Upgrade to 2.53.1
SeaMonkey-2.53.1, being initially based on the Firefox-56 and Thunderbird-56 code, incorporates now a lot of backported features and security fixes from the newer Firefox/Thunderbird versions up to 75.
That way it tries to be a modern browser, preserving the same time the familiar user interface and the ability to use traditional extensions and addons.
This version makes changes to your profile that can't be reverted in case you want to go back to a previous version of SeaMonkey. You MUST absolutely do a full backup of your profile (~/.mozilla/seamonkey/ dir) BEFORE trying to run new version.
SeaMonkey now uses GTK3 library for GUI interface. If you experienced some size issues, go to 'about:config' and try to set 'layout.css.devPixelsPerPx' preference to '1' (or any other preferred value). You can also use gtk3's environment variables GDK_SCALE and/or GDK_DPI_SCALE (useful for HiDPI displays). Since Classic theme uses system desktop theme, it might behaves incorrectly when the underlying theme (still) does not support gtk3.
Full theme add-ons may need changes because of user interface and internal changes. If you find any problem with themes, contact the theme author. Before reporting a problem with the user interface, please make sure to recreate it with either the Classic or Modern theme.
This version now includes 'Lightning' calendar. It becomes a standard part of Thunderbird/SeaMonkey, being just technically organized as an extension. This version returns providing of Chatzilla and DOM inspector extensions, just as it always was before.
It is likely you need to update your third-party extensions to newer versions. Poorly designed or incompatible extensions can cause unpredictable problems. If you encounter some strange issues, try 'seamonkey -safe-mode' from command line.
Unfortunately, it is now impossible to continue support of npapi plugins. Thus, java applets no more work :( . All modern browsers have dropped such support years ago, and even plugin owners recommend to not use it anymore. Search 'browsers with java support' if you still need it. Sorry for that. Flash is still supported, at least until its EOL at the end of 2020.
Since 2.53.1, 32-bit version (i686 arch) does not provided, because no more supported.
The old format of keys and certificates storage in the user profiles still preserved in Fedora. DO NOT TOUCH key3.db and cert8.db files (as it might be recommended in the upstream release notes) -- they still works as expected.
Please, read upstream release notes for more info https://www.seamonkey-project.org/releases/seamonkey2.53.1/
Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website.
Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
{"id": "FEDORA_2020-BF6CA75FEC.NASL", "vendorId": null, "type": "nessus", "bulletinFamily": "scanner", "title": "Fedora 31 : seamonkey (2020-bf6ca75fec)", "description": "Upgrade to 2.53.1\n\nSeaMonkey-2.53.1, being initially based on the Firefox-56 and Thunderbird-56 code, incorporates now a lot of backported features and security fixes from the newer Firefox/Thunderbird versions up to 75.\nThat way it tries to be a modern browser, preserving the same time the familiar user interface and the ability to use traditional extensions and addons.\n\nThis version makes changes to your profile that can't be reverted in case you want to go back to a previous version of SeaMonkey. You MUST absolutely do a full backup of your profile (~/.mozilla/seamonkey/ dir) BEFORE trying to run new version.\n\nSeaMonkey now uses GTK3 library for GUI interface. If you experienced some size issues, go to 'about:config' and try to set 'layout.css.devPixelsPerPx' preference to '1' (or any other preferred value). You can also use gtk3's environment variables GDK_SCALE and/or GDK_DPI_SCALE (useful for HiDPI displays). Since Classic theme uses system desktop theme, it might behaves incorrectly when the underlying theme (still) does not support gtk3.\n\nFull theme add-ons may need changes because of user interface and internal changes. If you find any problem with themes, contact the theme author. Before reporting a problem with the user interface, please make sure to recreate it with either the Classic or Modern theme.\n\nThis version now includes 'Lightning' calendar. It becomes a standard part of Thunderbird/SeaMonkey, being just technically organized as an extension. This version returns providing of Chatzilla and DOM inspector extensions, just as it always was before.\n\nIt is likely you need to update your third-party extensions to newer versions. Poorly designed or incompatible extensions can cause unpredictable problems. If you encounter some strange issues, try 'seamonkey -safe-mode' from command line.\n\nUnfortunately, it is now impossible to continue support of npapi plugins. Thus, java applets no more work :( . All modern browsers have dropped such support years ago, and even plugin owners recommend to not use it anymore. Search 'browsers with java support' if you still need it. Sorry for that. Flash is still supported, at least until its EOL at the end of 2020.\n\nSince 2.53.1, 32-bit version (i686 arch) does not provided, because no more supported.\n\nThe old format of keys and certificates storage in the user profiles still preserved in Fedora. DO NOT TOUCH key3.db and cert8.db files (as it might be recommended in the upstream release notes) -- they still works as expected.\n\nPlease, read upstream release notes for more info https://www.seamonkey-project.org/releases/seamonkey2.53.1/\n\nNote that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website.\nTenable has attempted to automatically clean and format it as much as possible without introducing additional issues.", "published": "2020-03-09T00:00:00", "modified": "2020-03-09T00:00:00", "cvss": {"score": 0.0, "vector": "NONE"}, "cvss2": {}, "cvss3": {}, "href": "https://www.tenable.com/plugins/nessus/134334", "reporter": "This script is Copyright (C) 2020 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["https://www.seamonkey-project.org/releases/seamonkey2.53.1/", "https://bodhi.fedoraproject.org/updates/FEDORA-2020-bf6ca75fec"], "cvelist": [], "immutableFields": [], "lastseen": "2021-10-16T00:15:51", "viewCount": 4, "enchantments": {"dependencies": {}, "score": {"value": -0.3, "vector": "NONE"}, "backreferences": {"references": [{"type": "openvas", "idList": ["OPENVAS:1361412562310813197"]}]}, "exploitation": null, "vulnersScore": -0.3}, "_state": {"dependencies": 1678955717, "score": 1683999172, "epss": 1678955506}, "_internal": {"score_hash": "0bc38e3bc530206cd9037d9c8b833d0b"}, "pluginID": "134334", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Fedora Security Advisory FEDORA-2020-bf6ca75fec.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(134334);\n script_version(\"1.1\");\n script_cvs_date(\"Date: 2020/03/09\");\n\n script_xref(name:\"FEDORA\", value:\"2020-bf6ca75fec\");\n\n script_name(english:\"Fedora 31 : seamonkey (2020-bf6ca75fec)\");\n script_summary(english:\"Checks rpm output for the updated package.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Fedora host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Upgrade to 2.53.1\n\nSeaMonkey-2.53.1, being initially based on the Firefox-56 and\nThunderbird-56 code, incorporates now a lot of backported features and\nsecurity fixes from the newer Firefox/Thunderbird versions up to 75.\nThat way it tries to be a modern browser, preserving the same time the\nfamiliar user interface and the ability to use traditional extensions\nand addons.\n\nThis version makes changes to your profile that can't be reverted in\ncase you want to go back to a previous version of SeaMonkey. You MUST\nabsolutely do a full backup of your profile (~/.mozilla/seamonkey/\ndir) BEFORE trying to run new version.\n\nSeaMonkey now uses GTK3 library for GUI interface. If you experienced\nsome size issues, go to 'about:config' and try to set\n'layout.css.devPixelsPerPx' preference to '1' (or any other preferred\nvalue). You can also use gtk3's environment variables GDK_SCALE and/or\nGDK_DPI_SCALE (useful for HiDPI displays). Since Classic theme uses\nsystem desktop theme, it might behaves incorrectly when the underlying\ntheme (still) does not support gtk3.\n\nFull theme add-ons may need changes because of user interface and\ninternal changes. If you find any problem with themes, contact the\ntheme author. Before reporting a problem with the user interface,\nplease make sure to recreate it with either the Classic or Modern\ntheme.\n\nThis version now includes 'Lightning' calendar. It becomes a standard\npart of Thunderbird/SeaMonkey, being just technically organized as an\nextension. This version returns providing of Chatzilla and DOM\ninspector extensions, just as it always was before.\n\nIt is likely you need to update your third-party extensions to newer\nversions. Poorly designed or incompatible extensions can cause\nunpredictable problems. If you encounter some strange issues, try\n'seamonkey -safe-mode' from command line.\n\nUnfortunately, it is now impossible to continue support of npapi\nplugins. Thus, java applets no more work :( . All modern browsers have\ndropped such support years ago, and even plugin owners recommend to\nnot use it anymore. Search 'browsers with java support' if you still\nneed it. Sorry for that. Flash is still supported, at least until its\nEOL at the end of 2020.\n\nSince 2.53.1, 32-bit version (i686 arch) does not provided, because no\nmore supported.\n\nThe old format of keys and certificates storage in the user profiles\nstill preserved in Fedora. DO NOT TOUCH key3.db and cert8.db files (as\nit might be recommended in the upstream release notes) -- they still\nworks as expected.\n\nPlease, read upstream release notes for more info\nhttps://www.seamonkey-project.org/releases/seamonkey2.53.1/\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Fedora update system website.\nTenable has attempted to automatically clean and format it as much as\npossible without introducing additional issues.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bodhi.fedoraproject.org/updates/FEDORA-2020-bf6ca75fec\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.seamonkey-project.org/releases/seamonkey2.53.1/\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected seamonkey package.\"\n );\n script_set_attribute(attribute:\"risk_factor\", value:\"High\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fedoraproject:fedora:seamonkey\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:fedoraproject:fedora:31\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2020/03/08\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2020/03/08\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2020/03/09\");\n script_set_attribute(attribute:\"generated_plugin\", value:\"current\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2020 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Fedora Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Fedora\" >!< release) audit(AUDIT_OS_NOT, \"Fedora\");\nos_ver = pregmatch(pattern: \"Fedora.*release ([0-9]+)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Fedora\");\nos_ver = os_ver[1];\nif (! preg(pattern:\"^31([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Fedora 31\", \"Fedora \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Fedora\", cpu);\n\n\nflag = 0;\nif (rpm_check(release:\"FC31\", reference:\"seamonkey-2.53.1-2.fc31\")) flag++;\n\n\nif (flag)\n{\n security_report_v4(\n port : 0,\n severity : SECURITY_HOLE,\n extra : rpm_report_get()\n );\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"seamonkey\");\n}\n", "naslFamily": "Fedora Local Security Checks", "cpe": ["p-cpe:/a:fedoraproject:fedora:seamonkey", "cpe:/o:fedoraproject:fedora:31"], "solution": "Update the affected seamonkey package.", "nessusSeverity": "High", "cvssScoreSource": "", "vendor_cvss2": {}, "vendor_cvss3": {}, "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": "2020-03-08T00:00:00", "vulnerabilityPublicationDate": "2020-03-08T00:00:00", "exploitableWith": []}
Fedora 31 : seamonkey (2020-bf6ca75fec)