The SeaMonkey 2.53.12 set of Internet applications has been released, which combines a web browser, an email client, a news feed aggregation system (RSS / Atom) and a WYSIWYG html page editor Composer within one product. The Chatzilla IRC client, the DOM Inspector web development toolkit, and the Lightning calendar scheduler are offered as preinstalled add-ons. The new release brings fixes and changes from the current Firefox codebase (SeaMonkey 2.53 is based on the Firefox 60.8 browser engine, porting security-related fixes and some improvements from current Firefox branches).
Among the changes:
- The mail client implements commands for editing a template ('Edit Template') and creating a new message based on a template ('New Message From Template'). For messages in the folder with templates (Template), a button is shown to go to editing the template.
- Implemented 'Edit Draft' command, which is shown only when opening the folder with drafts.
- The dialog for managing subscriptions to news feeds (RSS/Atom) has been redesigned and simplified.
- Added information about system memory, disk size, and page size limits in placeDB to the about:support page.
- Improved saving the state of the panel with formatting controls in the message writing window (Composer). Previously, switching between view modes (Edit, HTML, Preview) would bring back the panel hidden via the View→Show/Hide→Format Toolbar menu.
- Cleaned up the code of old plugins.
- Removed permission settings related to allowing Flash Player to be used.
At the same time, a new version of Tor Browser 11.0.11 was released, focused on anonymity, security and privacy. The release is in sync with the Firefox 91.9.0 ESR codebase, which addresses 11 vulnerabilities. Updated version of NoScript add-on 11.4.5. Hidden the "What's New" link in the About dialog. Removed built-in obfs4-bridge smallerrichard.
Additionally, we can note the corrective release of the Thunderbird 91.9.0 mail client, notable for the return of support for the SHA-1 algorithm for OpenPGP digital signatures. In Thunderbird 91.8.0, the RNP library used in the OpenPGP implementation has been updated to version 0.16.0, which disables support for the MD5 and SHA-1 algorithms. Since OpenPGP keys based on SHA-1 are still in use, and real attacks on OpenPGP digital signatures are problematic, it was decided to return the ability to use SHA-1 in Thunderbird. To further enhance security, RNP 0.16.0 includes code for detecting collisions in SHA-1. Among the other changes in Thunderbird 91.9.0 is the addition of a warning when ignoring unsafe attributes specified in an OpenPGP key, such as fields based on the MD5 algorithm.
Source: opennet.ru