-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Thu, 06 Feb 2025 17:44:29 +0100
Source: thunderbird
Binary: thunderbird thunderbird-dbgsym
Architecture: ppc64el
Version: 1:128.7.0esr-1~deb12u1
Distribution: bookworm-security
Urgency: medium
Maintainer: ppc64el Build Daemon (ppc64el-osuosl-02) <buildd_ppc64el-ppc64el-osuosl-02@buildd.debian.org>
Changed-By: Christoph Goehre <chris@sigxcpu.org>
Description:
 thunderbird - mail/news client with RSS, chat and integrated spam filter suppor
Changes:
 thunderbird (1:128.7.0esr-1~deb12u1) bookworm-security; urgency=medium
 .
   * [4a9ef4c] New upstream version 128.7.0esr
     Fixed CVE issues in upstream version 128.7 (MFSA 2025-10):
     CVE-2025-1009: Use-after-free in XSLT
     CVE-2025-1010: Use-after-free in Custom Highlight
     CVE-2025-1011: A bug in WebAssembly code generation could result in a
                    crash
     CVE-2025-1012: Use-after-free during concurrent delazification
     CVE-2024-11704: Potential double-free vulnerability in PKCS#7 decryption
                     handling
     CVE-2025-1013: Potential opening of private browsing tabs in normal
                    browsing windows
     CVE-2025-1014: Certificate length was not properly checked
     CVE-2025-1015: Unsanitized address book fields
     CVE-2025-0510: Address of e-mail sender can be spoofed by malicious email
     CVE-2025-1016: Memory safety bugs fixed in Firefox 135, Thunderbird 135,
                    Firefox ESR 115.20, Firefox ESR 128.7, Thunderbird 115.20,
                    and Thunderbird 128.7
     CVE-2025-1017: Memory safety bugs fixed in Firefox 135, Thunderbird 135,
                    Firefox ESR 128.7, and Thunderbird 128.7
Checksums-Sha1:
 f7d0dd29f4542973ac98071592147510d1b321d2 437682556 thunderbird-dbgsym_128.7.0esr-1~deb12u1_ppc64el.deb
 7627740ff127dda70d110f32064816cdd83a4829 20113 thunderbird_128.7.0esr-1~deb12u1_ppc64el-buildd.buildinfo
 ec065e862ca74bf7f588d3b907fa3a6d8c5f400c 61690256 thunderbird_128.7.0esr-1~deb12u1_ppc64el.deb
Checksums-Sha256:
 6aa0af147556cf94cac5e49339c76cb52a7adb61fe618980dbfe59d9550f5dd7 437682556 thunderbird-dbgsym_128.7.0esr-1~deb12u1_ppc64el.deb
 025ab9194b957a20fa8ee35373a6f0caa5eca0cb9fe62e9b256bdb01c03ec76c 20113 thunderbird_128.7.0esr-1~deb12u1_ppc64el-buildd.buildinfo
 63e4417ad1b78fa0ed43c170fbbca039ba805444cf7b7ca45cb3438e15b3260f 61690256 thunderbird_128.7.0esr-1~deb12u1_ppc64el.deb
Files:
 779f2ca13d37b89a395a08d4081e592c 437682556 debug optional thunderbird-dbgsym_128.7.0esr-1~deb12u1_ppc64el.deb
 304a9d0261805e5b8cbfbc263ea81858 20113 mail optional thunderbird_128.7.0esr-1~deb12u1_ppc64el-buildd.buildinfo
 ae71093804f530babc4c84b28c50acb0 61690256 mail optional thunderbird_128.7.0esr-1~deb12u1_ppc64el.deb

-----BEGIN PGP SIGNATURE-----

iQIzBAEBCgAdFiEE0YcVZfZCWQv84jpRNcqbeolus3sFAmelJWsACgkQNcqbeolu
s3t+Tw//dobvEshAAUZzsasFB+MVgJ1Ikia0sTkRPogtN8K6m3v8S2U/LKoEzRGl
l/IK7ahdPx6+w0TIMR1Mbo76Jc2t/rCjh/7yFt8jx9aL9gLvXe/U9IG/YnB5Lg8e
b8jma5+V/kwom3f2xN4tuQqRKdC3r0kvhEwobIHJ9eXaEOlP+hdJGECUqUyuD4pb
ePWQ6JvV90+JqbOMgzAGT4uVKDqb3S+g887fr5mz5dEA1QACsl6sJ04u7qaJDwkb
3jV+EjnNBHmaI1YFnnbAIHzim7y8kUqmGimK1Yq1q5BdhXhvQqRRpOrrEG3RKtYD
2n3OwICAJLMMohTfai/+zwwxZt6MrVLx8pb4puOIx74nWGK8Ih9ZPQt0P1XMUvKR
ILQuKHVpqtfDqHX3zgOKZz7WLx1Mx5+gdjN86NZI36qz2/1vCVlZcEbM54E708U9
QVYcG/YcoTGNgnLp7z2UHHa2tv7qSVghNmiBq7dYWRYYErQdH1aI6Doi+Lssc0+L
MXBxBAyueKdc3Mwy+Co4VKGAiSqw/+eroAhzq+BKipVLoWeDuuzddbOmug/Epydb
0i/avSiqZEo4YU2sgSXV4e2PlKOXyEzOdaxs6CV0bHZTE9swSQwNL3ZzN1dDwhLD
hLn+I4jAiWDKOt4+uzUBdWXdClehzl7O9irYRUf2KaJwH2ly768=
=bcp6
-----END PGP SIGNATURE-----