Accepted thunderbird 1:115.6.0-1 (source) into unstable
- To: debian-devel-changes@lists.debian.org
- Subject: Accepted thunderbird 1:115.6.0-1 (source) into unstable
- From: Debian FTP Masters <ftpmaster@ftp-master.debian.org>
- Date: Tue, 19 Dec 2023 21:10:23 +0000
- Debian: DAK
- Debian-architecture: source
- Debian-archive-action: accept
- Debian-changes: thunderbird_115.6.0-1_source.changes
- Debian-source: thunderbird
- Debian-suite: unstable
- Debian-version: 1:115.6.0-1
- Dkim-signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=ftp-master.debian.org; s=smtpauto.fasolo; h=Date:Message-Id: Content-Transfer-Encoding:Content-Type:Subject:MIME-Version:To:Reply-To:From: Cc:Content-ID:Content-Description:In-Reply-To:References; bh=zCgaLH9jrUsG/xUZ8ecb/xGCaBMlkclK8b5YPZgilWk=; b=NV9VOi2GcP1BdJpp1I2xkX5ynD 5n4nz3zbDt571QFyfQ0TqC4Qa1ITGIi0MUnQ4+n3zyIB16k5XEOH3HaHPksSeziBw6i11Lo6LebLT LCI8K2c3Tnn9CS2Wpy21/esJzqQPKBoobHHSEPtGPRjlaoYNojA/AnQiJJBsQg7yufWs1CQIif5TC J7q56eAJidSMVcqrbUcL7HBR3NEcR4+tDtDLLCj5DLspiT+5FV339JnXrbF5s7DGUhZXscsqxEbNK rylWsp4k8Iz1LXj2nnpQCElMIPa5de0a3uggqgNf3WDNN8eIPCuCchG07eIfDCSij/cNQ5L8npkU3 BjHT0aIw==;
- Mail-followup-to: debian-devel@lists.debian.org
- Message-id: <E1rFhM7-00Fo3b-Uj@fasolo.debian.org>
- Reply-to: debian-devel@lists.debian.org
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
Format: 1.8
Date: Tue, 19 Dec 2023 20:24:02 +0100
Source: thunderbird
Architecture: source
Version: 1:115.6.0-1
Distribution: unstable
Urgency: medium
Maintainer: Carsten Schoenert <c.schoenert@t-online.de>
Changed-By: Carsten Schoenert <c.schoenert@t-online.de>
Closes: 1058737
Changes:
thunderbird (1:115.6.0-1) unstable; urgency=medium
.
* [aea3623] New upstream version 115.6.0
Fixed CVE issues in upstream version 115. (MFSA 2023-55):
CVE-2023-50762: Truncated signed text was shown with a valid OpenPGP
signature
CVE-2023-50761: S/MIME signature accepted despite mismatching message
date
CVE-2023-6856: Heap-buffer-overflow affecting WebGL DrawElementsInstanced
method with Mesa VM driver
CVE-2023-6857: Symlinks may resolve to smaller than expected buffers
CVE-2023-6858: Heap buffer overflow in nsTextFragment
CVE-2023-6859: Use-after-free in PR_GetIdentitiesLayer
CVE-2023-6860: Potential sandbox escape due to VideoBridge lack
of texture validation
CVE-2023-6861: Heap buffer overflow affected nsWindow::PickerOpen(void)
in headless mode
CVE-2023-6862: Use-after-free in nsDNSService
CVE-2023-6863: Undefined behavior in ShutdownObserver()
CVE-2023-6864: Memory safety bugs fixed in Firefox 121, Firefox ESR 115.6,
and Thunderbird 115.6
* [6ecaa01] d/control: Remove B-D on libiw-dev
(Closes: #1058737)
Checksums-Sha1:
66f59c8169c489e9c8c91f757a1c2a3d0781040a 8463 thunderbird_115.6.0-1.dsc
76b378ec8a98e9d36279e15898b87814f0b6c346 12674084 thunderbird_115.6.0.orig-thunderbird-l10n.tar.xz
1d238fcbe670472a37016b98d55a17175b03f681 558286952 thunderbird_115.6.0.orig.tar.xz
b7d4b01694dad38fd125029647013193c6d3b764 544156 thunderbird_115.6.0-1.debian.tar.xz
a74d7fc5aee90a3363d74c4d5b9b3fe862f39230 40374 thunderbird_115.6.0-1_amd64.buildinfo
Checksums-Sha256:
013bc3166b083e295997e85fefdc5b5bd67cc3165e956e06a767b17b01bfdc9a 8463 thunderbird_115.6.0-1.dsc
8691e5e31649cecf946d01ab10be1d687451dfe0db20e5391ce9e65a0d77cbc9 12674084 thunderbird_115.6.0.orig-thunderbird-l10n.tar.xz
b9cae13ca724cbb39c685c99f70cd7c18b932c687abecf1a5214f0010c67a85a 558286952 thunderbird_115.6.0.orig.tar.xz
5a4c32a00c012882ff58e1b041de0aae56e8b68b3a1e7e4e430a7620ac88d6a1 544156 thunderbird_115.6.0-1.debian.tar.xz
a68eb10019f1aee7e7d99aac49c9e778e86d8916defe27cf7ed1269fff9b6508 40374 thunderbird_115.6.0-1_amd64.buildinfo
Files:
a453ce7b4d30d09b4c679d08919f8177 8463 mail optional thunderbird_115.6.0-1.dsc
b3fa5c084433cb747f5d08c1b7b21341 12674084 mail optional thunderbird_115.6.0.orig-thunderbird-l10n.tar.xz
f4976df107637e2a646378b282c2084f 558286952 mail optional thunderbird_115.6.0.orig.tar.xz
5fd87fd1f5692116f7c456abd007dd53 544156 mail optional thunderbird_115.6.0-1.debian.tar.xz
67249b017b5757e38307e8d85c03bd8e 40374 mail optional thunderbird_115.6.0-1_amd64.buildinfo
-----BEGIN PGP SIGNATURE-----
iQIzBAEBCgAdFiEEtw38bxNP7PwBHmKqgwFgFCUdHbAFAmWB+OgACgkQgwFgFCUd
HbCLAg//aM0fQneOlu0BrAOVd/KJp+YgOuO/SFAAyaFIYSY1fcVR+sCtXSxIPzt7
ZW/+qs9Ol/1Ui5Awyr3dq9xgU4JrSj0X+Sf7oIUg3D2E2SV8V6mEX57sRFeqBEKJ
8Wlpv5zQmcj1PWBNmXlnFWQzoLdxWb8VTfZ1xtJAlSJbfTq/VTsP8B6ts46o/ONV
eN6kts9IIM8VYaL3wiW64XoG5bjyZIGyNq8xes6nN7Y5DiW/SAunzfeAP14InKvd
Bvh11khMUrgUK80aztpu9QAu80hzo4f5QtvcgJO8IQ7rvelGbOf0GPOts0kDSO5Y
ZF1DrryQsImEMYhBtyw5TfjEuYqvyo9tPbio7vsmRZTi4vi3rDwZYrqIgtkVbTO6
hTQgeCqcn9fv9Kj7ITc2K/j6B3+25n/ipbgg/6B3yom3MF1CCJxG66UWtaJI/Izp
kQOdC2cZWpMv3EIKh5HwOqRrFo+mQYDI3jK5JNNb6vuJ2gaSkfdfHHhuF3JNUbbJ
XD/dOcnoWeSab2dDoBJEsMN3QpzpJymu8jEk7QU0Zco2RlQYfpbMtt60NID/pLFi
hPTI5SDqbjoFWvgnT4eeF2aFMzd1zHc34ABjv4HhNmhq2PKW+V78elAuOpSI8NoZ
WNFc/ArNDfLpZXqLGGs5ikpjW9fIx0fdCEbvAbDV5xJ4yazQZog=
=IGPm
-----END PGP SIGNATURE-----