-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Thu, 06 Feb 2025 17:44:29 +0100
Source: thunderbird
Binary: thunderbird thunderbird-dbgsym
Architecture: amd64
Version: 1:128.7.0esr-1~deb12u1
Distribution: bookworm-security
Urgency: medium
Maintainer: amd64 / i386 Build Daemon (x86-csail-01) <buildd_amd64-x86-csail-01@buildd.debian.org>
Changed-By: Christoph Goehre <chris@sigxcpu.org>
Description:
 thunderbird - mail/news client with RSS, chat and integrated spam filter suppor
Changes:
 thunderbird (1:128.7.0esr-1~deb12u1) bookworm-security; urgency=medium
 .
   * [4a9ef4c] New upstream version 128.7.0esr
     Fixed CVE issues in upstream version 128.7 (MFSA 2025-10):
     CVE-2025-1009: Use-after-free in XSLT
     CVE-2025-1010: Use-after-free in Custom Highlight
     CVE-2025-1011: A bug in WebAssembly code generation could result in a
                    crash
     CVE-2025-1012: Use-after-free during concurrent delazification
     CVE-2024-11704: Potential double-free vulnerability in PKCS#7 decryption
                     handling
     CVE-2025-1013: Potential opening of private browsing tabs in normal
                    browsing windows
     CVE-2025-1014: Certificate length was not properly checked
     CVE-2025-1015: Unsanitized address book fields
     CVE-2025-0510: Address of e-mail sender can be spoofed by malicious email
     CVE-2025-1016: Memory safety bugs fixed in Firefox 135, Thunderbird 135,
                    Firefox ESR 115.20, Firefox ESR 128.7, Thunderbird 115.20,
                    and Thunderbird 128.7
     CVE-2025-1017: Memory safety bugs fixed in Firefox 135, Thunderbird 135,
                    Firefox ESR 128.7, and Thunderbird 128.7
Checksums-Sha1:
 9f168441ba642a18e2a69a7bfce8aed131a143f4 468035764 thunderbird-dbgsym_128.7.0esr-1~deb12u1_amd64.deb
 9ce8d93860609e086db0cbbab54ca766586106a8 20134 thunderbird_128.7.0esr-1~deb12u1_amd64-buildd.buildinfo
 f311d97459d4cef3a80b0f6b3059b04fc68276c6 65190244 thunderbird_128.7.0esr-1~deb12u1_amd64.deb
Checksums-Sha256:
 e4ef350c6bf0bc5edc2d5b0b6d1b17fbe608e6b196b5901c40865863c88a0ed5 468035764 thunderbird-dbgsym_128.7.0esr-1~deb12u1_amd64.deb
 78d916ecb6ef45c0c71002ce9cb715e16871a393e5cd95c6be2909ccf48fade1 20134 thunderbird_128.7.0esr-1~deb12u1_amd64-buildd.buildinfo
 d1c689722e67b6abc88f7610b7ff9050647b0f7dd91f9f07901be5b786fc91dd 65190244 thunderbird_128.7.0esr-1~deb12u1_amd64.deb
Files:
 a6f1c3b7fad57db142a1468913dd801e 468035764 debug optional thunderbird-dbgsym_128.7.0esr-1~deb12u1_amd64.deb
 c84e663a999ee6ef529e3ec09d6e0261 20134 mail optional thunderbird_128.7.0esr-1~deb12u1_amd64-buildd.buildinfo
 f571934bebe92c8f1c8ff2ccc15e66f6 65190244 mail optional thunderbird_128.7.0esr-1~deb12u1_amd64.deb

-----BEGIN PGP SIGNATURE-----
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=T7Iv
-----END PGP SIGNATURE-----