since I'm DD

 -- Christoph Goehre <chris@sigxcpu.org>  Sun, 26 Jun 2011 10:35:31 +0200

icedove (3.1.10-2) unstable; urgency=low

  * [de81b7f] remove obsolete build depends libxp-dev (Closes: #623668)
  * [633782d] change DEB_HOST_MULTIARCH back to DEB_HOST_GNU_TYPE and
    downgrade sqlite version (Closes: #627598)

 -- Christoph Goehre <chris@sigxcpu.org>  Mon, 06 Jun 2011 20:53:54 +0200

icedove (3.1.10-1) unstable; urgency=high

  * New Upstream Version (Closes: #625207)
    - MFSA 2011-12 aka CVE-2011-0069, CVE-2011-0070, CVE-2011-0072,
                       CVE-2011-0074, CVE-2011-0075, CVE-2011-0077,
                       CVE-2011-0078, CVE-2011-0080, CVE-2011-0081:
      Miscellaneous memory safety hazards (rv:2.0.1/ 1.9.2.17/ 1.9.1.19)
    - MFSA 2011-16 aka CVE-2011-0071: Directory traversal in resource: protocol
  * [78e0217] build against system libbz2
  * [e6af761] build against system libpng
  * [4b57c30] build against system libhunspell
  * [937f0bd] double check to build against most system libraries
  * [d6de723] rebuild patch queue from patch-queue branch
    added patches (Closes: #624969):
    - 0072-fix-building-with-gcc-4.6-Add-constructor-to-placate.patch
    - 0073-fix-building-with-gcc-4.6-os2.cc-missing-include-cst.patch
    - 0074-Add-constructor-for-nsCaseInsensitiveStringComparato.patch
    - 0075-Add-constructor-for-nsXULAppInfo-which-inherits-from.patch
    - 0076-Add-constructor-for-GTKEmbedDirectoryProvider.patch
    modified patches:
    - 0056-Disable-APNG-support-when-system-libpng-doesn-t-supp.patch
    obsolete patches (fixed upstream):
    - 0051-Do-exec-instead-of-uselessly-forking-in-xulrunner-la.patch
    - 0072-Add-support-for-libnotify-0.7.patch
  * [e190ef1] bump up standards version to 3.9.2 (change DEB_HOST_GNU_TYPE to
    DEB_HOST_MULTIARCH)

 -- Christoph Goehre <chris@sigxcpu.org>  Tue, 10 May 2011 20:03:04 +0200

icedove (3.1.9-2) unstable; urgency=low

  * Upload to unstable
  * [ace3b6f] rebuild patch queue from patch-queue branch
    added patches:
    - 0072-Add-support-for-libnotify-0.7.patch
  * [910f213] use DEP5 for copyright file
  * [3ae4c8b] set global section to 'mail'
  * [42c9c89] icedove.1: icedove is derived from Thunderbird instead of
    Mozilla suite

 -- Christoph Goehre <chris@sigxcpu.org>  Sat, 02 Apr 2011 09:43:04 +0200

icedove (3.1.9-1) experimental; urgency=low

  * New Upstream Version
    - MFSA 2011-01 aka CVE-2011-0053, CVE-2011-0062: Miscellaneous memory
      safety hazards (rv:1.9.2.14/ 1.9.1.17)
    - MFSA 2011-08 aka CVE-2010-1585: ParanoidFragmentSink allows javascript:
      URLs in chrome documents
    - MFSA 2011-09 aka CVE-2011-0061: Crash caused by corrupted JPEG image
  * [699536a] rebuild patch queue from patch-queue branch
    added patches:
    - 0069-save-a-copy-of-a-attached-file-when-sending-from-OOo.patch
      (Closes: #505875)
    - 0070-News-article-is-empty-if-selected-during-download-fr.patch
      (Closes: #487494)
    - 0071-restore-icedove-on-login-by-session-management.patch
      (Closes: #403458)
    modified patches:
    - 0003-no_dynamic_nss_softokn.patch
    - 0010-Support-building-on-GNU-kFreeBSD-and-GNU-Hurd.patch
    - 0030-Don-t-error-out-when-run-time-libsqlite-is-older-tha.patch
  * [98d8ac0] c-sdk move to sdks/c-sdk - adjust
    debian/{copyright,remove.nonfree,rules}

 -- Christoph Goehre <chris@sigxcpu.org>  Wed, 09 Mar 2011 20:21:59 +0100

icedove (3.1.7-1) experimental; urgency=low

  * New Upstream Version (Closes: #606977)
    - MFSA 2010-74 aka CVE-2010-3776, CVE-2010-3777: Miscellaneous memory
      safety hazards (rv:1.9.2.13/ 1.9.1.16)
    - MFSA 2010-75 aka CVE-2010-3769: Buffer overflow while line breaking
      after document.write with long string
    - MFSA 2010-78 aka CVE-2010-3768: Add support for OTS font sanitizer
  * [46e3e8a] rebuild patch queue from patch-queue branch
    added patches:
    - 0068-fix-forwarding-of-Simple-HTML-email.patch
    obsolete patches (fixed upstream):
    - 0017-Implement-sync_instruction_memory-for-sparc-linux.patch
    - 0059-Fix-startup-problem-with-symlinked-components-e.g.-e.patch
  * [9fcce0c] add license info for gfx/ots

 -- Christoph Goehre <chris@sigxcpu.org>  Mon, 13 Dec 2010 17:59:50 +0100

icedove (3.1.6-1) experimental; urgency=low

  * New Upstream Version (Closes: #601334)
    - MFSA 2010-64 aka CVE-2010-3175, CVE-2010-3176: Miscellaneous memory
      safety hazards (rv:1.9.2.11/ 1.9.1.14)
    - MFSA 2010-65 aka CVE-2010-3179: Buffer overflow and memory corruption
      using document.write
    - MFSA 2010-66 aka CVE-2010-3180: Use-after-free error in nsBarProp
    - MFSA 2010-67 aka CVE-2010-3183: Dangling pointer vulnerability in
      LookupGetterOrSetter
    - MFSA 2010-69 aka CVE-2010-3178: Cross-site information disclosure via
      modal calls
    - MFSA 2010-71 aka CVE-2010-3182: Unsafe library loading vulnerabilities
    - MFSA 2010-73 aka CVE-2010-3765: Heap buffer overflow mixing
      document.write and DOM insertion
  * [270fd51] rebuild patch queue from patch-queue branch
    added patches:
    - 0069-Use-errno.ENOENT-instead-of-2-in-JarMaker.py.patch
    modified patches:
    - 0009-fix-branding-in-migration-wizard-and-the-addon-manag.patch
  * [24421f4] bump build depends for libnspr4-dev, libnss3-dev and
    libsqlite3-dev

 -- Christoph Goehre <chris@sigxcpu.org>  Wed, 10 Nov 2010 07:11:17 +0100

icedove (3.1.4-1) experimental; urgency=low

  * New Upstream Version

 -- Christoph Goehre <chris@sigxcpu.org>  Sat, 18 Sep 2010 18:25:37 +0200

icedove (3.1.3-1) experimental; urgency=low

  * New Upstream Version
    - MFSA 2010-49 aka CVE-2010-3169: Miscellaneous memory safety hazards
      (rv:1.9.2.9/ 1.9.1.12)
    - MFSA 2010-50 aka CVE-2010-2765: Frameset integer overflow vulnerability
    - MFSA 2010-51 aka CVE-2010-2767: Dangling pointer vulnerability using DOM
      plugin array
    - MFSA 2010-53 aka CVE-2010-3166: Heap buffer overflow in
      nsTextFrameUtils::TransformText
    - MFSA 2010-54 aka CVE-2010-2760: Dangling pointer vulnerability in
      nsTreeSelection
    - MFSA 2010-55 aka CVE-2010-3168: XUL tree removal crash and remote code
      execution
    - MFSA 2010-56 aka CVE-2010-3167: Dangling pointer vulnerability in
      nsTreeContentView
    - MFSA 2010-57 aka CVE-2010-2766: Crash and remote code execution in
      normalizeDocument
    - MFSA 2010-59 aka CVE-2010-2762: SJOW creates scope chains ending in
      outer object
    - MFSA 2010-61 aka CVE-2010-2768: UTF-7 XSS by overriding document charset
      using <object> type attribute
    - MFSA 2010-62 aka CVE-2010-2769: Copy-and-paste or drag-and-drop into
      designMode document allows XSS
    - MFSA 2010-63 aka CVE-2010-2764: Information leak via XMLHttpRequest
      statusText
  * [9a03eb1] rebuild patch queue from patch-queue branch
    added patches:
    - 0060-fix-FTBFS-on-hurd.patch (Closes: #595665)
    - 0061-Enable-x64-JIT-backend-by-default.patch
    - 0062-Fix-unaligned-reads-in-qcms.patch
    - 0063-Import-js-src-nanojit-njcpudetect.h.patch
    - 0064-Use-clz-on-android-even-for-armv5-target.patch
    - 0065-Fix-ARM-verbose-assembly-output-for-BLX.patch
    - 0066-Get-rid-of-blx_lr_bug.patch
    - 0067-Avoid-some-ARM-CPU-arch-related-runtime-tests-depend.patch
    - 0068-ARMv4T-support-for-nanojit.patch

 -- Christoph Goehre <chris@sigxcpu.org>  Tue, 14 Sep 2010 13:41:19 +0200

icedove (3.1.2-2) experimental; urgency=low

  * [e1435dc] rebuild patch queue from patch-queue branch
    added patches:
    - 0060-Fix-startup-problem-with-symlinked-components-e.g.-e.patch
      (Closes: #592531)
    modified patches:
    - 0048-Add-nanojit-support-for-ARMv4T.patch - Fix FTBFS on armel

 -- Christoph Goehre <chris@sigxcpu.org>  Sat, 21 Aug 2010 14:51:03 +0200

icedove (3.1.2-1) experimental; urgency=low

  * New Upstream Version (Closes: #589666, #591899)
   - MFSA 2010-34 aka CVE-2010-1211, CVE-2010-1212: Miscellaneous memory
     safety hazards (rv:1.9.2.7/ 1.9.1.11)
   - MFSA 2010-38 aka CVE-2010-1215: Arbitrary code execution using SJOW and
     fast native function
   - MFSA 2010-39 aka CVE-2010-2752: nsCSSValue::Array index integer overflow
   - MFSA 2010-40 aka CVE-2010-2753: nsTreeSelection dangling pointer remote
     code execution vulnerability
   - MFSA 2010-41 aka CVE-2010-1205: Remote code execution using malformed PNG
     image
   - MFSA 2010-42 aka CVE-2010-1213: Cross-origin data disclosure via Web
     Workers and importScripts
   - MFSA 2010-43 aka CVE-2010-1207: Same-origin bypass using canvas context
   - MFSA 2010-44 aka CVE-2010-1210: Characters mapped to U+FFFD in 8 bit
     encodings cause subsequent character to vanish
   - MFSA 2010-46 aka CVE-2010-0654: Cross-domain data theft using CSS
   - MFSA 2010-47 aka CVE-2010-2754: Cross-origin data leakage from script
     filename in error messages
  * [6b9976e] rebuild patch queue from patch-queue branch
    modified patches:
    - 0010-Support-building-on-GNU-kFreeBSD-and-GNU-Hurd.patch
    - 0015-Don-t-register-plugins-if-the-MOZILLA_DISABLE_PLUGIN.patch
    - 0018-Work-around-FTBFS-on-mips-by-disabling-TLS-support.patch
    - 0034-Fix-compiler-errors-with-g-4.4-with-std-gnu-0x.patch
    - 0045-Expose-fullpath-from-nsIPluginTag.patch
    - 0047-Use-syscall-for-mmap-and-munmap-and-disable-ncpus-in.patch
    - 0050-Set-javascript.options.showInConsole.patch
    - 0057-Allow-to-build-against-system-libffi.patch
    - 0058-Ignore-system-libjpeg-libpng-and-zlib-version-checki.patch
    - 0059-Disable-APNG-support-when-system-libpng-doesn-t-supp.patch
  * [16b0e7e] fix FTBFS on kfreebsd-* and hurd-i386 by passing
    --disable-necko-wifi to configure (Closes: #589476)
  * [15a02c7] bump up standards version to 3.9.1

 -- Christoph Goehre <chris@sigxcpu.org>  Fri, 13 Aug 2010 12:18:21 +0200

icedove (3.1-1) experimental; urgency=low

  * New Upstream Version
  * [124a316] add additional build depends libnotify-dev
  * [5ed6a72] adjust branding for Icedove 3.1
  * [bed8969] install further js files shipped with Icedove 3.1
  * [02456e6] replace blue icedove icons with green version
  * [036921f] regenerate patch queue for 3.1 Icedove release
  * [a7fa393] build with system ffi
  * [d8650f7] ship icedove svg file for low resolution icons too
  * [7718c55] bump Standards Version to 3.9.0 and downgrade Conflicts to
    Breaks
  * [9621fc6] lintian: override ancient-libtool warning

 -- Christoph Goehre <chris@sigxcpu.org>  Sat, 17 Jul 2010 17:19:58 +0200

icedove (3.0.5-1) unstable; urgency=low

  * New Upstream Version
    - MFSA 2010-25 aka CVE-2010-1121: Re-use of freed object due to scope
      confusion
    - MFSA 2010-26 aka CVE-2010-1200, CVE-2010-1201, CVE-2010-1202: Crashes
      with evidence of memory corruption (rv:1.9.2.4/ 1.9.1.10)
    - MFSA 2010-29 aka CVE-2010-1196: Heap buffer overflow in
      nsGenericDOMDataNode::SetTextInternal
    - MFSA 2010-30 aka CVE-2010-1199: Integer Overflow in XSLT Node Sorting
  * [9774410] rebuild patch queue from patch-queue branch
    added patches:
    - 0045-Fix-misalignments-in-help-command-line.patch
    - 0046-Fix-misalignments-in-help-command-line.patch
    - 0047-KDE-Gnome-startup-notification-not-disappearing-when.patch
    - 0048-KDE-Gnome-startup-notification-not-disappearing-for-.patch
    - 0049-Use-char16_t-when-available-and-when-it-is-don-t-tes.patch
    - 0050-Fix-compiler-errors-with-g-4.4-with-std-gnu-0x.patch
    - 0051-Add-xptcall-support-for-SH4-processors.patch
    modified patches:
    - 0028-Avoid-crashing-when-trying-to-kill-a-nsProcess-that-.patch
    obsolete patches (fixed upstream):
    - 0021-Avoid-creating-the-updates-directory-when-update-ser.patch
    - 0035-Fix-stack-alignment-on-function-calls-in-JIT-on-ARM.patch
  * [3b98c84] avoid unneeded package depends by building with
    '-Wl,--as-needed'
  * [0067020] Build with -std=gnu++0x
  * [72d4300] add pkg-config file for icedove (Closes: #577740)
  * [e6af35d] enlarge package description with specification from icedove 2.0
    (Closes: #565887)
  * [ef0bc10] add support for new Debian arch: powerpcspe (Closes: #586100) -
    thanks to Sebastian Andrzej Siewior
  * [5ae6099] use high bandwidth server in watch file to get new upstream
    release
  * [5e6d641] remove obsolete build depends libkrb5-dev
  * [8ed7848] remove unused DEBIAN_VERSION vars in rules file
  * [9959bd5] DEB_HOST_GNU_TYPE, DEB_BUILD_GNU_TYPE and DEB_BUILD_ARCH are
    defined by cdbs too
  * [9f6c088] Fix misalignments in --help command line

 -- Christoph Goehre <chris@sigxcpu.org>  Sat, 19 Jun 2010 23:26:55 +0200

icedove (3.0.4-3) unstable; urgency=low

  * [4026b50] icedove-dev need depend on libnspr4-dev and libnss3-dev
    (Closes: #455725)
  * [1fee936] don't run configure with --enable-optimize and --disable-
    optimize if DEB_BUILD_OPTIONS contains noopt
  * [02c0ea3] ship account autoconfig file for Riseup Networks (riseup.net)
    (Closes: #577616)
  * [e710d08] suggest libgssapi-krb5-2 for Kerberos login possibility
  * [7609291] build a shared icedove binary. This avoid crashes because of
    mixed functions from system and icedove itself (e.g. str2charray from
    libldap_r-2.4.so.2 and libldap60.so). (Closes: #578916)
  * [68f4b49] downgrade gnome stuff from Recommends to Suggests
    (Closes: #579714)
  * [bcff10b] install mailViews.dat into usr/share/icedove/defaults/messenger

 -- Christoph Goehre <chris@sigxcpu.org>  Fri, 14 May 2010 22:21:32 +0200

icedove (3.0.4-2) unstable; urgency=low

  * [57f0a8b] remove icedove-3.0 transitional package (Closes: #576741)
  * [8008231] remove wrong mime types in desktop file
  * [a12edde] set StartupWMClass in desktop file to Icedove-bin
  * [7512224] extend package description of icedove, icedove-dev and
    icedove-dbg
  * [7e725b9] fix FTBFS on alpha by passing '-Wl,--no-relax' to gcc
  * [92d3515] Switch to dpkg-source 3.0 (quilt) format
  * [14d5894] rebuild patch queue from patch-queue branch
    added patches:
    - 0046-add-missing-headers-for-icedove-dev-package.patch (Closes: #577021)
    modified patches:
    - 0012-Support-building-on-GNU-kFreeBSD-and-GNU-Hurd.patch
    - 0020-Work-around-FTBFS-on-mips-by-disabling-TLS-support.patch
  * [2cdd850] remove obsolete thunderbird 3.0a1pre postinst stuff
  * [443f44b] process directory/c-sdk/configure with autoconf too
  * [66c2f65] remove obsolete build depends librsvg2-bin and patchutils

 -- Christoph Goehre <chris@sigxcpu.org>  Sun, 11 Apr 2010 12:44:26 +0200

icedove (3.0.4-1) unstable; urgency=low

  [ Guido Günther ]
  * [01983a4] Add missing message/rfc822 mime type for eml files
    (Closes: #574528)

  [ Christoph Goehre ]
  * New Upstream Version fixes:
    - MFSA 2010-16 aka CVE-2010-0173, CVE-2010-0174: Crashes with evidence of
      memory corruption (rv:1.9.2.2/ 1.9.1.9/ 1.9.0.19)
    - MFSA 2010-17 aka CVE-2010-0175: Remote code execution with
      use-after-free in nsTreeSelection
    - MFSA 2010-18 aka CVE-2010-0176: Dangling pointer vulnerability in
      nsTreeContentView
    - MFSA 2010-22 aka CVE-2009-3555: Update NSS to support TLS renegotiation
      indication
    - MFSA 2010-24 aka CVE-2010-0182: XMLDocument::load() doesn't check
      nsIContentPolicy
  * upload icedove 3 to unstable (Closes: #401848, #422886, #425497, #430644,
    #483550, #495522, #501113, #552617, #574188)
  * rebuild patch queue from patch-queue branch:
    added patches:
    - 0044-don-t-remove-xpt-tools.patch
    - 0045-Don-t-error-out-when-run-time-libsqlite-is-older-tha.patch
    modified patches:
    - 0011-fix-branding-in-migration-wizard-and-the-addon-manag.patch
    - 0012-Support-building-on-GNU-kFreeBSD-and-GNU-Hurd.patch
    - 0030-Force-better-nsAutoT-Ptr-Array-buffer-alignment.patch
    - 0035-Fix-stack-alignment-on-function-calls-in-JIT-on-ARM.patch
    obsolete patches (fixed upstream):
    - 0021-Fix-crash-with-SwitchProxy-installed.patch
    - 0023-Don-t-remove-build-automationutils.py-on-make-clean.patch
    - 0039-Don-t-show-the-SVG-output-option-in-the-print-dialog.patch
  * [a7f3529] Revert "disable prefetch service". This bug was already fixed in
    3.0.2 (CVE-2009-4629) and 'network.prefetch-next' has no effect in
    icedove.
  * [fecc0b4] install versioned build depends instead of checking on build
    time
  * [4806890] enable building of icedove-dev package
  * [412b8ac] be more explicit on installing file into icedove package
  * [23b1d4b] depends on newer version of libnspr4-dev and libnss3-dev
  * [809c723] lintian: idl files didn't need to be executable
  * [ecd284e] lintian: add ${shlibs:Depends} to icedove-dev package
  * [da75ee2] replace/remove non-free searchplugin icons and doubtful
    origin file in mozilla folder (Closes: #567917)
  * [eaf405e] update /usr/lib/icedove/dictionaries symlink to point to
    /usr/share/hunspell
  * [fe362ba] describe profile renaming on update to icedove 3.0
    (Closes: #566329)

 -- Christoph Goehre <chris@sigxcpu.org>  Mon, 05 Apr 2010 21:11:42 +0200

icedove (3.0.3-1) experimental; urgency=low

  * New Upstream Version fixes:
    - missing folders or empty folder pane after updating to version 3.0.2
  * [a69cdfd] rebuild patches from patch-queue:
    - additional fix for FTBFS on kfreeBSD
  * [e4bffd4] disable prefetch service (Closes: #572789)
  * [3838bbe] branding files shouldn't be executable
  * [3dc6688] add missing newline in logo license file

 -- Christoph Goehre <chris@sigxcpu.org>  Sat, 06 Mar 2010 21:48:50 +0100

icedove (3.0.2-1) experimental; urgency=low

  * New Upstream Version fixes:
    - MFSA 2010-01 aka CVE-2010-0159: Crashes with evidence of memory
      corruption (rv:1.9.1.8/ 1.9.0.18)
    - MFSA 2010-03 aka CVE-2009-1571: Use-after-free crash in HTML parser
  * [1fd705f] install menu file (Closes: #569166)
  * [8df3f99] generate desktop files at build process
  * [5b0bb84] add icedove branding logos
  * [1ef1c10] copyright explanation of icedove artwork (Closes: #406849)
  * [6cdc0b0] remove forgotten firefox branding icons (Closes: #567917)
  * [cec6a38] swedish translation for desktop file (Closes: #420050)
  * [0256328] readd translation for desktop file
  * [20311f4] rebuild patches (most patches from Mike Hommey)
    - fix FTBFS on kFreeBSD, hppa, mips
    - stability patched for mips, alpha, sparc, ppc and arm
    - really cleanup build directory on 'make clean/distclean'
    - allow intl.locale.matchOS to be modified in user profile
  * [0098f90] write manpage for icedove (Closes: #425490, #487493)
  * [fbccfaa] no longer suggest libthai0 (Closes: #524436)
  * [26d3e39] change suggests from transitional package latex-xft-fonts
    to ttf-lyx (Closes: #539535)
  * [e24801a] improve desktop file (remove deprecated items and
    warnings/errors)
  * [68885c4] bump up standards version to 3.8.4
  * [df39ede] use xpm icon in menu file to calm lintian
  * [8303887] adjust sqlite version to new upstream dependency

 -- Christoph Goehre <chris@sigxcpu.org>  Sun, 28 Feb 2010 18:19:13 +0100

icedove (3.0.1-2) experimental; urgency=low

  [ Guido Günther ]
  * [7ea7367] Explicitly pass build and host type to configure (Closes:
    #546011) - thanks to Sven Joachim <svenjoac@gmx.de> for the patch
  * [7fca9e1] Add back icedove changelog of earlier versions

  [ Christoph Goehre ]
  * [72b78cc] Support both - and _ separators in dictionary names - patch from
    Reed Loden
  * [9a96759] fix branding in migration wizard and the addon manager (Closes:
    #565559)- patch from Edward J.  Shornock

 -- Christoph Goehre <christoph.goehre@gmx.de>  Tue, 02 Feb 2010 20:32:24 +0100

icedove (3.0.1-1) experimental; urgency=low

  * New Upstream Version
  * [8a2f5dc] define default options for git-import-orig
  * [ac65b1b] refresh debian patches
  * [851c5dc] rename binary packages to icedove (without version number)
  * [6e12d1b] adjust cairo version to 1.8.8
  * [cd7cd6f] moving the old profile dir instead of copy
  * [c342380] replace theme directory always by link to /usr/share if we
    update to version 3
  * [c88eaa7] expansion of lib{dbusservice,mozgnome,nkgnomevfs}.so didn't work
    with dpkg-shlibdeps - lets use the '-e' switch

 -- Christoph Goehre <chris@sigxcpu.org>  Thu, 21 Jan 2010 20:53:57 +0100

icedove (3.0-2) experimental; urgency=low

  * [f07e702] Add Replaces for icedove-gnome-support
  * [72e66e7] Fix typo

 -- Guido Günther <agx@sigxcpu.org>  Fri, 08 Jan 2010 16:05:10 +0100

icedove (3.0-1) experimental; urgency=low

  * Final upstream version without any source code changes against RC2

  [ Guido Günther ]
  * [77d611e] Add Vcs-{Git,Browser}
  * [ec7ddd6] Move VCS to where they belong

  [ Christoph Goehre ]
  * [524d1f5] don't hardcode $MOZ_APP_NAME in Makefile.in file
  * [0407ff3] mailclient bin called now $DEB_MOZ_APPLICATION
  * [e6040b5] merge icedove-3.0-gnome-support into icedove-3.0 package
  * [07417e0] install default theme and components/*.js into
    /usr/share/icedove-3.0
  * [3d37478] add missed components files
  * [f09cfad] add another preferences directory for applications:
    preferences/syspref - thanks to Mike Hommey
  * [d92e265] install debian config into /etc/icedove-3.0/pref and link
    into defaults/syspref
  * [18a886b] disable application update
  * [76ea38a] let lockPref() in .js files work - thanks to Mike Hommey
  * [e44133e] gnome-default-mail-client: check for MOZ_APP_NAME instead
    for hardcoded 'thunderbird'
  * [8573c8d] set DM-Upload-Allowed to yes
  * [1c63920] install modules directory into /usr/share/icedove-3.0
  * [3a85ac6] add gbp.conf for easier package build with
    git-buildpackage
  * [7feb54a] add watch file
  * [e0a1624] document how to clean upstream source code

 -- Christoph Goehre <chris@sigxcpu.org>  Fri, 08 Jan 2010 10:42:09 +0100

icedove (3.0~rc2-2) experimental; urgency=low

  [ Christoph Goehre ]
  * [5b7992b] rename source package to unversioned name
  * [cde3507] change Maintainer back to asac, add Uploaders Guido and me
  * [978c58d] disable icedove-3.0-dev package build for now until it is fixed
    upstream
  * Upstream is identical to 3.0 final

 -- Guido Günther <agx@sigxcpu.org>  Thu, 17 Dec 2009 18:36:58 +0100

icedove-3.0 (3.0~rc2-1) experimental; urgency=low

  [ Christoph Goehre ]
  * New Upstream Version (RC2)
    - fixes 494014, 516950, 531278, 531502 in Mozilla Bugzilla
  * [fc3fa5c] Revert "mark icedove-3.0-dev as transitional package for
    xulrunner-dev"

  [ Guido Günther ]
  * [51c1cca] Bump standards version
  * [5e2a53c] Refer to versioned license
  * [171f382] s/explicitely/explicitly/

 -- Christoph Goehre <christoph.goehre@gmx.de>  Tue, 08 Dec 2009 18:46:28 +0100

icedove-3.0 (3.0~rc1-1) experimental; urgency=low

  * New Upstream Version (RC1)
  * [cce57db] ship extracted upstream tarball in orig file
  * [ee7677f] remove obsolet licence fix
  * [7051ca8] install TB_ICON only once
  * [4f20bb1] add unbranded preview theme icon
  * [0002285] install non-binary stuff in /usr/share and link it into
    /usr/lib
  * [c9ce50f] get right of system myspell
  * [5c96edf] remove version check for hunspell in debian/rules
  * [13b57a3] mark icedove-3.0-dev as transitional package for
    xulrunner-dev
  * [8ecaec9] all packages need ${misc:Depends} as depends, if we use
    debhelper
  * [fc0dd78] dbg package must have section debug and priority extra
  * [3a00f22] enable more config options and add build depends (filched from
    iceape 2.0)
  * [fd8e3ca] build against system sqlite if available
  * [81165e1] build with 'export BUILD_OFFICIAL=1'

 -- Christoph Goehre <christoph.goehre@gmx.de>  Thu, 03 Dec 2009 10:16:46 +0100

icedove-3.0 (3.0~b3~hg20090713r3057-1~gbp253e4ab) sid; urgency=low

  * New snapshot.

 -- Guido Günther <agx@sigxcpu.org>  Tue, 14 Jul 2009 10:24:57 +0200

icedove-3.0 (3.0~b3~hg20090713r3057-1~gbpefd0706) sid; urgency=low

  * New snapshot.

 -- Guido Günther <agx@sigxcpu.org>  Tue, 14 Jul 2009 10:24:50 +0200

icedove-3.0 (3.0~b3~hg20090713r3057-1~gbpfeeee47) sid; urgency=low

  * New snapshot.

 -- Guido Günther <agx@sigxcpu.org>  Tue, 14 Jul 2009 10:11:10 +0200

icedove-3.0 (3.0~b3~hg20090505r2552-1~gbp595a0b7) sid; urgency=low

  * New snapshot.

 -- Guido Günther <agx@sigxcpu.org>  Tue, 05 May 2009 18:03:25 +0200

icedove-3.0 (3.0~b3~hg20090427r2499-1~gbpbeb7cd6) sid; urgency=low

  * New snapshot.

 -- Guido Günther <agx@sigxcpu.org>  Mon, 27 Apr 2009 20:05:51 +0200

icedove-3.0 (3.0~b3~hg20090427r2499-1~gbp80a8829) sid; urgency=low

  * New snapshot.

 -- Guido Günther <agx@sigxcpu.org>  Mon, 27 Apr 2009 19:56:09 +0200

icedove-3.0 (3.0~b3~hg20090422r2448-1~gbpd4ee3b3) pkg-mozext; urgency=low

  * New snapshot.

 -- Guido Günther <agx@sigxcpu.org>  Wed, 22 Apr 2009 09:14:54 +0200

icedove-3.0 (3.0~b3~hg20090421r2441-1~gbp66d9bed) pkg-mozext; urgency=low

  * New snapshot.

 -- Guido Günther <agx@sigxcpu.org>  Tue, 21 Apr 2009 19:35:09 +0200

icedove-3.0 (3.0~b3~hg20090420r2424-1~gbp47b25b8) pkg-mozext; urgency=low

  * New snapshot.

 -- Guido Günther <agx@sigxcpu.org>  Mon, 20 Apr 2009 11:28:56 +0200

icedove-3.0 (3.0~b3~hg20090418r2418+nobinonly-1~0~gbpa19783) pkg-mozext; urgency=low

  * Initial release

 -- Guido Günther <agx@sigxcpu.org>  Sun, 19 Apr 2009 13:44:33 +0200

icedove (2.0.0.22-1.1) unstable; urgency=low

  * Non-maintainer upload.
  * update /usr/lib/icedove/dictionaries symlink to point to
    /usr/share/hunspell (closes: #549876)
  * add $[shlibs:Depends} to iceape-dev 

 -- Rene Engelhard <rene@debian.org>  Mon, 09 Nov 2009 17:11:50 +0100

icedove (2.0.0.22-1) unstable; urgency=low

  * New upstream security/stability update (v2.0.0.21/v2.0.0.22) (Closes: 535124)
    * MFSA 2009-33: Crash viewing multipart/alternative message with text/enhanced part
    * MFSA 2009-32 aka CVE-2009-1841: JavaScript chrome privilege escalation
    * MFSA 2009-29 aka CVE-2009-1838: Arbitrary code execution using event listeners
      attached to an element whose owner document is null
    * MFSA 2009-27 aka CVE-2009-1836: SSL tampering via non-200 responses to proxy
      CONNECT requests
    * MFSA 2009-24 aka CVE-2009-1832+CVE-2009-1831: Crashes with evidence of memory
      corruption (rv:1.9.0.11)
    * MFSA 2009-17 aka CVE-2009-1307: Same-origin violations when Adobe Flash loaded
      via view-source: scheme
    * MFSA 2009-14 aka CVE-2009-1303+CVE-2009-1302: Crashes with evidence of memory
      corruption (rv:1.9.0.9)
    * MFSA 2009-15 aka CVE-2009-0652: URL spoofing with box drawing character
    * MFSA 2009-10 aka CVE-2009-0040: Upgrade PNG library to fix memory safety hazards
    * MFSA 2009-09 aka CVE-2009-0776: XML data theft via RDFXMLDataSource and cross-domain
      redirect
    * MFSA 2009-07 aka CVE-2009-0771,-0772,-0773,-0774: Crashes with evidence of memory
      corruption (rv:1.9.0.7)
    * MFSA 2009-01 aka CVE-2009-0352,CVE-2009-0353 Crashes with evidence of memory
      corruption (rv:1.9.0.6)
  * adjust patches to changed codebase
    - update debian/patches/ubuntu-mail-app-xre-name

 -- Alexander Sack <asac@debian.org>  Wed, 01 Jul 2009 12:18:03 +0200

icedove (2.0.0.19-1) unstable; urgency=medium

  * New upstream security/stability update (v.2.0.0.18/2.0.0.19) Closes: 505563
    2.0.0.18:
    * MFSA 2008-48 aka CVE-2008-5012 - Image stealing via canvas and HTTP
      redirect
    * MFSA 2008-50 aka CVE-2008-5014 - Crash and remote code execution via
      __proto__ tampering
    * MFSA 2008-52 aka CVE-2008-5017 - Crashes with evidence of memory
      corruption (rv:1.9.0.4/1.8.1.18); Browser engine crash in "Firefox 2
      and 3"
    * MFSA 2008-52 aka CVE-2008-5018 - Crashes with evidence of memory
      corruption (rv:1.9.0.4/1.8.1.18); JavaScript engine crash - "Firefox 2
      and 3"
    * MFSA 2008-55 aka CVE-2008-5021 - Crash and remote code execution in
      nsFrameManager
    * MFSA 2008-56 aka CVE-2008-5022 - nsXMLHttpRequest::NotifyEventListeners()
      same-origin violation
    * MFSA 2008-58 aka CVE-2008-5024 - Parsing error in E4X default namespace
    * MFSA 2008-59 aka CVE-2008-4582 - Script access to .documentURI and
      .textContent in mail
    2.0.0.19:
    * MFSA 2008-60 aka CVE-2008-5500 - Crashes with evidence of memory
      corruption (rv:1.9.0.5/1.8.1.19); Layout engine crashes - Firefox 2 and 3
    * MFSA 2008-61 aka CVE-2008-5503 - Information stealing via
      loadBindingDocument
    * MFSA 2008-64 aka CVE-2008-5506 - XMLHttpRequest 302 response disclosure
    * MFSA 2008-65 aka CVE-2008-5507 - Cross-domain data theft via script
      redirect error message
    * MFSA 2008-66 aka CVE-2008-5508 - Errors parsing URLs with leading
      whitespace and control characters
    * MFSA 2008-67 aka CVE-2008-5510 - Escaped null characters ignored by CSS
      parser
  * apply Maintainers, Uploaders changes done in 2.0.0.17 upload to
    debian/control
    - update debian/control
  * adjust/refresh patches to changed upstream code
    - update debian/patches/moz-app-name-as-mail-binary-name
    - update debian/patches/autoconf2.13-rerun

 -- Alexander Sack <asac@debian.org>  Sat, 03 Jan 2009 16:27:42 +0100

icedove (2.0.0.17-1) unstable; urgency=low

  * New upstream security/stability update (v.2.0.0.17), Closes: #500721
    * MFSA 2008-37 aka CVE-2008-0016 - UTF-8 URL stack buffer overflow
    * MFSA 2008-38 aka CVE-2008-3835 - nsXMLDocument::OnChannelRedirect()
      same-origin violation
    * MFSA 2008-41 aka CVE-2008-4058, CVE-2008-4059, CVE-2008-4060 - Privilege
      escalation via XPCnativeWrapper pollution
    * MFSA 2008-42 aka CVE-2008-4061, CVE-2008-4062, CVE-2008-4063,
      CVE-2008-4064 - Crashes with evidence of memory corruption
      (rv:1.9.0.2/1.8.1.17)
    * MFSA 2008-43 aka CVE-2008-4065, CVE-2008-4066 - BOM characters, low
      surrogates stripped from JavaScript before execution
    * MFSA 2008-44 aka CVE-2008-4067, CVE-2008-4068 - resource: traversal
      vulnerabilities
    * MFSA 2008-46 aka CVE-2008-4070 -  Heap overflow when canceling newsgroup
      message

  [ Michael Casadevall <sonicmctails@gmail.com> ]
  * debian/control:
    - Changed maintainer to Ubuntu Mozillateam
    - Added Uploaders to the team
    - Set DM-Upload-Allowed
    - Bumped standards version to 3.8.0

  [ Alexander Sack <asac@debian.org> ]
  * Closes: #497491 - Icedove inappropriately sets file-/MIME-type
    associations in .desktop database; we drop the Mime-Type= entry
    from debian/icedove.desktop
    - update debian/icedove.desktop

 -- Michael Casadevall <sonicmctails@gmail.com>  Sat, 18 Oct 2008 09:07:20 -0400

icedove (2.0.0.16-1) unstable; urgency=low

  * New upstream security/stability update (v2.0.0.16) fixes:
   * MFSA 2008-21 aka CVE-2008-2798 - Crashes with evidence of memory
     corruption
   * MFSA 2008-21 aka CVE-2008-2799 - Crashes with evidence of memory
     corruption
   * MFSA 2008-24 aka CVE-2008-2802 - Chrome script loading from fastload file
   * MFSA 2008-25 aka CVE-2008-2803 - Arbitrary code execution in
     mozIJSSubScriptLoader.loadSubScript()
   * MFSA 2008-26 aka CVE-2008-0304 - (followup) Buffer length checks in MIME
     processing
   * MFSA 2008-29 aka CVE-2008-2807 - Faulty .properties file results in
     uninitialized memory being used
   * MFSA 2008-31 aka CVE-2008-2809 - Peer-trusted certs can use alt names to
     spoof
   * MFSA 2008-33 aka CVE-2008-2811 - Crash and remote code execution in block
     reflow
   * MFSA 2008-34 aka CVE-2008-2785 - Remote code execution by overflowing CSS
     reference counter

  * Closes: #483938 - add .desktop file translations (contributed by Timo
    Jyrinki <timo.jyrinki@iki.fi>)
    - update debian/icedove.desktop

  (cherry pick rev77 from lp:~mozillateam/thunderbird/thunderbird.dev branch)
  * drop patches applied upstream
    - drop debian/patches/bz419350_attachment_306066.patch
    - update debian/patches/series

  (cherry pick rev78 from lp:~mozillateam/thunderbird/thunderbird.dev branch)
  * adjust patches diverged upstream
    - update debian/patches/ubuntu-look-and-feel-report-a-bug-menuitem

  (cherry pick rev80 from lp:~mozillateam/thunderbird/thunderbird.dev branch)
  * Closes: #489093 - add explicit -lfontconfig to linker flags used for gfx/ps
    module to fix ftbfs in intrepid
    - add debian/patches/bzXXX_ftbfs_fontconfig.patch
    - update debian/patches/series

 -- Alexander Sack <asac@canonical.com>  Thu, 24 Jul 2008 17:38:51 +0200

icedove (2.0.0.14-1) unstable; urgency=medium

  * Upstream stability/security release, fixes
    + MFSA 2008-15 aka CVE-2008-1236 - Crashes with evidence of memory corruption
      (rv:1.8.1.13) - browser engine
    + MFSA 2008-15 aka CVE-2008-1237 - Crashes with evidence of memory corruption
      (rv:1.8.1.13) - javascript engine
    + MFSA 2008-14 aka CVE-2008-1233, CVE-2008-1234, CVE-2008-1235 - JavaScript
      privilege escalation and arbitrary code execution
  * update debian/remove.nonfree script to pull branding from bzr branch hosted
    at https://code.edge.launchpad.net/~mozillateam/thunderbird/icedove-branding-2.0.0.x
    - update debian/remove.nonfree
  * fix fallback https handler by adding pref("network.protocol-handler.app.https",
    "x-www-browser") to default system preference file. (Closes: #460954)
    - update debian/icedove.js
  * drop patches applied upstream:
    - delete debian/patches/bz399589_fix_missing_symbol_with_new_nss.patch
    - update debian/patches/series
  * fix broken reply-to-list extension (Closes: #439369)
    - add debian/patches/replytolist_2.x.patch
    - update debian/patches/series
  * fix ftbfs on ia64 (Closes: #477281)
    - add debian/patches/bz419350_attachment_306066.patch
    - update debian/patches/series
  * drop forced use of gcc/g++ 4.2 and use default compiler again; in turn we
    drop gcc-4.2 and g++-4.2 from Build-Depends
    - update debian/control
    - update debian/rules

 -- Alexander Sack <asac@debian.org>  Fri, 09 May 2008 17:57:55 +0200

icedove (2.0.0.12-1) unstable; urgency=low

   * New Upstream stability/security release, fixes various advisories:
     + CVE-2008-0416 aka MFSA 2008-13  Multiple XSS vulnerabilities from
       character encoding
     + CVE-2008-0304 aka MFSA 2008-12 Heap buffer overflow in external MIME
       bodies
     + CVE-2008-0418 aka MFSA 2008-05 Directory traversal via chrome: URI
     + CVE-2008-0415 aka MFSA 2008-03 Privilege escalation, XSS, Remote Code
       Execution
     + CVE-2008-0412 and CVE-2008-0413 aka MFSA 2008-01 Crashes with evidence
       of memory corruption (rv:1.8.1.12) - layout and javascript
  * Fix severe problems for powerpc architecture, by reverting arch-detect
    patch to introduce special behaviour only when FORCE_USE_HOST_OS is set in
    environment. For now only s390 is special cased in rules - as thats the
    architecture we introduced this patch for (Closes: #461981).
    - update debian/rules
    - debian/patches/arch-detect
  * fix "FTBFS with libnss3-dev=3.12.0~beta2-1" by introducing symbols not
    exported by new nss anymore. Reuse thunderbird patch from ubuntu.
    (Closes: #470128)
    - added debian/patches/bz399589_fix_missing_symbol_with_new_nss.patch
    - update debian/patches/series
  * add Vcs-Bzr: header to control pointing to the mozillateam packaging
    branch https://code.launchpad.net/~mozillateam/thunderbird/icedove-2.0.0.x
    - update debian/control
  * introduce .autoreg feature and touch /usr/lib/icedove/.autoreg in
    icedove-gnome-support.postinst and icedove-gnome-support.prerm iif that
    file exists.
    - update debian/rules
    - added debian/icedove-gnome-support.postinst
    - added debian/icedove-gnome-support.prerm
  * Adjust multiple patches because of changed upstream code base
    - update debian/patches/ubuntu-mail-app-xre-name
    - update debian/patches/autoconf2.13-rerun

 -- Alexander Sack <asac@debian.org>  Sat, 05 Apr 2008 23:05:11 +0200

icedove (2.0.0.9-3) unstable; urgency=low

  * drop network.protocol-handler.external.http setting as it caused
    regressions (Closes: 459564)
    - update debian/icedove.js

 -- Alexander Sack <asac@debian.org>  Wed, 09 Jan 2008 18:56:28 +0100

icedove (2.0.0.9-2) unstable; urgency=low

  * pass host arch information to configure and trust the supplied architecture
    information. Thanks to Bastian Blank. (Closes: 445959)
    - update debian/rules
    - add debian/patches/arch-detect
    - update debian/patches/autoconf2.13-rerun
    - update debian/patches/series
  * use /usr/lib/icedove/icedove as gnome integration command used to update
    gconf protocol handler. (Closes: 452919)
    - add debian/patches/icedove_gnome_command
    - update debian/patches/series
  * prefer gnome registry to lookup protocol handler if we are in a gnome
    session; in turn we enable x-www-browser as the http protocol by default
    (Closes: 452882)
    - add debian/patches/prefer_gnome_registry_in_gnome_session
    - update debian/patches/series
    - update debian/icedove.js

 -- Alexander Sack <asac@debian.org>  Sun, 30 Dec 2007 20:21:26 +0100

icedove (2.0.0.9-1) unstable; urgency=medium

  * new upstream stability/security update (v2.0.0.9):
    - MFSA 2007-36 aka CVE-2007-4841: "URIs with invalid %-encoding mishandled
      by Windows"
    - MFSA 2007-29 aka CVE-2007-5339: "Crashes with evidence of memory
      corruption (rv:1.8.1.8) - browser engine"
    - MFSA 2007-29 aka CVE-2007-5340: "Crashes with evidence of memory
      corruption (rv:1.8.1.8) - javascript engine"
  * adapt adapt patches to new upstream codebase:
    - drop debian/patches/bz389801_deb443454_fix_gtk_theme_crashes.patch
    - update debian/patches/68_mips_performance.dpatch
    - update debian/patches/series
    - update debian/patches/autoconf2.13-rerun
  * fix ftbfs due to changed cairo pc Requires: (Closes: 453179)
    - add debian/patches/bz344818_att264996.patch
    - update debian/patches/autoconf2.13-rerun
    - update debian/patches/series
  * add copyright file (Closes: 453365)
    - add debian/copyright
  * quote some if test ! ... lines to fix preinst errors (Closes: 427336)
    - update debian/icedove.preinst
  * update icedove menu section - use "Applications/Network/Communication"
    (Closes: 444903)
    - update debian/icedove.menu
  * don't try to install debian/tmp/usr/lib/icedove/defaults/isp as its not
    shipped by make install anymore
    - update debian/icedove.install

 -- Alexander Sack <asac@ubuntu.com>  Fri, 28 Dec 2007 16:05:05 +0100

icedove (2.0.0.6-1) unstable; urgency=low

  * new upstream release 2.0.0.6-1 fixes various security issues
   (Closes: #444010):
    - MFSA 2007-18 aka CVE-2007-3734, CVE-2007-3735 - Crashes with evidence of
      memory corruption (rv:1.8.1.5).
    - MFSA 2007-23 aka CVE-2007-3670 - Remote code execution by launching
      Firefox from Internet Explorer (doesn't apply to linux).
    - MFSA 2007-26 aka CVE-2007-3844 - Privilege escalation through
      chrome-loaded about:blank windows.
    - MFSA 2007-27 aka # CVE-2007-3845 - Unescaped URIs passed to external
      programs.
  * debian/patches/debian/patches/credits-rebranding: refresh patch because of
    code-base change in new upstream release.
  * debian/patche/bz389801_deb443454_fix_gtk_theme_crashes.patch,series:
       import fix for theme crashes from bugzilla (Closes: 443454).

 -- Alexander Sack <asac@debian.org>  Mon, 08 Oct 2007 12:09:42 +0000

icedove (2.0.0.4.dfsg1-2) unstable; urgency=low

  * debian/patches/autoconf2.13-rerun: rerun to apply last commits
    configure.in patch addition to configure.
  * debian/patches/force-no-pragma-visibility-for-gcc-4.2_4.3,
    debian/patches/series: don't use pragma for visibility as visibility
    hints are not perfect yet in mozilla code base.
  * debian/icedove.desktop: drop explicit .png extension from desktop icon name
  * debian/icedove.desktop, debian/icedove.links, debian/icedove.menu: fix various
    icon issues, by using /usr/share/icedove/icons/default.png instead of
    mozicon128.png as source for standard icedove pixmaps link 
    (Closes: #427076, #437064, #437090).
  * debian/control, debian/rules: use gcc-4.2 and g++-4.2 on all archs; add gcc-4.2
    and g++-4.2 to build-depends in control file.
  * debian/icedove.links: provide usr/share/icedove/chrome/icons/default/messengerWindow16.png
    as a link to usr/share/icedove/icons/mozicon16.png (Closes: #427723).
  * debian/icedove.install, debian/icedove.links: install isp directories
    /usr/share/icedove/isp and /usr/share/icedove/defaults/isp and link them to
    pkglibdir accordingly (Closes: #428421).

 -- Alexander Sack <asac@debian.org>  Mon, 27 Aug 2007 23:48:53 +0200

icedove (2.0.0.4.dfsg1-1) unstable; urgency=low

  * debian/remove.nonfree: update list of non-free/binary-only file from
    latest iceape updates" debian/remove.nonfree; update orig
    tarball accordingly. (Closes: 400340)
  * debian/control[.in]: icedove package now provides mail-reader,
    imap-client, news-reader instead of www-browser (Closes: 425167)

 -- Alexander Sack <asac@ubuntu.com>  Tue, 19 Jun 2007 15:00:12 +0200

icedove (2.0.0.4-1) unstable; urgency=low

  * stability/security upstream release 2.0.0.4
    - CVE-2007-2867 aka MFSA 2007-12 (l): Crashes with evidence of memory
      corruption (rv:1.8.0.12/1.8.1.4) - layout engine
    - CVE-2007-2868 aka MFSA 2007-12 (j): Crashes with evidence of memory
      corruption (rv:1.8.0.12/1.8.1.4) - javascript engine
    - CVE-2007-1558 aka MFSA 2007-15:  Security Vulnerability in APOP
      Authentication
  * debian/patches/gcc-workaround-visibility-hidden, debian/patches/series:
    applied upstream -> dropped visibility workaround patch
  * debian/patches/gnome-mime-handling: updated patch for bz273524 in
    response to upstream landing of bz373955
  * debian/patches/autoconf-regen: rerun autoconf accordingly
  * debian/patches/82_prefs.dpatch|series: import default font fixes
    from xulrunner 1.8.1.4-1 patchset (thanks to Mike Hommey
    <glandium@debian.org>)
  * debian/control[.in]: libnss3-dev build-depend is now versioned
    (Closes: 429202)

 -- Alexander Sack <asac@debian.org>  Mon, 18 Jun 2007 16:50:34 +0200

icedove (2.0.0.0-4) unstable; urgency=low

  * One that fix them all release - maybe.
  * fix symlinks for chrome/greprefs/defaults in .preinst
    (Closes: 425390, 425438, 425476, 425479, 425550, 425552, 425559, 425564, 425672, 425727, 426019)
  * debian/control[.in]: fix section -> s/web/mail/

 -- Alexander Sack <asac@debian.org>  Fri, 1 Jun 2007 13:13:13 +0200

icedove (2.0.0.0-3) unstable; urgency=low

  * fixing links in preinst (Closes: 424963, 425061, 425223)
    greprefs, chrome and defaults need to point to
    /usr/share/icedove/*
  * drop searchplugin link which even had a typo :)
  * debian/icedove.menu: ship debian menu entry 
    (Closes: 425224)

 -- Alexander Sack <asac@debian.org>  Sat, 20 May 2007 16:48:00 +0200

icedove (2.0.0.0-2) unstable; urgency=low

  * adding icedove-dbg package

 -- Alexander Sack <asac@debian.org>  Sat, 19 May 2007 17:33:00 +0200

icedove (2.0.0.0-1) unstable; urgency=low

  * icedovising
  * add debian/remove.nonfree
  * set upstream application fixed to 'thunderbird' in update-orig,
    so you can just drop thunderbird tarball and produce new orig
  * fix debian/control.in, drop transition packages. update debian/control
    for these modifications.
  * no autogen of configure and debian/control for release

 -- Alexander Sack <asac@debian.org>  Thu, 17 May 2007 14:00:00 +0200

thunderbird (1.99.rc1+2.0-1) feisty; urgency=low

  * branch firefox-trunk package for 2.0 thunderbird package
  * debian/control.in, debian/control: add transition packages:
    mozilla-thunderbird, mozilla-thunderbird-dev; disable dom-inspector
    package as there is nearly no hope that it ever will get maintained 
    upstream again.
  * debian/rules: remove inspector extension from configure; add excludes
    to dh_install of thunderbird and thunderbird-dev package:
    -
     DEB_DH_INSTALL_ARGS_thunderbird := -Xgnome -Ximgicon -Xmozlibthai
     DEB_DH_INSTALL_ARGS_thunderbird-dev := -Xnspr -Xnss

 -- Alexander Sack <asac@ubuntu.com>  Wed, 18 Apr 2007 13:35:34 +0200

icedove (1.5.0.10.dfsg1-3) unstable; urgency=low

  * debian/icedove*.xpm updated to use correct icon
    (Closes: 413976, 416476)
  * debian/patches/25_gnome_helpers_with_params.dpatch:
    Make helper applications with parameters work (bz#273524);
    this is an improved version of bugzilla patch by Mike Hommey 
    <glandium@debian.org>

 -- Alexander Sack <asac@debian.org>  Wed, 28 Mar 2007 21:55:08 +0200

icedove (1.5.0.10.dfsg1-2) unstable; urgency=low

  * debian/tmpls-typeaheadfind/install.rdf: fix version depends of 
    typeaheadfind (Closes: 413770)

 -- Alexander Sack <asac@debian.org>  Wed, 7 Mar 2007 13:13:13 +0100

icedove (1.5.0.10.dfsg1-1) unstable; urgency=low

  * new upstream release fixing security issues:
    - CVE-2007-0008, MFSA 2006-06: SSLv2 Client Integer Underflow
      Vulnerability
    - CVE-2007-0009, MFSA 2006-06: SSLv2 Server Stack Overflow
      Vulnerability
    - CVE-2007-0775, CVE-2007-0776, CVE-2007-0777, MFSA 2007-01:
      Crashes with evidence of memory corruption
  * 91_credits_icedove.dpatch: dump new xml entities from
    credits dialog (Closes: 404984, 412423)
  * 50_kbsd_nspr.dpatch, 50_kbsd.dpatch: adapt kbsd patches to apply to
    latest upstream code-base

  [ Christian Perrier <bubulle@debian.org>]

  * Rewrite debconf templates to fit the current Developer's Reference
    recommendations
  * Correct the name of the debconf templates file in debian/po/POTFILES.in
    Closes: #407220
  * Debconf translations:
    - Bulgarian added. Closes: #410627
    - Basque updated. Closes: #410633
    - German updated. Closes: #410672
    - Catalan updated. Closes: #410676
    - Spanish updated. Closes: #410709
    - Galician updated. Closes: #410720, #407944
    - Japanese updated. Closes: #410753
    - Tamil added. Closes: #410892
    - Portuguese updated. Closes: #409562
    - Vietnamese updated.
    - Malayalam added. Closes: #408109
    - Russian updated. Closes: #411064, #405741
    - Swedish. Closes: #410632
    - Polish. Closes: #411302
    - Fix typo in Italian translation. Closes: #363806
    - Romanian. Closes: #411361
    - Czech. Closes: #411409
    - Danish. Closes: #411402
    - Dutch. Closes: #411406
    - Italian. Closes: #411452
    - Brazilian Portuguese. Closes: #411538
    - Korean. Closes: #411624, #411581
    - Malayalam. Closes: #411647
    - Finnish. Closes: #411765

 -- Alexander Sack <asac@debian.org>  Fri, 23 Feb 2007 09:00:00 +0100

icedove (1.5.0.10.dfsg1-1.1) unstable; urgency=low

  * Non-maintainer upload to fix pending l10n issues.
  * Debconf translations:
    - Italian fixed. Closes: #363806
    - Russian added. Closes: #405741
    - Galician added. Closes: #407944
    - Malayalam added. Closes: #408109
    - Portuguese updated. Closes: #409562

 -- Christian Perrier <bubulle@debian.org>  Tue,  6 Feb 2007 06:55:08 +0100

icedove (1.5.0.9.dfsg1-1) unstable; urgency=high

  * new upstream version, fixes various security issues:
     - CVE-2006-6497 mfsa2006-68 layout engine
     - CVE-2006-6498 mfsa2006-68 javascript engine
     - CVE-2006-6499 mfsa2006-68 floating point
     - CVE-2006-6500 mfsa2006-69
     - CVE-2006-6501 mfsa2006-70
     - CVE-2006-6502 mfsa2006-71
     - CVE-2006-6503 mfsa2006-72
     - CVE-2006-6504 mfsa2006-73
     - CVE-2006-6505 mfsa2006-74
     - CVE-2006-6506 mfsa2006-75
     - CVE-2006-6507 mfsa2006-76
  * landing icedove artwork contributed by Ricardo Fernández 
    <unicko2000@yahoo.es>; svgs are in debian/branding. xpms and some
    pngs are generated with rsvg-convert and convert -> adding 
    build-depends to librsvg2-bin, imagemagick
  * including es.po translation contributed by Felipe Caminos 
    <felipem@gigared.com> (Closes: 402928)
  * updateing pt_BR.po provided by André Luís Lopes 
    <andrelop@debian.org> (Closes: 403827)
  * adapting credits dialog and Icedove Motto in 91_credits_icedove.dpatch
  * fix bad link in icedove manpage (icedove.sgml) (Closes: 398344)
  * rebranding install.rdf of default theme for icedove in
    91_rebranding_theme.dpatch (Closes: 393134)
  * adapt README.Debian to new icedove directories and name
  * clean old/not-needed files from debian/ directory:
    theme.part.defaultclassic, mail-jar.mn, messenger_jar_includes.csv
  * disabling patch: 99_bz360409_deb400383, which is applied
    upstream now.

 -- Alexander Sack <asac@debian.org>  Tue, 19 Dec 2006 12:00:00 +0100

icedove (1.5.0.8.dfsg1-1) unstable; urgency=medium

  * removing all currently known non-free and sourceless binaries
    from source package by running the script included for 
    reference in debian/remove.nonfree from the gnuzilla project
    (Closes: 400340)
  * added upstream approved quickfix for grave bug in 
    debian/patches/99_bz360409_deb400383.dpatch (Closes: 400383)
  * last chance kbsd upload ... reenabling kbsd patch with fix
    by Petr Salinger <Petr.Salinger@seznam.cz> (Closes: 399692)
  * remove missed non-free icons from
    debian/fhunderbird-branding.tmpl/ : background.png.uu, disk.icns.uu

 -- Alexander Sack <asac@debian.org>  Sun, 26 Nov 2006 19:00:00 +0100

icedove (1.5.0.8-3) unstable; urgency=low

  * disable kbsd patches in 00list because they appear to break
    build on other platforms. In consequence, 399692 and 363865
    will be reopened. Reenable 90_ppc64-build-fix (Closes: 400090)

 -- Alexander Sack <asac@debian.org>  Mon, 22 Nov 2006 15:10:00 +0100

icedove (1.5.0.8-2) unstable; urgency=low

  * fix mozilla.in for real (for transitional thunderbird link
    (Closes: 393123, 398037)
  * apply basque debconf translation (eu.po) for real
    (Closes: 398468)
  * included nl.po provided by Nick Niktaris <niktaris@knoppel.org>
    renaming as icedove first (Closes: 378360)
  * include greek translation in icedove.desktop provided by
    Nick Niktaris <niktaris@knoppel.org> (Closes: 384359)
  * include updated de.po translation provided by
    Alwin Meschede <ameschede@gmx.de> (Closes: 399083)
  * apply FTBFS on GNU/kFreeBSD porters patch provided by
    Petr Salinger <Petr.Salinger@seznam.cz> (Closes: 399692),
    which is claimed to provide a fix for ppc64 ftbfs too
    (Closes: 363865)
  * remove debug echo from icedove.preinst (Closes: 399723)

 -- Alexander Sack <asac@debian.org>  Mon, 21 Nov 2006 19:35:00 +0100

icedove (1.5.0.8-1) unstable; urgency=medium

  * new upstream version fixes various security issues
  * added transition package: thunderbird-gnome-support
    -> icedove-gnome-support as well as thunderbird-dbg
    -> icedove-dbg (Closes: 393105)
  * fix typo in postinst to fix browser integration scheme
    recognition as selected by debconf (Closes: 393765, 398427)
  * apply patch by  Ted Percival <ted@midg3t.net> to fix broken
    transitional thunderbird symlink (Closes: 393123, 398037)
  * apply patch by Andre Lehovich <andrel@yahoo.com> that fixes
    icedove package description typos  (Closes: 398468)
  * add basque debconf translation (eu.po) provided by Piarres 
    Beobide <pi@beobide.net> (Closes: 398719)
  * remove non-free rfc files from source tarball (Closes: 395095)

 -- Alexander Sack <asac@debian.org>  Wed, 15 Nov 2006 18:00:00 +0100

icedove (1.5.0.7-3) unstable; urgency=medium

  * unbrand thunderbird mail -> Icedove Mail/News due
    to trademark issues (Closes: 354622)

 -- Alexander Sack <asac@debian.org>  Thu, 12 Oct 2006 13:00:00 +0100

thunderbird (1.5.0.7-2) unstable; urgency=low

  * go through new upload ... reenable thunderbird-dbg
  * increase reference count for fontconfig charset
    91_fontconfig_reference_increment_388739 (Closes: 388739)

 -- Alexander Sack <asac@debian.org>  Wed, 27 Sep 2006 02:00:00 +0100

thunderbird (1.5.0.7-1) unstable; urgency=high

  * disabled new package to avoid queue new: thunderbird-dbg
  * new upstream release fixes security issues:
    + MFSA 2006-64 - CVE-2006-4571
    + MFSA 2006-63 - CVE-2006-4570
    + MFSA 2006-62 - CVE-2006-4569
    + MFSA 2006-61 - CVE-2006-4568
    + MFSA 2006-60 - CVE-2006-4340 (related to CVE-2006-4339)
    + MFSA 2006-59 - CVE-2006-4253
    + MFSA 2006-58 - CVE-2006-4567
    + MFSA 2006-57 - CVE-2006-4565, CVE-2006-4566
  * disable patch 90_gcc-extern-fix, because it has been pulled in upstream
  * disable 91_271815.overthespot.v1.2, because applied upstream

 -- Alexander Sack <asac@debian.org>  Fri, 15 Sep 2006 16:00:00 +0100

thunderbird (1.5.0.5-2) unstable; urgency=low

  * new package: thunderbird-dbg
    + improve configure options
    + enable svg
    + use debian build options to determine optimization flags
  * added build depends on libcairo-dev

 -- Alexander Sack <asac@debian.org>  Sat, 12 Aug 2006 15:00:00 +0100

thunderbird (1.5.0.5-1) unstable; urgency=high

  * new upstream release fixes various security flaws:
    + MFSA 2006-44, CVE-2006-3801
    + MFSA 2006-46, CVE-2006-3113
    + MFSA 2006-47, CVE-2006-3802
    + MFSA 2006-48, CVE-2006-3803
    + MFSA 2006-49, CVE-2006-3804
    + MFSA 2006-50, CVE-2006-3805, CVE-2006-3806
    + MFSA 2006-51, CVE-2006-3807
    + MFSA 2006-52, CVE-2006-3808
    + MFSA 2006-53, CVE-2006-3809
    + MFSA 2006-54, CVE-2006-3810
    + MFSA 2006-55, CVE-2006-3811
  * including patch 91_271815.overthespot.v1.2.dpatch 
    (Closes: 379936, 363814)
  * improve manpage: Document -g, --debug options (Closes: 381096)
  * update for ja.po, contributed by Kenshi Muto <kmuto@debian.org>
    (Closes: 379946)
  * update for pt.po, contributed by Rui Branco <ruipb@debianpt.org>
    (Closes: 381444)
  * Provide virtual package news-reader (Closes: 363834)
  * Apply patch which introduces ReplyToList MessageType. This is 
    the base to allow extensions that provide ReplyToList button to
    get installed. Thanks to Armin Berres <trigger@space-based.de>
    for pointing out this unintrusive patch. (Closes: 381273)
  * fix README.Debian for firefox integration as well as example of
    global pref.js (firefox.js.tmpl) (Closes: 363723)
  * further improvements for README.Debian
  * fix gnome integration program path in a hard-coded fashion
    in 91_gnome_path_fix.dpatch (Closes: 365610)

 -- Alexander Sack <asac@debian.org>  Sat, 12 Aug 2006 15:00:00 +0100

thunderbird (1.5.0.4-3) unstable; urgency=critical

  * fixing gcc-4.1 ftbfs (Closes: 377176)
  * improved manpage by Bastian Kleineidam <calvin@debian.org>
    documenting -safe-mode option (Closes: 370254)
  * include *no xgot* patch for mips/mipsel contributed by
    Thiemo Seufer <ths@networkno.de> (Closes: 374882)

 -- Alexander Sack <asac@debian.org>  Thu, 13 Jul 2006 15:00:00 +0100

thunderbird (1.5.0.4-2) unstable; urgency=critical

  * fix version in install.rdf for inspector and
    typeaheafind (Closes: 374382)
  * (last one was a new upstream release fixing
    various security issues (Closes: 373878, 373553)
  * urgency=critical

 -- Alexander Sack <asac@debian.org>  Mon, 19 Jun 2006 10:00:00 +0100

thunderbird (1.5.0.4-1) unstable; urgency=low

  * new upstream release fixing various security issues:
      MFSA 2006-42, CVE-2006-2783: Web site XSS using BOM on UTF-8 pages
      MFSA 2006-40, CVE-2006-2781: Double-free on malformed VCard
      MFSA 2006-38, CVE-2006-2778: Buffer overflow in crypto.signText()
      MFSA 2006-37, CVE-2006-2776: Remote compromise via content-defined 
            setter on object prototypes
      MFSA 2006-35, CVE-2006-2775: Privilege escalation through XUL persist
      MFSA 2006-33, CVE-2006-2786: HTTP response smuggling
      MFSA 2006-32, CVE-2006-2779, CVE-2006-2780: Fixes for crashes with 
            potential memory corruption
      MFSA 2006-31, CVE-2006-2787: EvalInSandbox escape (Proxy Autoconfig,
            Greasemonkey)
  * build depends:
    + xorg-dev -> libx11-dev, libxt-dev, libxinerama-dev,
      libxft-dev, libfreetype6-dev, libxrender-dev
    + removed binutils, coreutils and po-debconf
  * enable xinerama in debian/rules
  * fixed lintian errors:
    + do not depend on xorg dev meta package
    + debhelper depend is now versioned
    + changed package description(s) to not start with 'thunderbird'

 -- Alexander Sack <asac@debian.org>  Tue, 23 May 2006 15:00:00 +0100

thunderbird (1.5.0.2-3) unstable; urgency=low

  * patch-robbery from firefox package:
    + removed old mips and arm patches
    + added 50_arch_arm_fix
    + added 50_arch_alpha_fix
    + added 50_arch_m68k_fix
    + added 50_arch_mips_Makefile_fix
    + added 50_arch_mips_fix (Closes: 357755)
    + added 50_arch_parisc_Makefile_fix
    + added 50_arch_parisc_fix 
  * included install.rdf for default theme in extensions dir
    (Closes: 363956)
  * removed chrome.d locales.d extensions.d from var/lib/thunderbird

 -- Alexander Sack <asac@debian.org>  Tue, 16 May 2006 19:45:00 +0100

thunderbird (1.5.0.2-2) unstable; urgency=critical

  * debian/thunderbird.sgml. Greatly improved manpage for thunderbird,
    thanks to Sam Morris <sam@robots.org.uk> for contributing this 
    (Closes: 361069)
  * add missing build depend to sharutils to fix ftbfs (Closes: 365539)
  * fix gnome-support package removing gnome dependencies from
    pure thunderbird package.
  * set urgency to critical which I forgot to set properly 
    for the last upload

 -- Alexander Sack <asac@debian.org>  Sat, 29 Apr 2006 14:00:00 +0100

thunderbird (1.5.0.2-1) unstable; urgency=low

  * removed enable xprint in order to build after X11R7 transition.
  * removed xprint recommends from control file.
  * 91_fontsfix_359763.dpatch: fix for 'thunderbird shows text illegibly'
    for some encodings. (Closes: 359763)
  * myspell is now depends (Closes: 357623)
  * (re-)including 10_mips_optimization_patch
  * debian/patches/90_ppc64-build-fix.dpatch: patch for 
    'FTBFS (ppc64)', thanks to Andreas Jochens <aj@andaco.de> 
    for adding the final patch to the report. (Closes: 361036)
  * Thanks to Bastian Kleineidam <calvin@debian.org> for
    contributing:
    * Standards version 3.6.2.1
    * Use debhelper v5 with debian/compat
    * Remove unneeded thunderbird.conffiles now that debhelper v5 is used
    * Remove CVS directories in debian/
    * Fix debian/changelog syntax errors, and convert to UTF-8
    * Fix bashism in debian/thunderbird.postrm, using 2> instead of &>.
    * Add ${misc:Depends} to thunderbird* dependencies, fixing a missing
      dependency on debconf
    * Move db_input commands from postinst into a separate thunderbird.config
      file.
  * distinct gnome-support package added. adds a good bunch 
    of gnome build depends to allow module linking against
    gnome libs.
  * added new fhunderbird-branding in debian/fhunderbird-branding.tmpl
    (Closes: 358198)
  * use only one profile directory in configure 
    (Closes: 358378)
  * Various security issues are fixed in this release. Namely:
    CVE-2006-1741 CVE-2006-1742 CVE-2006-1737 CVE-2006-1738
    CVE-2006-1739 CVE-2006-1740 CVE-2006-1736 CVE-2006-1735
    CVE-2006-1734 CVE-2006-1733 CVE-2006-1732 CVE-2006-0749
    CVE-2006-1731 CVE-2006-1724 CVE-2006-0884 CVE-2006-1730
    CVE-2006-1729 CVE-2006-1728 CVE-2006-1727 CVE-2006-1045
    CVE-2006-0748 CVE-2006-1726 CVE-2006-1725 CVE-2005-2353
    CVE-2006-1529 CVE-2006-1530 CVE-2006-1531 CVE-2006-1723
    CVE-2006-0292/CVE-2006-0293 (Closes: 349242)
    CVE-2006-0294 CVE-2006-0295 CVE-2006-0296 CVE-2006-0297
    CVE-2006-0298 CVE-2006-0299
    
 -- Alexander Sack <asac@debian.org>  Thu, 20 Mar 2006 21:00:00 +0100

thunderbird (1.5-4) unstable; urgency=low

  * great package renaming release: mozilla-thunderbird -> thunderbird
  * removed not maintained and not needed update-mozilla-thunderbird 
    facilities. Extensions/locales etc. don't need to call this anymore
    in order to install themselves globally.
  * added  -fno-strict-aliasing -fno-unsigned-char as parameters to build
  * patch: 10_visibility_hidden_patch.dpatch - by Adam Conrad
  * new upstream version fixes various bugs 
    (Closes: 288601, 291912, 295662)
  * included new fr.po translation by Mohammed Adnène Trojette
    <adn+deb@diwi.org> (Closes: 323367)
  * included new cs.po translation by Jan Outrata
    <outrataj@upcase.inf.upol.cz> (Closes: 321736, 335354)
  * included new pt.po translation by Traduz! <traduz@debianpt.org>
    (Closes: 348440)
  * included new da.po translation by Claus Hindsgaul <claus_h@image.dk>
    (Closes: 350687)
  * added intl.locale.matchOS, true to debian/global-config.js instead
    of hacking startup script
    
 -- Alexander Sack <asac@debian.org>  Tue, 28 Feb 2006 15:00:00 +0100

mozilla-thunderbird (1.5-2) experimental; urgency=low

  * reenable patch 20_mailnews_mime_makefile_in.dpatch
    to export proper headers to -dev package for enigmail
  * last upload with old package name
    
 -- Alexander Sack <asac@debian.org>  Thu, 12 Jan 2006 15:00:00 +0100

mozilla-thunderbird (1.5-1) experimental; urgency=low

  * experimental upload of 1.5 (Closes: 348007)
  * major package housekeeping
    + removed extension template pieces
    + bye -offline extension release - this is now completely 
      integrated in thunderbird default install
    + disable all patches ... but those that are obviously
      needed - please shout if you got struck by a regression 
      due to this :).
    + use upstream startup script in the hope that they
      did fix it!
    + branding removed again. Keep it white labeled - for
      now.
    
 -- Alexander Sack <asac@debian.org>  Thu, 12 Jan 2006 15:00:00 +0100

mozilla-thunderbird (1.0.7-3) unstable; urgency=high

  * apply backported patch for amd64 (Closes: 332481,332484)
    Thanks to Martin Sarsale <martin@malditainternet.com>
    for testing and preparing the patch
    + debian/patches/91_gcc4_imgLoader.fix.dpatch
  * updated vietnam translation contributed by  Clytie Siddall
    <clytie@riverland.net.au> (Closes: 324224)
  * added swedish translation contributed by  Daniel Nylander
    <yeager@lidkoping.net> (Closes: 331606)

 -- Alexander Sack <asac@debian.org>  Mon, 17 Oct 2005 23:30:00 +0100

mozilla-thunderbird (1.0.7-2) unstable; urgency=high

  * still high to indicate that security bugs have not been
    fixed in etch.
  * apply debian/patches/90_xptcinvoke_arm.dpatch to fix ftbfs on
    arm/sid

 -- Alexander Sack <asac@debian.org>  Mon, 10 Oct 2005 19:00:00 +0100

mozilla-thunderbird (1.0.7-1) unstable; urgency=high
  * MFSA-2005-57: IDN heap overrun
    Summary: Tom Ferris reported a Firefox crash when processing a domain
             name consisting solely of soft-hyphen characters.
    Closes: -
    CVE-Ids: CAN-2005-2871
    Bugzilla: 307259    
    Issues addressed:
      + CAN-2005-2871 - IDN heap overrun
  * MFSA-2005-58: Accumulated vendor advisory for multiple vulnerabilities
    Summary: Fixes for multiple vulnerabilities with an overall severity
             of "critical" have been released in Mozilla Firefox 1.0.7 and
             the Mozilla Suite 1.7.12
    Closes: -
    CVE-Ids: CAN-2005-2701 CAN-2005-2702 CAN-2005-2703 CAN-2005-2704
             CAN-2005-2705 CAN-2005-2706 CAN-2005-2707
    Bugzilla: 300936 296134 297078 302263 299518 303213 304754 306261
              306804 291178 300853 301180 302100    
    Issues addressed:
      + CAN-2005-2701 - Heap overrun in XBM image processing
      + CAN-2005-2702 - Crash on "zero-width non-joiner" sequence
      + CAN-2005-2703 - XMLHttpRequest header spoofing
      + CAN-2005-2704 - Object spoofing using XBL <implements>
      + CAN-2005-2705 - JavaScript integer overflow
      + CAN-2005-2706 - Privilege escalation using about: scheme
      + CAN-2005-2707 - Chrome window spoofing
      + Regression fixes
  * MFSA-2005-59: Command-line handling on Linux allows shell execution
    -> was addressed in 1.0.6-4 already. Reverting upstream changes
        to mozilla/mail/mozilla.in by copying debian/mozilla.in_1.0.6 over
        to allow our patches to still apply. debian/patches/01_old_mozilla.in.dpatch

 -- Alexander Sack <asac@debian.org>  Sat, 1 Oct 2005 17:00:00 +0100

mozilla-thunderbird (1.0.6-4) unstable; urgency=high

  * now using bash to overcome possible security flaws of
    our thunderbird start script (mozilla-thunderbird). Patch
    by  Florian Weimer <fw@deneb.enyo.de> 
    debian/mfsa_2005-59.debian.patch (Closes: 329664, 329667)
  * added patch 50_ftbfs_alpha+arm+ia64_325536_fix.dpatch
    to build on alpha, arm, and ia64 that now uses 
    __attribute__((used)) instead of ((unused)) by
    Steve Langasek <vorlon@debian.org>
    (Closes: 325536)
  * fix debsums error reported by Y Giridhar Appaji Nag
    <debian@appaji.net>. Now removing files in postrm.
    Further moved /usr/lib/mozilla-thunderbird/chrome/chrome.rdf
    to the /var/... adding a link to the new location. 
    (Closes: 292475)
  * added depends for system libs: mng, png, jpeg to not build with
    unmaintained image included libs.
  * modified 21_mozilla_in-patch.dpatch to recognize -mail as a -compose
    alias. This makes thunderbird work well with current gnome default
    mailto: command for thunderbird. Thanks to Sam Morris <sam@robots.org.uk>
    for the workaround patch (Closes: 330168)
  * still work left: fix window.open(); overlay problem. 
    added rejar-chrome.sh <jarbasename> util script below debian. It
    rejars .jar files by extracting paths given in
    <jarbasename>_jar_includes.csv from the <jarbasename>.jar zip file 
    and zipping only those files to a new jar file again. Anyway, still
    broken, thus disabled for this build.
    (See: 306522)
 
 -- Alexander Sack <asac@debian.org>  Mon, 23 Sep 2005 17:00:00 +0100

mozilla-thunderbird (1.0.6-3) unstable; urgency=low

  * remove gcc-3.4 from amd64 build ... this time for sure
    (Closes: 320723)
  * remove special optimization flags for other archs too

 -- Alexander Sack <asac@debian.org>  Mon, 2 Aug 2005 17:00:00 +0100

mozilla-thunderbird (1.0.6-2) unstable; urgency=low

  * remove gcc-3.4 from amd64 build (Closes: 320723)
  * added arabic po translation by Mohammed AdnÃ¨ne Trojette
    <adn+deb@diwi.org> (Closes: 320771)

 -- Alexander Sack <asac@debian.org>  Mon, 1 Aug 2005 17:00:00 +0100

mozilla-thunderbird (1.0.6-1) unstable; urgency=high

  * GCC/G++ 4.0 API transition upload.
  * include 90_new_freetype_fix.dpatch to fix new freetype API 
      (Closes: 301481, 301481) - consumed from mozilla-firefox packages ... 
      thx to Eric Dorland <eric@debian.org>
  * include 90_gcc4_fix.dpatch
  * fixes multiple security bugs (Closes: 318728)
      CAN-2005-2270: Code execution through shared function objects
      CAN-2005-2269: XHTML node spoofing
      CAN-2005-2266: Same origin violation: frame calling top.focus()
      CAN-2005-2265: Possible exploitable crash in InstallVersion.compareTo()
      CAN-2005-2261: XML scripts ran even when Javascript disabled
      CAN-2005-1532: Privilege escalation via non-DOM property overrides
      CAN-2005-1160: Privilege escalation via DOM property overrides
      CAN-2005-1159: Missing Install object instance checks
      CAN-2005-0989: Javascript "lambda" replace exposes memory contents
  * fix gdk_property_get problem that might cause a segfault (Closes: 317937)
      patch by Loic Minier <lool@dooz.org>
      debian/patches/gdk_property_get.dpatch
  * fix CAN-2005-2353: insecure tmp file usage in run-mozilla.sh (Closes: 306893)
      debian/patches/20_run-mozilla_sh_306893_fix.dpatch
  * include german de.po translation (Closes: 318747)
      by Alwin Meschede <ameschede@gmx.de>
  * fixed whitespace in mozilla-thunderbird.templates (Closes: 308961)
      hint by Clytie Siddall <clytie@riverland.net.au>
  * apply fix for seamonkey migration crash (Closes: 285728)
      90_mail_components_miration_src_nsSeamonkeyProfileMigrator_cpp 
  * fix 'find' in update-mozilla-thunderbird-chrome (Closes: 315588)
      patch by Michael Spang <mspang@twcny.rr.com>

 -- Alexander Sack <asac@debian.org>  Thu, 21 Jul 2005 21:00:00 +0100

mozilla-thunderbird (1.0.2-3) unstable; urgency=high

  * last maybe sarge upload with urgency high, contains only
    translations (po files + gnome .desktop file lines)
     + cs translation by Jan Outrata <outrataj@upcase.inf.upol.cz>
       (Closes: 309023)
     + fi translation by Matti Pöllä <mpo@iki.fi>
       (Closes: 303805)
     + ja translation by Kenshi Muto <kmuto@debian.org>
       (Closes: 307005)
     + pt_BR translation by Andre Luis Lopes <andrelop@debian.org>
       (Closes: 304261)
     + vi translation by Clytie Siddall <clytie@riverland.net.au>
       (Closes: 308959)
     + added missed translation entries in gnome .desktop files 
       for it, ko, pl 

 -- Alexander Sack <asac@debian.org>  Thu, 02 Jun 2005 22:00:00 +0100

mozilla-thunderbird (1.0.2-2) unstable; urgency=low

  * fixed TYPO in 71_extensionManagerAutoReRegister.dpatch,
    probably causing #302218 (Closes: 302218)
  * extended patch 71_extensionManagerAutoReRegister.dpatch,
    now checking components.ini timestamp instead of
    compreg.dat timestamp. removing components.ini compreg.dat
    and XUL.mfasl if global Extensions.rdf file is newer then
    components.ini. Probably helping to fix #302218 too.
  * renamed xprt-xprintorg recommends to xprint (Closes: 300975)
  * (re-)enabled pref extension (Closes: 302130)

 -- Alexander Sack <asac@debian.org>  Thu, 31 Mar 2005 07:00:00 +0100

mozilla-thunderbird (1.0.2-1) unstable; urgency=medium
  * new upstream version  (Closes: 301542) fixes some 
    security issues according to upstream
    (http://www.mozilla.org/projects/security/known-vulnerabilities.html)
    1.0.2 fixes the following security related issues.
  
     MFSA 2005-30  GIF heap overflow parsing Netscape extension 2
     MFSA 2005-25 Image drag and drop executable spoofing
     MFSA 2005-21 Overwrite arbitrary files downloading .lnk twice
     MFSA 2005-18 Memory overwrite in string library
     MFSA 2005-17 Install source spoofing with user:pass@host
     MFSA 2005-15 Heap overflow possible in UTF8 to Unicode conversion

 -- Alexander Sack <asac@debian.org>  Sun, 27 Mar 2005 16:00:00 +0100

mozilla-thunderbird (1.0-4) unstable; urgency=low

  * removed not needed build-deps: csh
  * included debconf (and gnome .desktop file) translations for 
    various languages: (Closes: 292072, 294622, 291477, 292507)
     + debian/po/fr.po (Mohammed Adnène TROJETTE <adn+deb@diwi.org>, 
       Aurelien Jarno <aurel32@debian.org>)
     + debian/po/nl.po (Luk Claes <luk.claes@ugent.be>)
     + debian/po/ca.po (Jordi Mallach <jordi@debian.org>)
     + debian/po/ko.po (Yooseong Yang <yooseong@debian.org>)
     + debian/po/it.po (Vittorio Palmisano <redclay@email.it>)
     + debian/po/pl.po (Robert Luberda <robert@debian.org>)
  * fixed startscript problem
    - updated 21_mozilla_in-patch.dpatch - thanks to 
    Kevin B. McCarty <kmccarty@Princeton.EDU>
  * moved code of component debCleanComp.js to
    nsExtensionManager, so it can automatically restart the 
    application if needed.
    This should again lower the probabilty that
    some upgrade, downgrade of thunderbird or extensions
    breaks the chrome or component registry in your profile
    dir.

 -- Alexander Sack <asac@debian.org>  Sun, 13 Mar 2005 13:00:00 +0100

mozilla-thunderbird (1.0-3) unstable; urgency=low

  * first upload to official archive for tbird 1.0
    (first since 0.9-6)
  * finally I decided to upload this package to unstable,
    though there is a debian-legal discussion going on
    about the mozilla trademark. Since it might take some
    time until a solution is found, I decided to upload
    as usual.
  * started to debrand the app to 'Debian Thunderbird'

 -- Alexander Sack <asac@debian.org>  Sun, 16 Jan 2005 14:00:00 +0100

mozilla-thunderbird (1.0-2) unstable; urgency=low

  * Uninstall file and dummy-empty-file must not be empty
  * Included latest patch for extension manager
  * Included Jaap Haitsma icons (Closes: 257640)
  * fixed regression compared to 0.9-6 official package
    that had problems to build because empty files where
    not included in diff.gz

 -- Alexander Sack <asac@debian.org>  Fri, 10 Dec 2004 23:00:00 +0100
 
mozilla-thunderbird (1.0-1) unstable; urgency=low

  * new upstream release - 1.0 (Closes: 284560)
  * includes new icons as default theme
  * changed start.html page to not use the mozilla partical
    in the package naming. This app is now officially called 
    'Debian Thunderbird'
  * removed -O from sparch arch (See: 284532)
  * README.Debian improved
  * adapted new manpage inspired by Ralf Katz <ralph.katz@rcn.com>
       
 -- Alexander Sack <asac@debian.org>  Tue, 08 Dec 2004 12:00:00 +0100

mozilla-thunderbird (0.9-7) unstable; urgency=low

  * added debconf capability to define what browser
    integration is wanted
    -> added /etc/mozilla-thunderbird/auto-config.js
    to store automatically generated configs by debconf
       
 -- Alexander Sack <asac@debian.org>  Thu, 24 Nov 2004 12:00:00 +0100

mozilla-thunderbird (0.9-6) unstable; urgency=low

  * fixed bug in preinst script by strictly testing
    the existance of files before invoking mv 
    operations (Closes: 282186)
  * fixed stupid upgrade bug in preinst script.
    ls uses now -d to produce no garbage when
    used as source for moving. This closes
    a bug reported against enigmail, but is a
    bug of the thunderbird package. This release
    fixes it (Closes: 282505)
  * still missing reply for current grave bug 
    282506. I think this is due to the initial
    upgrade problems. Those problem should not
    occur anymore with the fixes of this packages
    upgrade mechanism (Closes: 282506)
       
 -- Alexander Sack <asac@debian.org>  Thu, 24 Nov 2004 12:00:00 +0100

mozilla-thunderbird (0.9-5) unstable; urgency=low

  * added patch by Kevin B. McCarty <kmccarty@Princeton.EDU>
    adds In-Reply-To mailto: link capability (Closes: 268055)
  * late verification of bug fixed by preview package:
      fixes: message editor steals keyboard focus (Closes: 274313)
      
 -- Alexander Sack <asac@debian.org>  Thu, 18 Nov 2004 12:00:00 +0100

mozilla-thunderbird (0.9-4) unstable; urgency=low

  * fixed upgrade bug - when /usr/lib/mozilla-thunderbird/extensions
    is a link, remove it and create a directory for it! After that
    move all extensions from /var/lib/mozilla-thunderbird/extensions
    to the new folder.
  * added example firefox-config.js.tmpl to use the new wrapper 
    script. This config should only be used if you are in a non
    gconf capable window environment, e.g. pure openbox, etc.
    See the README.Debian for further details on howto integrate
    thunderbird properly.
  * added uninstall and extension directory for default theme 
    extension. This should make it possible to remove the package
    cleanly.
  * Bug#280254: mozilla-thunderbird: Please package 
        thunderbird 0.9 (Closes: 280076)
  * patch by Kevin McCarty <kmccarty@Princeton.EDU>, fixes
        Subject munging if thunderbird is running (Closes: 263971)
  * fixed: typo in welcome message for preview pane (Closes: 278690)
  * thx to bug submitters that verified the fix of the following
    bugs in my preview package at people.debian.org:
     +  Bug#277304: mozilla-thunderbird: thunderbird dies silently on 
           some mails (Closes: 277304)
     +  no sound when new mail arrives (Closes: 274044)
     +  Focus Problem when a filter is selected (Closes: 272157)
     +  "Get Mail" button fails intermittently on additional accounts
        (Closes: 280482)
  * added patch to fix /tmp/ file permissions during processing of
    imap directory (Closes: 280363)
  * cleaning up compreg.dat on Extensions.rdf change, so after 
    restart all troubles with this issue are gone (Closes: 273213)
  * Already since 0.9-1, but I forgot to mention:
      + set default smtp server option should work now
          (Closes: 274177)
      + with view filter: unread on, newly read messages are
        not removed from the message list anymore (Closes: 275708)
  * other bugs resolved by upstream:
      + problems while threads refresh (Closes: 239203)
      + Shortcuts conflict with ISO 14755 (Closes: 246916)

 -- Alexander Sack <asac@debian.org>  Mon, 15 Nov 2004 22:45:00 +0100

mozilla-thunderbird (0.9-3) unstable; urgency=low

  * rm -f /usr/lib/mozilla-thunderbird/extensions
    in postinst if it is a link! After that move 
    stuff from /var/lib/mozilla-thunderbird/extensions
    to /usr/lib/mozilla-thunderbird/extensions.
    The rest will be done by update-mozilla-thunderbird-chrome

 -- Alexander Sack <asac@debian.org>  Thu, 11 Nov 2004 22:45:00 +0100

mozilla-thunderbird (0.9-2) unstable; urgency=low

  * fixed bad bug in mozilla-thunderbird.install,
  	that removed the fulls extensions dir
  * fixed broken upgrade problem due to 
  	mozilla-thunderbird-inspector that tried to 
        install resource files under /usr/lib/.../res,
        but that is a link. Now storing under /usr/share/

 -- Alexander Sack <asac@debian.org>  Wed, 10 Nov 2004 22:00:00 +0100

mozilla-thunderbird (0.9-1) unstable; urgency=low
  
  * new upstream version (0.9)
  * include patch amd64:
  	by Frederik Schueler <fs@lowpingbastards.de>
        -> use gcc-3.4,g++3.4 (Closes: 261365)
  * pasting issues partially fixed (See: 279656)
  * Local Folders needed, cannot be deleted anymore
  	(Closes: 226253)
  * including great patch of Mike Hommey <mh@glandium.org>
    who brought the final fix for the extension manager
    problems; changed update-mozilla-thunderbird-chrome
    according to the new -register capability

 -- Alexander Sack <asac@debian.org>  Wed, 10 Nov 2004 20:00:00 +0100

mozilla-thunderbird (0.8-3) unstable; urgency=medium
  
  * respin for new binutils version (Closes: 273354)
  * removing essential and build-essential build 
    dependencies to: base-files, libc6-dev
  * update-mozilla-thunderbird-chrome: output of find(s)
    to /dev/null (Closes: 267661)
  * included mozilla-thunderbird-compose script in docs 
    section

 -- Alexander Sack <asac@debian.org>  Sat, 26 Sep 2004 13:00:00 +0100

mozilla-thunderbird (0.8-2) unstable; urgency=medium

  * include good build_id during build fixes
    upgrade problems
      (Closes: 272175, 272182)
  * fixed some startup-script regressions. Remote
    commands are almost ready by upstream. Only 
    -compose argument is interpreted in a debian
    specific way. Of course, locale settings
    are still debian specific too.
  * improved changelog to list important notes
    for upgrading to 0.8
  * 10_mips_optimization_patch.dpatch: 
      thiemo seufers mips(el) workaround
      removing CFLAGS="$CFLAGS -Wa,-xgot" and
      CXXFLAGS="$CXXFLAGS -Wa,-xgot" and adding
      inline when DEBUG is true (Closes: 272162).

 -- Alexander Sack <asac@debian.org>  Sat, 18 Sep 2004 21:00:00 +0100

mozilla-thunderbird (0.8-1) unstable; urgency=medium
  
  * new upstream version 0.8
  * fixes various security issues in sarge and sid
       (Closes: 263752)
  * hacked a tiny patch for nsExtensionManager.js.in bug that
    lets thunderbird (and firefox) loop on startup if 
    launched with non-root account.

 -- Alexander Sack <asac@debian.org>  Fri, 17 Sep 2004 10:00:00 +0100

mozilla-thunderbird (0.7.3-6) unstable; urgency=high

  * still fixes the security bug in sarge (see #263752) 
    ... thus urgency=high
  * applied 50_mozilla-thunderbird-xpcom-xptcall-mips.dpatch
    provided by Thiemo Seufer <ica2_ts@csv.ica.uni-stuttgart.de>
    (Closes: 267017)
  * removed <boll@debian.org> as Uploader as he expressed
    that he has no more time to co-maintaining this package.
    Thanks for your work!

 -- Alexander Sack <asac@debian.org>  Sun, 12 Sep 2004 17:30:00 +0100

mozilla-thunderbird (0.7.3-5) unstable; urgency=high

  * ping tbird to find a running instance instead of searching
    for lock file that could still be there after a crash (redone)
    (Closes: 267144)
  * still fixes the security bug in sarge ... thus urgency=high

 -- Alexander Sack <asac@debian.org>  Thu, 21 Aug 2004 14:00:00 +0100

mozilla-thunderbird (0.7.3-4) unstable; urgency=high

  * ping tbird to find a running instance instead of searching
    for lock file that could still be there after a crash
    (Closes: 267144)
  * still fixes the security bug in sarge ... thus urgency=high

 -- Alexander Sack <asac@debian.org>  Thu, 21 Aug 2004 14:00:00 +0100

mozilla-thunderbird (0.7.3-3) unstable; urgency=high

  * extended patch for mips: 50_xpcom_xptcall_xptcstubs_asm_mips_s
    (Closes: 266851)
  * still fixes the security bug in sarge ... thus urgency=high

 -- Alexander Sack <asac@debian.org>  Thu, 19 Aug 2004 17:00:00 +0100

mozilla-thunderbird (0.7.3-2) unstable; urgency=high

  * included patch for mips: 50_xpcom_xptcall_xptcstubs_asm_mips_s
  * made global-config.js more up to date (Closes: 261815)
  * recommend myspell-en-us | myspell-dictionary (Closes: 265272)
  * enigmail is now suggested and not recommended anymore
  * still fixes the security bug in sarge ... thus urgency=high

 -- Alexander Sack <asac@debian.org>  Wed, 18 Aug 2004 16:00:00 +0100

mozilla-thunderbird (0.7.3-1) unstable; urgency=high

  * new upstream release 0.7.3 - fixes security issues
    (Closes: 263752)
  * changed maintainer email to debian address
  * removing /var/lib/mozilla-thunderbird dir on purge 
    (Closes: 260212).
  * reverting gcc-3.2 and g++-3.2 for hppa architecture to back to 
    default gcc/g++ compiler
  * fixed package description of mozilla-thunderbird-inspector and
    mozilla-thunderbird-offline (Closes: 260374, 260376)
  * plain mozilla-thunderbird now opens Inbox window to front
    instead of profile manager when already running (Closes: 259476)

 -- Alexander Sack <asac@debian.org>  Wed, 04 Aug 2004 20:00:00 +0100

mozilla-thunderbird (0.7.1-3) unstable; urgency=low

  * updated README.Debian to be more specific
    on the lost profile workaround!
  * added 10_profile_migration.dpatch to fix
    profile migration issues (Closes: 258741, 258747)
  * updated .desktop file Comment (Closes: 257596)
  * trying gcc-3.2 and g++-3.2 for hppa architecture

 -- Alexander Sack <asac@jwsdot.com>  Tue, 13 Jul 2004 11:00:00 +0100

mozilla-thunderbird (0.7.1-2) unstable; urgency=low

  * added 10_profile_migration.dpatch to fix
    profile migration issues (Closes: 258741, 258747)
  * updated .desktop file Comment (Closes: 257596)
  * trying gcc-3.2 and g++-3.2 for alpha and amd64 
    architecture

 -- Alexander Sack <asac@jwsdot.com>  Mon, 12 Jul 2004 11:00:00 +0100

mozilla-thunderbird (0.7.1-1) unstable; urgency=low
  
  * new upstream source 0.7.1 (Closes: 257320, 256843)
  * fixed broken theme ID 
  * include extension descriptions and set them
    to locked
  * fixed typo in branding patch ( Hompage ->Homepage )
  * included movemail for handling local mail (Closes: 219893)
  * provides new mozilla-thunderbird-dev
  * does not build enigmail anymore. enigmail has got its
    own source package for now. Hopefully this package will
    build soon against mozilla-mailnews and mozilla-thunderbird,
    so only one package is needed for both.
  * update-mozilla-thunderbird-chrome: LD_LIBRARY_PATH bug fixed 
    (Closes: 254144)
  * verified that -compose mailto:email@host.com works (Closes: 252261)
  * include upgrade info in README.debian. Documented
    new global-config.js file in README.debian too (Closes: 253315)
  * crash on corrupt bmp fixed by upstream (Closes: 248857)
  * added Provides: mail-reader, imap-client (Closes: 257199)
  * renamed menu entry to 'Thunderbird Mail' (Closes: 257596)
 
 -- Alexander Sack <asac@jwsdot.com>  Mon, 5 Jul 2004 11:00:00 +0100

mozilla-thunderbird (0.7.1-0.0.asac1) unstable; urgency=low
  
  * new upstream source 0.7.1
  * fixed broken theme ID 
  * include extension descriptions and set them
    to locked
  * fixed typo in branding patch ( Hompage ->Homepage )
  * included movemail for handling local mail
 
 -- Alexander Sack <asac@jwsdot.com>  Thu, 1 Jul 2004 11:00:00 +0100

mozilla-thunderbird (0.7-0.0.asac1) unstable; urgency=low
  
  * new upstream source 0.7
  * provides new mozilla-thunderbird-dev
  * does not build enigmail anymore. enigmail has got its
    own source package for now. Hopefully this package will
    build soon against mozilla-mailnews and mozilla-thunderbird,
    so only one package is needed for both.
  * update-mozilla-thunderbird-chrome: LD_LIBRARY_PATH bug fixed 
    (Closes: 254144)
  * verified that -compose mailto:email@host.com works (Closes: 252261)
  * include upgrade info in README.debian (Closes: 253315)
  * crash on corrupt bmp fixed by upstream (Closes: 248857)
 
 -- Alexander Sack <asac@jwsdot.com>  Wed, 23 Jun 2004 11:00:00 +0100

mozilla-thunderbird (0.6-asac1) unstable; urgency=low
  
  * new binary package for development files 
    mozilla-thunderbird-dev
  * mozilla-thunderbird now Provides: mail-reader and imap-client
 
 -- Alexander Sack <asac@jwsdot.com>  Tue, 08 Jun 2004 15:00:00 +0100

mozilla-thunderbird (0.6-3) unstable; urgency=low
  
  * added libx11-dev, libxp-dev, libxt-dev to Build-Depends
  * removed xlibs-dev from Build-Depends
  * fixed typo in starting screen (Closes: 249850)
  * removed duplicate readme file (Closes: 247162)
  * added readme file upgrade note to remove the
    chrome.rdf in the users profile directory after
    upgrade.
 
 -- Alexander Sack <asac@jwsdot.com>  Thu, 03 Jun 2004 00:20:00 +0100

mozilla-thunderbird (0.6-2) unstable; urgency=low

  * Fix missing build-dep on xlibs-dev, causing FTBFS errors 
    (closes: Bug#251166)

 -- Soeren Boll Overgaard <boll@debian.org>  Fri, 28 May 2004 11:02:07 +0000

mozilla-thunderbird (0.6-1) unstable; urgency=low
  * accumulated changelog: 0.6-0.1rc1 + 0.6-0.1rc2
  * repackaged upstream source tarball to not-include 
    non-free icons of the trademarked new branding
  * changed menu icon size to 32x32
  * added suggestions for mozilla-thunderbird-typeaheadfind
    mozilla-thunderbird-offline and mozilla-thunderbird-inspector
  * new upstream version: 0.6
  * MAP users can now benefit from support for the IMAP IDLE command
    which allows the mail server to push notifications such as new 
    mail arriving as soon as it arrives (Closes: 232544)
  * Thunderbird supports server wide news filters that apply to all 
    news groups on a server
  * Mail filters can now mark messages as junk
  * Offline support is now available as an extension package
    (Closes: 231920)
  * Command line parsing problems fixed (Closes: 232342)
  * Find broken in view source is fixed (Closes: 232580)
  * Alerts and crash when deleting multiple nested 
    folders inside the trash folder is fixed (Closes: 237705, 244414)
  * shift-c selects all as read (Closes: 245039)
  * menu hint changed to mail (Closes: 246211)
  * Alt-A selects all messages (Closes: 229518)
  * typeahead find extension added as extra package 
    (Closes: 232562)
  * suggesting mozilla-firefox now (Closes: 240708, 234918)
  * changed mozilla-thunderbird.xpm to envelope with flames
    (Closes: 243028)
  * new enigmail upstream version included (0.86.6),
    (Closes: 235553)
  * now bulding with -O2 on all platforms, but ia64, arm,
    sparc, alpha, powerpc
  * global enigmail config file now in 
     /etc/mozilla-thunderbird/pref/enigmail.js
  * new binary targets: 
     mozilla-thunderbird-inspector,
     mozilla-thunderbird-offline, 
     mozilla-thunderbird-typeaheadfind
  * restructured conffiles: now a single global config
    file exists: /etc/mozilla-thunderbird/global-config.js, 
    which may be used by admins to make their 
    preconfigurations.
    Old config files in /etc/mozilla-thunderbird/pref 
    will be reserved till next --purge

 -- Alexander Sack <asac@jwsdot.com>  Sat, 08 May 2004 08:45:00 +0100

mozilla-thunderbird (0.5+.040427-1) unstable; urgency=low

  * new snapshot of 040427
  * added build depend: libgnomevfs2-dev
  * increased debian policy standard version to 3.6.1

 -- Alexander Sack <asac@jwsdot.com>  Tue, 27 Apr 2004 12:45:00 +0100

mozilla-thunderbird (0.5+.040418-1) unstable; urgency=low

  * new snapshot of 040418
  * changed desktop icon to envelope with flames (Closes: 243028)

 -- Alexander Sack <asac@jwsdot.com>  Sun, 18 Apr 2004 12:45:00 +0100

mozilla-thunderbird (0.5+.040412-1) unstable; urgency=low

  * new snapshot of 040412
  * Updated enigmail to 0.83.6 

 -- Alexander Sack <asac@jwsdot.com>  Mon, 12 Apr 2004 01:37:00 +0100

mozilla-thunderbird (0.5+.040330-1) unstable; urgency=low

  * new snapshot of 040320
  * Updated enigmail to 0.83.5 (Closes: 235553)

 -- Alexander Sack <asac@jwsdot.com>  Tue, 30 Mar 2004 17:30:20 +0100

mozilla-thunderbird (0.5-4) unstable; urgency=low

  * reenabled hppa patch, which apparently led to FTBFS on hppa

 -- Alexander Sack <asac@jwsdot.com>  Thu, 04 Mar 2004 21:30:20 +0100

mozilla-thunderbird (0.5-3) unstable; urgency=medium

  * preinst added to allow clean upgrade path to this
      (Closes: 234118, Closes: 234267)
  * added prerm script to allow a clean remove of package

 -- Alexander Sack <asac@jwsdot.com>  Sun, 29 Feb 2004 10:30:20 +0100

mozilla-thunderbird (0.5-2) unstable; urgency=low

  * new source package layout!! Now using orig.tar.gz with diff.gz 
    (Closes: 232055)
  * moved arch-indep chrome stuff to /usr/share/mozilla-thunderbird/chrome
  * moved images to /usr/share/mozilla-thunderbird/res 
      /usr/share/mozilla-thunderbird/icons 
      /usr/share/mozilla-thunderbird/chrome/icons

 -- Alexander Sack <asac@jwsdot.com>  Thu, 19 Feb 2004 19:30:20 +0100

mozilla-thunderbird (0.5-1.1) unstable; urgency=low

  * new source package layout!! Now using orig.tar.gz with diff.gz

 -- Alexander Sack <asac@jwsdot.com>  Mon, 11 Feb 2003 19:30:20 +0100

mozilla-thunderbird (0.5-1) unstable; urgency=low

  * Aggregated changes since 0.4-1:
  * new upstream release 0.5 included
  * added xprt-xprintorg to Recommends (Closes: 226626)
  * upgraded enigmail to 0.83.2 (Closes: 228678)
      + includes a workaround for mozilla bug
          leading to a crash in rare situations 
          (fixed in 0.82.6)
  * improved package structure. Sources now are included as original archives
        & are extracted to build-dir. (Closes: 225033)
  * Minor wording changes in package description, pointed out by
      Mark Stevenson.
  * New debianization of appearance (branding)
  * added switches for pref.js config entries for 
    individual doubleclick timeout & drag threshold 
    settings in gtk2 (Closes: 229146)
  
 -- Alexander Sack <asac@jwsdot.com>  Mon, 09 Feb 2003 19:30:20 +0100

mozilla-thunderbird (0.5-0.1) unstable; urgency=low

  * preview of thunderbird-0.5 rc2

 -- Alexander Sack <asac@jwsdot.com>  Mon, 07 Feb 2003 19:30:20 +0100

mozilla-thunderbird (0.4-1.6) unstable; urgency=low

  * added basic gtk settings as mozilla prefs:
    + widget.gtk2.dnd.threshold - treshold in pixel before a drag starts
    + widget.gtk2.double_click_timeout - 
      maximum time in milliseconds between two clicks 
      to become recognized as double-click e.g. to get 
      rid of unexpected folder moves, etc.
  * upgraded enigmail to 0.83.2

 -- Alexander Sack <asac@jwsdot.com>  Mon, 05 Feb 2003 10:30:20 +0100

mozilla-thunderbird (0.4-1.5) unstable; urgency=low

  * added xprt-xprintorg to Recommends
  * upgraded enigmail to 0.83.1

 -- Alexander Sack <asac@jwsdot.com>  Mon, 04 Feb 2003 10:30:20 +0100

mozilla-thunderbird (0.4-1.4) unstable; urgency=low

  * improved package structure. Sources now are included as original archives
    & are extracted to build-dir. (Closes: 225033)
  * late checkin. Already uploaded to mentors

 -- Alexander Sack <asac@jwsdot.com>  Mon, 27 Jan 2003 10:30:20 +0100

mozilla-thunderbird (0.4-1.31) unstable; urgency=low

  * Minor wording changes in package description, pointed out by
    Mark Stevenson.

 -- Soeren Boll Overgaard <boll@debian.org>  Wed, 14 Jan 2004 12:46:23 +0000

mozilla-thunderbird (0.4-1.3) unstable; urgency=low

  * further debinized branding. updated 10_debian-branding patch
  * do not use MOZILLA_FIVE_HOME. Always set the MOZILLA_FIVE_HOME 
    correctly. -> This is not anymore mozilla suite, so it is obsolete.

 -- Alexander Sack <asac@jwsdot.com>  Mon, 06 Jan 2003 10:30:20 +0100

mozilla-thunderbird (0.4-1.2) unstable; urgency=low

  * updated enigmail to 0.82.6 - includes a workaround for mozilla bug
    leading to a crash.

 -- Alexander Sack <asac@jwsdot.com>  Mon, 30 Dec 2003 20:30:20 +0100

mozilla-thunderbird (0.4-1.1) unstable; urgency=low

  * switched to .orig.tgz file approach

 -- Alexander Sack <asac@jwsdot.com>  Mon, 12 Dec 2003 00:30:20 +0100

mozilla-thunderbird (0.4-1) unstable; urgency=low

  * version for first debian official upload of 0.4

 -- Alexander Sack <asac@jwsdot.com>  Mon, 12 Dec 2003 00:30:20 +0100

mozilla-thunderbird (0.4-0.3) unstable; urgency=low

  * updated latest enigmail source to version 0.82.5

 -- Alexander Sack <asac@jwsdot.com>  Mon, 12 Dec 2003 00:30:20 +0100

mozilla-thunderbird (0.4-0.2) unstable; urgency=low

  * added locale support: default locale is en-US

 -- Alexander Sack <asac@jwsdot.com>  Mon, 12 Dec 2003 00:30:20 +0100

mozilla-thunderbird (0.4-0.1) unstable; urgency=low

  * upgraded official 0.4 release
  * browser integration works on gnome/kde
  * new mozilla-theme
  * latest engimail included

 -- Alexander Sack <asac@jwsdot.com>  Mon, 10 Nov 2003 00:30:20 +0100

mozilla-thunderbird (0.3-7) unstable; urgency=low

  * added patches for hppa & alpha, arm & mips specfic stuff. took the patches from 
    the debian mozilla package

 -- Alexander Sack <asac@jwsdot.com>  Mon, 10 Nov 2003 00:30:20 +0100

mozilla-thunderbird (0.3-6) unstable; urgency=low

  * added patch to switch from ex to sed which certainly won't 
    have terminal problems
  * added .desktop file for menu integration in gnome, kde, etc.

 -- Alexander Sack <asac@jwsdot.com>  Sun,  2 Nov 2003 22:23:40 +0100


mozilla-thunderbird (0.3-5) unstable; urgency=low

  * Alexander Sack:
    - added build depend nvi.
  * Soeren Boll Overgaard
    - added dependency on gnupg for enigmail.

 -- Alexander Sack <asac@jwsdot.com>  Thu, 29 Oct 2003 21:00:59 +0200

mozilla-thunderbird (0.3-4) unstable; urgency=low

  * Soeren Boll Overgaard:
    - Improve wording in long descriptions.
    - Fix dependency problem of the enigmail-package.

 -- Soeren Boll Overgaard <boll@debian.org>  Tue, 28 Oct 2003 17:08:55 +0100

mozilla-thunderbird (0.3-3) unstable; urgency=low

  * Build-depend on m4
  * Actually do something in binary-arch
  * asac: Applied Patch for myspell issue (closes: Bug#217555)
  * fixed mozilla-thunderbird.sgml according to docbook DTD (closes: Bug#217708)

 -- Soeren Boll Overgaard <boll@debian.org>  Sun, 26 Oct 2003 23:24:25 +0100

mozilla-thunderbird (0.3-2) unstable; urgency=low

  * Build-depend on dpatch.

 -- Soeren Boll Overgaard <boll@debian.org>  Sun, 26 Oct 2003 13:26:31 +0100

mozilla-thunderbird (0.3-1) unstable; urgency=low

   * Make my name look right in Uploaders.
   * Change version to one suited to Debian.
   * Update standards version to 3.6.1 (No changes).

 -- Soeren Boll Overgaard <boll@debian.org>  Sun, 26 Oct 2003 09:38:24 +0000

mozilla-thunderbird (0.3-0.3) unstable; urgency=low

  * readded forgotten patch hunks

 -- Alexander Sack <asac@jwsdot.com>  Thu, 24 Oct 2003 09:00:59 +0200

mozilla-thunderbird (0.3-0.2) unstable; urgency=low

  * New upstream release 
  * latest patches of mozilla-thunderbird-0.2-3 are included

 -- Alexander Sack <asac@jwsdot.com>  Thu, 21 Oct 2003 20:55:59 +0200

mozilla-thunderbird (0.2-3) unstable; urgency=low

  * fixed sudo bug (closes: Bug#216469)
  * repackaging because of enigmail build exception

 -- Alexander Sack <asac@jwsdot.com>  Wed, 15 Oct 2003 17:56:59 +0200

mozilla-thunderbird (0.2-2) unstable; urgency=low

  * Don't limit archs to i386.

 -- Soeren Boll Overgaard <boll@debian.org>  Sat, 18 Oct 2003 10:27:05 +0000

mozilla-thunderbird (0.2-1) unstable; urgency=low

  * restarted versioning for official debian upload
  * Uploaded by S. Boll Overgaard <boll@debian.org>
    - Closes thunderbird ITP (closes: Bug#196504)

 -- Alexander Sack <asac@jwsdot.com>  Wed, 15 Oct 2003 17:56:59 +0200

mozilla-thunderbird (0.3-0.1) unstable; urgency=low

  * New upstream release

 -- Alexander Sack <asac@jwsdot.com>  Thu, 16 Oct 2003 10:51:59 +0200

mozilla-thunderbird (0.2asac-5) unstable; urgency=low

  * some more lintian cleaning of source package
  * added boll@debian.org as co-maintainer
  * reduction of build depends redundancy

 -- Alexander Sack <asac@jwsdot.com>  Wed, 15 Oct 2003 17:56:50 +0000

mozilla-thunderbird (0.2asac-4) unstable; urgency=low

  * minimized build-depends & removed version constraints from build-deps to ease backporting
  * added lintian override
  * added long description for enigmail
  * adjusted preference directory to $HOME/.mozilla-thunderbird

 -- Alexander Sack <asac@jwsdot.com>  Mon, 13 Oct 2003 20:53:45 +0000

mozilla-thunderbird (0.2asac-3) unstable; urgency=low

  * needed to get the the source archive up again :( 

 -- Alexander Sack <asac@jwsdot.com>  Thu,  9 Oct 2003 18:51:01 +0200

mozilla-thunderbird (0.2asac-2) unstable; urgency=high

  * fixed the build procedure for enigmail binary package

 -- Alexander Sack <asac@jwsdot.com>  Tue,  7 Oct 2003 23:04:01 +0200

mozilla-thunderbird (0.2asac-1) unstable; urgency=low

  * New upstream release
  * added binary package mozilla-thunderbird-enigmail
  * now update-chrome enabled
  * startup hooks (currently for enigmail) allowed in
    /var/lib/mozilla-thunderbird/startup-hooks.d

 -- Alexander Sack <asac@jwsdot.com>  Fri,  3 Oct 2003 22:16:05 +0200

mozilla-thunderbird (0.2-5) unstable; urgency=low

  * changed menu entry image to gif image of size 32x32 -> lintian --check
    tested
  * added manual pages for mozilla-thunderbird & thunderbird
  * remove mozilla-thunderbird-config from binary package

 -- Alexander Sack <asac@jwsdot.com>  Thu,  2 Oct 2003 02:30:44 +0200

mozilla-thunderbird (0.2-4) unstable; urgency=low

  * fixed conflict with snapshot build 


 -- Alexander Sack <asac@jwsdot.com>  Wed,  1 Oct 2003 16:50:33 +0200

mozilla-thunderbird (0.2-3) unstable; urgency=low

  * apply quickfix for bug #212604 (bugzilla.mozilla.org)
    -> firebird ist remote startable even if thunderbird is 
       running
  * added basic man pages

 -- Alexander Sack <asac@jwsdot.com>  Wed,  1 Oct 2003 12:21:04 +0200

mozilla-thunderbird (0.2-2) unstable; urgency=low

  * corrected menu entry command to thunderbird 

 -- Alexander Sack <asac@jwsdot.com>  Thu, 25 Sep 2003 12:00:36 +0200

mozilla-thunderbird (0.2-1) unstable; urgency=low

  * Initial Release.

 -- Alexander Sack <asac@jwsdot.com>  Wed, 24 Sep 2003 18:55:50 +0200
