-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Thu, 06 Feb 2025 17:44:29 +0100
Source: thunderbird
Binary: thunderbird thunderbird-dbgsym
Architecture: i386
Version: 1:128.7.0esr-1~deb12u1
Distribution: bookworm-security
Urgency: medium
Maintainer: i386 Build Daemon (x86-grnet-01) <buildd_amd64-x86-grnet-01@buildd.debian.org>
Changed-By: Christoph Goehre <chris@sigxcpu.org>
Description:
 thunderbird - mail/news client with RSS, chat and integrated spam filter suppor
Changes:
 thunderbird (1:128.7.0esr-1~deb12u1) bookworm-security; urgency=medium
 .
   * [4a9ef4c] New upstream version 128.7.0esr
     Fixed CVE issues in upstream version 128.7 (MFSA 2025-10):
     CVE-2025-1009: Use-after-free in XSLT
     CVE-2025-1010: Use-after-free in Custom Highlight
     CVE-2025-1011: A bug in WebAssembly code generation could result in a
                    crash
     CVE-2025-1012: Use-after-free during concurrent delazification
     CVE-2024-11704: Potential double-free vulnerability in PKCS#7 decryption
                     handling
     CVE-2025-1013: Potential opening of private browsing tabs in normal
                    browsing windows
     CVE-2025-1014: Certificate length was not properly checked
     CVE-2025-1015: Unsanitized address book fields
     CVE-2025-0510: Address of e-mail sender can be spoofed by malicious email
     CVE-2025-1016: Memory safety bugs fixed in Firefox 135, Thunderbird 135,
                    Firefox ESR 115.20, Firefox ESR 128.7, Thunderbird 115.20,
                    and Thunderbird 128.7
     CVE-2025-1017: Memory safety bugs fixed in Firefox 135, Thunderbird 135,
                    Firefox ESR 128.7, and Thunderbird 128.7
Checksums-Sha1:
 9e7a677a46e4169de94dea79e0c80e4081f6217b 8587888 thunderbird-dbgsym_128.7.0esr-1~deb12u1_i386.deb
 818bd9e1eca6882a7fe7e2087e148237bef08b79 20131 thunderbird_128.7.0esr-1~deb12u1_i386-buildd.buildinfo
 0b470884f15ff3524a3cc4de0f6a6f61a8655054 68231644 thunderbird_128.7.0esr-1~deb12u1_i386.deb
Checksums-Sha256:
 956601310b021bab9869b71701f35cdcaf2812d3930a34db76c6b0ce0b0ae8a5 8587888 thunderbird-dbgsym_128.7.0esr-1~deb12u1_i386.deb
 d624ecbbf5e68c14bdbad7eed321b88fe96b0f8b324278727dced3abf9f3a1d4 20131 thunderbird_128.7.0esr-1~deb12u1_i386-buildd.buildinfo
 221d6053f5f20437916d6ebdd32f7887b0545e675b3c13416dd94278ad995a62 68231644 thunderbird_128.7.0esr-1~deb12u1_i386.deb
Files:
 00292bf1669869d3dea9096301b30517 8587888 debug optional thunderbird-dbgsym_128.7.0esr-1~deb12u1_i386.deb
 5e7f9e40c4dc8fe4749da3d3ab8e840c 20131 mail optional thunderbird_128.7.0esr-1~deb12u1_i386-buildd.buildinfo
 4cc37b08cbbdfd2b89a5fe886b752ccf 68231644 mail optional thunderbird_128.7.0esr-1~deb12u1_i386.deb

-----BEGIN PGP SIGNATURE-----
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=mESW
-----END PGP SIGNATURE-----