-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
Format: 1.8
Date: Wed, 30 Aug 2023 17:41:36 +0200
Source: thunderbird
Architecture: source
Version: 1:115.2.0-1
Distribution: unstable
Urgency: medium
Maintainer: Carsten Schoenert <c.schoenert@t-online.de>
Changed-By: Christoph Goehre <chris@sigxcpu.org>
Changes:
thunderbird (1:115.2.0-1) unstable; urgency=medium
.
* [1415d01] New upstream version 115.2.0
Fixed CVE issues in upstream version 115.2 (MFSA 2023-36):
CVE-2023-4573: Memory corruption in IPC CanvasTranslator
CVE-2023-4574: Memory corruption in IPC ColorPickerShownCallback
CVE-2023-4575: Memory corruption in IPC FilePickerShownCallback
CVE-2023-4576: Integer Overflow in RecordedSourceSurfaceCreation
CVE-2023-4577: Memory corruption in JIT UpdateRegExpStatics
CVE-2023-4051: Full screen notification obscured by file open dialog
CVE-2023-4578: Error reporting methods in SpiderMonkey could have
triggered an Out of Memory Exception
CVE-2023-4053: Full screen notification obscured by external program
CVE-2023-4580: Push notifications saved to disk unencrypted
CVE-2023-4581: XLL file extensions were downloadable without warnings
CVE-2023-4582: Buffer Overflow in WebGL glGetProgramiv
CVE-2023-4583: Browsing Context potentially not cleared when closing
Private Window
CVE-2023-4584: Memory safety bugs fixed in Firefox 117, Firefox ESR
102.15, Firefox ESR 115.2, Thunderbird 102.15, and
Thunderbird 115.2
CVE-2023-4585: Memory safety bugs fixed in Firefox 117, Firefox ESR 115.2,
and Thunderbird 115.2
Checksums-Sha1:
6cd0bcc34459c6f2753a7f2975f9a80658e2cd02 8504 thunderbird_115.2.0-1.dsc
d1a425cf967bc7c6be2b6e6439ba4313963cd931 12631160 thunderbird_115.2.0.orig-thunderbird-l10n.tar.xz
76296949892717ae79442fe2bb13af835921708d 555781288 thunderbird_115.2.0.orig.tar.xz
212a14c1e8a814f9e5bd8c1d5bc5b3c31a290ee2 541668 thunderbird_115.2.0-1.debian.tar.xz
4565158dc1a966d5726d62ee8d6b6b87b1b94474 7034 thunderbird_115.2.0-1_source.buildinfo
Checksums-Sha256:
d782208e878a8ba862d9693ebe49dc798d7a286a2934a5094a79ff681396ae1f 8504 thunderbird_115.2.0-1.dsc
6c177926f4576e273320d896ec8619bf2f5dd0458ab27de93c9e882691807dce 12631160 thunderbird_115.2.0.orig-thunderbird-l10n.tar.xz
90665bb8796e3de08b234a8e111f224d6098aff606c1c4c94424ad3a6534dfbf 555781288 thunderbird_115.2.0.orig.tar.xz
e6a8a93dd8a01ae43d1f3c885f4d2a4617a4992989a310460d138ce3759c774d 541668 thunderbird_115.2.0-1.debian.tar.xz
ea07dac2705b8710291210e514136c95ae1aa29fd0efb86aaf8c731b45e100ad 7034 thunderbird_115.2.0-1_source.buildinfo
Files:
e042976cbd554efa158cc2694cde8fe2 8504 mail optional thunderbird_115.2.0-1.dsc
d65a5a013e943c1418e08da99c9f4fca 12631160 mail optional thunderbird_115.2.0.orig-thunderbird-l10n.tar.xz
d729cc301035d9067a418ffdc9969b36 555781288 mail optional thunderbird_115.2.0.orig.tar.xz
d7117f40a9f82cbb4a76400c02daba51 541668 mail optional thunderbird_115.2.0-1.debian.tar.xz
490628a9874627b7a70be43a003d9905 7034 mail optional thunderbird_115.2.0-1_source.buildinfo
-----BEGIN PGP SIGNATURE-----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=yH4Z
-----END PGP SIGNATURE-----
