Accepted thunderbird 1:102.3.0-1 (source) into unstable
- To: debian-devel-changes@lists.debian.org
- Subject: Accepted thunderbird 1:102.3.0-1 (source) into unstable
- From: Debian FTP Masters <ftpmaster@ftp-master.debian.org>
- Date: Thu, 22 Sep 2022 17:46:11 +0000
- Debian: DAK
- Debian-architecture: source
- Debian-archive-action: accept
- Debian-changes: thunderbird_102.3.0-1_source.changes
- Debian-source: thunderbird
- Debian-suite: unstable
- Debian-version: 1:102.3.0-1
- Dkim-signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=ftp-master.debian.org; s=smtpauto.fasolo; h=Date:Message-Id: Content-Transfer-Encoding:Content-Type:Subject:MIME-Version:To:Reply-To:From: Cc:Content-ID:Content-Description:In-Reply-To:References; bh=RaIRwVImU3tsiUmw0lKVl6OEuyKpQsKG9q+/Qp5nX7o=; b=U6Mn2ZWXiFE40HofXaY4tWTzSd rs0cijIh6wtcbAmypper0yTe4hy41aR99/hwCobD7rGFLp7V7GDTHreBBYzfewy4+1ayvrsNvM57n 0bqBpxhJZG+xV3O6EqO5EKoMpSt6X106WFG9zxJbnOCDNwUw3s0VdUxkyOPCGJwDE2DjqbKnvjbUq NuAZzJEdr6dAVofVkt2M43nwWHQoIrbptwETl71r+7Pt8x3W7h6GExS1VElTlVGO+8k1r2l4k11jH cE4muQih6b1lcJvjw5FyOs+RQvVj4DigLCR+7C3hNJ3uutwOIU2BSNyuhnAN7sJc7tdqYhI7xDuIP rLnEdWpg==;
- Mail-followup-to: debian-devel@lists.debian.org
- Message-id: <E1obQH5-00Dtdd-9c@fasolo.debian.org>
- Reply-to: debian-devel@lists.debian.org
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
Format: 1.8
Date: Fri, 16 Sep 2022 16:56:20 +0200
Source: thunderbird
Architecture: source
Version: 1:102.3.0-1
Distribution: unstable
Urgency: medium
Maintainer: Carsten Schoenert <c.schoenert@t-online.de>
Changed-By: Carsten Schoenert <c.schoenert@t-online.de>
Changes:
thunderbird (1:102.3.0-1) unstable; urgency=medium
.
* [0e841a7] New upstream version 102.3.0
Fixed CVE issues in upstream version 102.3 (MFSA 2022-42):
CVE-2022-40959: Bypassing FeaturePolicy restrictions on transient pages
CVE-2022-40960: Data-race when parsing non-UTF-8 URLs in threads
CVE-2022-40958: Bypassing Secure Context restriction for cookies with
__Host and __Secure prefix
CVE-2022-40956: Content-Security-Policy base-uri bypass
CVE-2022-40957: Incoherent instruction cache when building WASM on ARM64
CVE-2022-40962: Memory safety bugs fixed in Thunderbird 102.3
Checksums-Sha1:
f58bca3fcbadd5bb0fa689debd1308f75056c739 8494 thunderbird_102.3.0-1.dsc
0f21fac87f470d2fb6877905793b4e94fac54599 12243756 thunderbird_102.3.0.orig-thunderbird-l10n.tar.xz
56c931d4bf498b8a61a6388536526d2c9ca83a51 521468180 thunderbird_102.3.0.orig.tar.xz
a08ae56255681e6ae029fc4258aa948dce296be9 545860 thunderbird_102.3.0-1.debian.tar.xz
9332d4f8cec132ede3a48d478f7b584255f5cd48 37219 thunderbird_102.3.0-1_amd64.buildinfo
Checksums-Sha256:
987f0eb458d4b7be3a2da73aecac1866a50162b672f1662f14cad025cd315f18 8494 thunderbird_102.3.0-1.dsc
05840506dd013d57f203b6f0943945c99591d30c08be542f55b764764bba5240 12243756 thunderbird_102.3.0.orig-thunderbird-l10n.tar.xz
2b7d109f8ddbbd8ea021ae4062f51c13bea8356fcb4bf099f8280071996ec24b 521468180 thunderbird_102.3.0.orig.tar.xz
e0b472c06abf55ef46e67fd885cff784856957af0e566fb39a0db4fb68684543 545860 thunderbird_102.3.0-1.debian.tar.xz
fe2dbd6c29acf0ba53c415f1ea1dfe1c7d5d328593e138b1d4906fb5bb4a4b2e 37219 thunderbird_102.3.0-1_amd64.buildinfo
Files:
1e89a453c7ccf26a66de6e6fbfe102b2 8494 mail optional thunderbird_102.3.0-1.dsc
065024ca4197f422ac25b6448900903e 12243756 mail optional thunderbird_102.3.0.orig-thunderbird-l10n.tar.xz
1eb7e4e770a70819d4ff1636c211ed84 521468180 mail optional thunderbird_102.3.0.orig.tar.xz
3641e7bd1869a567deff17260e27faf2 545860 mail optional thunderbird_102.3.0-1.debian.tar.xz
3f7639422e5f33e48bd93f8b928fcbbb 37219 mail optional thunderbird_102.3.0-1_amd64.buildinfo
-----BEGIN PGP SIGNATURE-----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=b8TU
-----END PGP SIGNATURE-----