thunderbird - Debian Package Tracker

general

source: thunderbird (main)
version: 1:128.9.0esr-1
maintainer: Carsten Schoenert (DMD)
uploaders: Christoph Goehre [DMD]
arch: all amd64 arm64 i386 mips64el ppc64 ppc64el
std-ver: 4.7.1
VCS: Git (Browse, QA)

versions [more versions can be listed by madison] [old versions available from snapshot.debian.org]

[pool directory]

o-o-stable: 1:91.12.0-1~deb10u1
o-o-sec: 1:115.12.0-1~deb10u1
oldstable: 1:115.12.0-1~deb11u1
old-sec: 1:128.9.0esr-1~deb11u1
old-p-u: 1:115.14.0-1~deb11u1
stable: 1:128.8.0esr-1~deb12u1
stable-sec: 1:128.9.0esr-1~deb12u1
testing: 1:128.8.0esr-1
unstable: 1:128.9.0esr-1
exp: 1:136.0-1

versioned links

1:60.9.0-1~deb10u1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
1:78.8.0-1~deb10u1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
1:78.14.0-1~deb10u1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
1:91.12.0-1~deb10u1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
1:91.13.0-1~deb11u1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
1:115.12.0-1~deb10u1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
1:115.12.0-1~deb11u1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
1:115.14.0-1~deb11u1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
1:115.15.0-1~deb12u1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
1:115.16.0esr-1~deb12u1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
1:127.0~b5-1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
1:128.8.0esr-1~deb12u1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
1:128.8.0esr-1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
1:128.9.0esr-1~deb11u1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
1:128.9.0esr-1~deb12u1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
1:128.9.0esr-1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
1:136.0-1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]

binaries

thunderbird (120 bugs: 0, 100, 20, 0)
thunderbird-l10n-af
thunderbird-l10n-all
thunderbird-l10n-ar
thunderbird-l10n-ast
thunderbird-l10n-be
thunderbird-l10n-bg
thunderbird-l10n-br
thunderbird-l10n-ca
thunderbird-l10n-cak
thunderbird-l10n-cs
thunderbird-l10n-cy
thunderbird-l10n-da (1 bugs: 0, 0, 1, 0)
thunderbird-l10n-de
thunderbird-l10n-dsb
thunderbird-l10n-el
thunderbird-l10n-en-ca
thunderbird-l10n-en-gb
thunderbird-l10n-es-ar
thunderbird-l10n-es-es
thunderbird-l10n-es-mx
thunderbird-l10n-et
thunderbird-l10n-eu
thunderbird-l10n-fi
thunderbird-l10n-fr (3 bugs: 0, 1, 2, 0)
thunderbird-l10n-fy-nl
thunderbird-l10n-ga-ie
thunderbird-l10n-gd
thunderbird-l10n-gl
thunderbird-l10n-he
thunderbird-l10n-hr
thunderbird-l10n-hsb
thunderbird-l10n-hu
thunderbird-l10n-hy-am
thunderbird-l10n-id
thunderbird-l10n-is
thunderbird-l10n-it
thunderbird-l10n-ja
thunderbird-l10n-ka
thunderbird-l10n-kab
thunderbird-l10n-kk
thunderbird-l10n-ko
thunderbird-l10n-lt
thunderbird-l10n-lv
thunderbird-l10n-ms
thunderbird-l10n-nb-no
thunderbird-l10n-nl (1 bugs: 0, 1, 0, 0)
thunderbird-l10n-nn-no
thunderbird-l10n-pa-in
thunderbird-l10n-pl
thunderbird-l10n-pt-br
thunderbird-l10n-pt-pt
thunderbird-l10n-rm
thunderbird-l10n-ro
thunderbird-l10n-ru
thunderbird-l10n-sk
thunderbird-l10n-sl
thunderbird-l10n-sq
thunderbird-l10n-sr
thunderbird-l10n-sv-se
thunderbird-l10n-th
thunderbird-l10n-tr
thunderbird-l10n-uk
thunderbird-l10n-uz
thunderbird-l10n-vi
thunderbird-l10n-zh-cn
thunderbird-l10n-zh-tw

action needed

The VCS repository is not up to date, push the missing commits. high

vcswatch reports that the current version of the package is not in its VCS.
Either you need to push your commits and/or your tags, or the information about the package's VCS are out of date. A common cause of the latter issue when using the Git VCS is not specifying the correct branch when the packaging is not in the default one (remote HEAD branch), which is usually "master" but can be modified in salsa.debian.org in the project's general settings with the "Default Branch" field). Alternatively the Vcs-Git field in debian/control can contain a "-b <branch-name>" suffix to indicate what branch is used for the Debian packaging.

Created: 2025-04-04 Last update: 2025-04-04 21:33

3 security issues in trixie high

There are 3 open security issues in trixie.

3 important issues:

CVE-2025-3028: JavaScript code running while transforming a document with the XSLTProcessor could lead to a use-after-free. This vulnerability affects Firefox < 137, Firefox ESR < 115.22, Firefox ESR < 128.9, Thunderbird < 137, and Thunderbird < 128.9.
CVE-2025-3029: A crafted URL containing specific Unicode characters could have hidden the true origin of the page, resulting in a potential spoofing attack. This vulnerability affects Firefox < 137, Firefox ESR < 128.9, Thunderbird < 137, and Thunderbird < 128.9.
CVE-2025-3030: Memory safety bugs present in Firefox 136, Thunderbird 136, Firefox ESR 128.8, and Thunderbird 128.8. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Firefox < 137, Firefox ESR < 128.9, Thunderbird < 137, and Thunderbird < 128.9.

Created: 2025-04-01 Last update: 2025-04-03 20:31

lintian reports 1 error and 18 warnings high

Lintian reports 1 error and 18 warnings about this package. You should make the package lintian clean getting rid of them.

Created: 2025-02-23 Last update: 2025-03-07 04:01

2 bugs tagged patch in the BTS normal

The BTS contains patches fixing 2 bugs, consider including or untagging them.

Created: 2025-01-06 Last update: 2025-04-04 21:31

Depends on packages which need a new maintainer normal

The packages that thunderbird depends on which need a new maintainer are:

yasm (#1011573)
- Build-Depends: yasm
libidl (#738870)
- Build-Depends: libidl-dev
hunspell-kk (#879871)
- Recommends: hunspell-kk
ifrench-gut (#1006643)
- Recommends: myspell-fr-gut
uzbek-wordlist (#841696)
- Recommends: hunspell-uz
wireless-tools (#963896)
- Build-Depends: libiw-dev

Created: 2019-11-22 Last update: 2025-04-04 18:33

AppStream hints: 1 warning normal

AppStream found metadata issues for packages:

thunderbird: 1 warning

You should get rid of them to provide more metadata about this software.

Created: 2021-12-22 Last update: 2021-12-22 06:06

debian/patches: 19 patches to forward upstream low

Among the 20 debian patches available in version 1:128.9.0esr-1 of the package, we noticed the following issues:

19 patches where the metadata indicates that the patch has not yet been forwarded upstream. You should either forward the patch upstream or update the metadata to document its real status.

Created: 2023-02-26 Last update: 2025-04-03 00:01

Build log checks report 1 warning low

Build log checks report 1 warning

Created: 2024-11-07 Last update: 2024-11-07 07:00

Standards version of the package is outdated. wishlist

The package should be updated to follow the last version of Debian Policy (Standards-Version 4.7.2 instead of 4.7.1).

Created: 2025-02-21 Last update: 2025-04-02 19:26

testing migrations

excuses:
- Migration status for thunderbird (1:128.8.0esr-1 to 1:128.9.0esr-1): Waiting for test results or another package, or too young (no action required now - check later)
- Issues preventing migration:
- ∙ ∙ autopkgtest for firejail/0.9.72-2.1: amd64: No tests, superficial or marked flaky ♻, arm64: No tests, superficial or marked flaky ♻, i386: No tests, superficial or marked flaky ♻, ppc64el: No tests, superficial or marked flaky ♻ (reference ♻), riscv64: Test in progress
- ∙ ∙ autopkgtest for thunderbird/1:128.9.0esr-1: amd64: Pass, arm64: Test in progress (will not be considered a regression), i386: Pass, ppc64el: Test in progress (will not be considered a regression), riscv64: Test in progress (will not be considered a regression)
- ∙ ∙ Too young, only 3 of 5 days old
- Additional info:
- ∙ ∙ Piuparts tested OK - https://piuparts.debian.org/sid/source/t/thunderbird.html
- ∙ ∙ uninstallable on arch armel (which is allowed), not running autopkgtest there
- ∙ ∙ uninstallable on arch armhf (which is allowed), not running autopkgtest there
- ∙ ∙ uninstallable on arch s390x (which is allowed), not running autopkgtest there
- ∙ ∙ Waiting for reproducibility test results on amd64 - info ♻
- ∙ ∙ Waiting for reproducibility test results on arm64 - info ♻
- ∙ ∙ Waiting for reproducibility test results on armhf - info ♻
- ∙ ∙ Waiting for reproducibility test results on i386 - info ♻
- Not considered

news

[rss feed]

[2025-04-04] Accepted thunderbird 1:137.0-1 (source) into experimental (Christoph Goehre)
[2025-04-03] Accepted thunderbird 1:128.9.0esr-1~deb12u1 (source) into stable-security (Debian FTP Masters) (signed by: Christoph Goehre)
[2025-04-02] Accepted thunderbird 1:128.9.0esr-1~deb11u1 (source) into oldstable-security (Christoph Goehre)
[2025-04-02] Accepted thunderbird 1:128.9.0esr-1 (source) into unstable (Christoph Goehre)
[2025-03-12] thunderbird 1:128.8.0esr-1 MIGRATED to testing (Debian testing watch)
[2025-03-09] Accepted thunderbird 1:128.8.0esr-1~deb12u1 (source) into proposed-updates (Debian FTP Masters) (signed by: Christoph Goehre)
[2025-03-09] Accepted thunderbird 1:136.0-1 (source) into experimental (Christoph Goehre)
[2025-03-08] Accepted thunderbird 1:128.8.0esr-1~deb12u1 (source) into stable-security (Debian FTP Masters) (signed by: Christoph Goehre)
[2025-03-06] Accepted thunderbird 1:128.8.0esr-1~deb11u1 (source) into oldstable-security (Christoph Goehre)
[2025-03-06] Accepted thunderbird 1:128.8.0esr-1 (source) into unstable (Christoph Goehre)
[2025-02-27] thunderbird 1:128.7.0esr-1 MIGRATED to testing (Debian testing watch)
[2025-02-22] Accepted thunderbird 1:128.7.0esr-1 (source) into unstable (Christoph Goehre)
[2025-02-17] Accepted thunderbird 1:128.7.0esr-1~deb12u1 (source) into proposed-updates (Debian FTP Masters) (signed by: Christoph Goehre)
[2025-02-10] Accepted thunderbird 1:135.0-1 (source) into experimental (Christoph Goehre)
[2025-02-07] Accepted thunderbird 1:128.7.0esr-1~deb12u1 (source) into stable-security (Debian FTP Masters) (signed by: Christoph Goehre)
[2025-02-06] Accepted thunderbird 1:128.7.0esr-1~deb11u1 (source) into oldstable-security (Christoph Goehre)
[2025-01-25] Accepted thunderbird 1:128.6.0esr-1~deb12u1 (source) into proposed-updates (Debian FTP Masters) (signed by: Christoph Goehre)
[2025-01-15] thunderbird 1:128.6.0esr-1 MIGRATED to testing (Debian testing watch)
[2025-01-10] Accepted thunderbird 1:128.6.0esr-1~deb12u1 (source) into stable-security (Debian FTP Masters) (signed by: Christoph Goehre)
[2025-01-10] Accepted thunderbird 1:128.6.0esr-1~deb11u1 (source) into oldstable-security (Christoph Goehre)
[2025-01-09] Accepted thunderbird 1:128.6.0esr-1 (source) into unstable (Christoph Goehre)
[2024-12-29] Accepted thunderbird 1:128.5.0esr-1~deb12u1 (source) into proposed-updates (Debian FTP Masters) (signed by: Christoph Goehre)
[2024-12-20] thunderbird 1:128.5.2esr-1 MIGRATED to testing (Debian testing watch)
[2024-12-14] Accepted thunderbird 1:128.5.2esr-1 (source) into unstable (Christoph Goehre)
[2024-12-02] thunderbird 1:128.5.0esr-1 MIGRATED to testing (Debian testing watch)
[2024-11-27] Accepted thunderbird 1:128.5.0esr-1~deb12u1 (source) into stable-security (Debian FTP Masters) (signed by: Christoph Goehre)
[2024-11-27] Accepted thunderbird 1:128.5.0esr-1~deb11u1 (source) into oldstable-security (Christoph Goehre)
[2024-11-26] Accepted thunderbird 1:128.5.0esr-1 (source) into unstable (Christoph Goehre)
[2024-11-21] Accepted thunderbird 1:128.4.3esr-1~deb12u1 (source) into proposed-updates (Debian FTP Masters) (signed by: Carsten Schoenert)
[2024-11-21] Accepted thunderbird 1:128.4.0esr-1~deb12u1 (source) into proposed-updates (Debian FTP Masters) (signed by: Carsten Schoenert)

bugs [bug history graph]

all: 331 334
RC: 0
I&N: 249 251
M&W: 82 83
F&P: 0
patch: 2

links

homepage
lintian (1, 18)
buildd: logs, exp, checks, reproducibility, cross
popcon
browse source code
edit tags
other distros
security tracker
screenshots
l10n (-, 73)
debian patches
debci

ubuntu

[Information about Ubuntu for Debian Developers]

version: 2:1snap1-0ubuntu3
375 bugs (4 patches)
patches for 2:1snap1-0ubuntu3