Script 'mail_helper' called by obssrc
Hello community,
here is the log from the commit of package MozillaThunderbird for
openSUSE:Factory checked in at 2021-04-23 17:49:56
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Comparing /work/SRC/openSUSE:Factory/MozillaThunderbird (Old)
and /work/SRC/openSUSE:Factory/.MozillaThunderbird.new.12324 (New)
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "MozillaThunderbird"
Fri Apr 23 17:49:56 2021 rev:253 rq:886906 version:78.10.0
Changes:
--------
--- /work/SRC/openSUSE:Factory/MozillaThunderbird/MozillaThunderbird.changes
2021-04-15 16:56:48.254616095 +0200
+++
/work/SRC/openSUSE:Factory/.MozillaThunderbird.new.12324/MozillaThunderbird.changes
2021-04-23 17:50:04.778737850 +0200
@@ -1,0 +2,29 @@
+Sun Apr 18 07:21:01 UTC 2021 - Wolfgang Rosenauer <w...@rosenauer.org>
+
+- Mozilla Thunderbird 78.10.0
+ MFSA 2021-14 (bsc#1184960)
+ * CVE-2021-23994 (bmo#1699077)
+ Out of bound write due to lazy initialization
+ * CVE-2021-23995 (bmo#1699835)
+ Use-after-free in Responsive Design Mode
+ * CVE-2021-23998 (bmo#1667456)
+ Secure Lock icon could have been spoofed
+ * CVE-2021-23961 (bmo#1677940)
+ More internal network hosts could have been probed by a
+ malicious webpage
+ * CVE-2021-23999 (bmo#1691153)
+ Blob URLs may have been granted additional privileges
+ * CVE-2021-24002 (bmo#1702374)
+ Arbitrary FTP command execution on FTP servers using an
+ encoded URL
+ * CVE-2021-29945 (bmo#1700690)
+ Incorrect size computation in WebAssembly JIT could lead to
+ null-reads
+ * CVE-2021-29946 (bmo#1698503)
+ Port blocking could be bypassed
+ * CVE-2021-29948 (bmo#1692899)
+ Race condition when reading from disk while verifying
+ signatures
+- recommend libotr5
+
+-------------------------------------------------------------------
Old:
----
l10n-78.9.1.tar.xz
thunderbird-78.9.1.source.tar.xz
thunderbird-78.9.1.source.tar.xz.asc
New:
----
l10n-78.10.0.tar.xz
thunderbird-78.10.0.source.tar.xz
thunderbird-78.10.0.source.tar.xz.asc
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Other differences:
------------------
++++++ MozillaThunderbird.spec ++++++
--- /var/tmp/diff_new_pack.KgXFt0/_old 2021-04-23 17:50:11.282749032 +0200
+++ /var/tmp/diff_new_pack.KgXFt0/_new 2021-04-23 17:50:11.286749039 +0200
@@ -26,8 +26,8 @@
# major 69
# mainver %major.99
%define major 78
-%define mainver %major.9.1
-%define orig_version 78.9.1
+%define mainver %major.10.0
+%define orig_version 78.10.0
%define orig_suffix %{nil}
%define update_channel release
%define source_prefix thunderbird-%{orig_version}
@@ -212,6 +212,7 @@
%requires_ge mozilla-nss
%requires_ge libfreetype6
Recommends: libcanberra0
+Recommends: libotr5
Recommends: libpulse0
Requires(post): desktop-file-utils
Requires(postun):desktop-file-utils
++++++ l10n-78.9.1.tar.xz -> l10n-78.10.0.tar.xz ++++++
/work/SRC/openSUSE:Factory/MozillaThunderbird/l10n-78.9.1.tar.xz
/work/SRC/openSUSE:Factory/.MozillaThunderbird.new.12324/l10n-78.10.0.tar.xz
differ: char 26, line 1
++++++ tar_stamps ++++++
--- /var/tmp/diff_new_pack.KgXFt0/_old 2021-04-23 17:50:11.482749376 +0200
+++ /var/tmp/diff_new_pack.KgXFt0/_new 2021-04-23 17:50:11.482749376 +0200
@@ -1,10 +1,10 @@
PRODUCT="thunderbird"
CHANNEL="esr78"
-VERSION="78.9.1"
+VERSION="78.10.0"
VERSION_SUFFIX=""
-PREV_VERSION="78.9.0"
+PREV_VERSION="78.9.1"
PREV_VERSION_SUFFIX=""
#SKIP_LOCALES="" # Uncomment to skip l10n and compare-locales-generation
RELEASE_REPO="https://hg.mozilla.org/releases/comm-esr78";
-RELEASE_TAG="f3f1f4a0e32abbc74dfac8c697044c10d0d25cad"
-RELEASE_TIMESTAMP="20210406220621"
+RELEASE_TAG="ca53556517b609ca2e9a8b7578a4f4dc1273b32f"
+RELEASE_TIMESTAMP="20210415215055"
++++++ thunderbird-78.9.1.source.tar.xz -> thunderbird-78.10.0.source.tar.xz
++++++
/work/SRC/openSUSE:Factory/MozillaThunderbird/thunderbird-78.9.1.source.tar.xz
/work/SRC/openSUSE:Factory/.MozillaThunderbird.new.12324/thunderbird-78.10.0.source.tar.xz
differ: char 15, line 1
