Accepting request 423934 from mozilla:Factory

1

OBS-URL: https://build.opensuse.org/request/show/423934
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/MozillaThunderbird?expand=0&rev=169

MozillaThunderbird.changes

@@ -1,3 +1,41 @@
+-------------------------------------------------------------------
+Tue Aug 30 06:55:14 UTC 2016 - wr@rosenauer.org
+
+- update to Thunderbird 45.3.0 (boo#991809)
+  * Disposition-Notification-To could not be used in
+    mail.compose.other.header
+  * "edit as new message" on a received message pre-filled the sender
+    as the composing identity.
+  * Certain messages caused corruption of the drafts summary database.
+  security fixes:
+  * MFSA 2016-62/CVE-2016-2836
+    Miscellaneous memory safety hazards
+  * MFSA 2016-63/CVE-2016-2830 (bmo#1255270)
+    Favicon network connection can persist when page is closed
+  * MFSA 2016-64/CVE-2016-2838 (bmo#1279814)
+    Buffer overflow rendering SVG with bidirectional content
+  * MFSA 2016-65/CVE-2016-2839 (bmo#1275339)
+    Cairo rendering crash due to memory allocation issue with FFmpeg 0.10
+  * MFSA 2016-67/CVE-2016-5252 (bmo#1268854)
+    Stack underflow during 2D graphics rendering
+  * MFSA 2016-70/CVE-2016-5254 (bmo#1266963)
+    Use-after-free when using alt key and toplevel menus
+  * MFSA 2016-72/CVE-2016-5258 (bmo#1279146)
+    Use-after-free in DTLS during WebRTC session shutdown
+  * MFSA 2016-73/CVE-2016-5259 (bmo#1282992)
+    Use-after-free in service workers with nested sync events
+  * MFSA 2016-76/CVE-2016-5262 (bmo#1277475)
+    Scripts on marquee tag can execute in sandboxed iframes
+  * MFSA 2016-77/CVE-2016-2837 (bmo#1274637)
+    Buffer overflow in ClearKey Content Decryption Module (CDM)
+    during video playback
+  * MFSA 2016-78/CVE-2016-5263 (bmo#1276897)
+    Type confusion in display transformation
+  * MFSA 2016-79/CVE-2016-5264 (bmo#1286183)
+    Use-after-free when applying SVG effects
+  * MFSA 2016-80/CVE-2016-5265 (bmo#1278013)
+    Same-origin policy violation using local HTML file and saved shortcut file
+
 -------------------------------------------------------------------
 Fri Aug  5 13:47:12 UTC 2016 - pcerny@suse.com
 

MozillaThunderbird.spec

@@ -1,7 +1,7 @@
 #
 # spec file for package MozillaThunderbird
 #
-# Copyright (c) 2016 SUSE LINUX Products GmbH, Nuernberg, Germany.
+# Copyright (c) 2016 SUSE LINUX GmbH, Nuernberg, Germany.
 #               2006-2016 Wolfgang Rosenauer <wr@rosenauer.org>
 #
 # All modifications and additions to the file contributed by third parties
@@ -17,9 +17,9 @@
 #
 
 
-%define mainversion 45.2
+%define mainversion 45.3.0
 %define update_channel release
-%define releasedate 2016063000
+%define releasedate 2016082900
 
 %if %suse_version > 1310
 %define gstreamer_ver 1.0

compare-locales.tar.xz

@@ -1,3 +1,3 @@
 version https://git-lfs.github.com/spec/v1
-oid sha256:0fac3e72820af400fd061f763fb802c1b05ac7eea38a9242cafd1c48615b49d3
-size 28376
+oid sha256:ed0a9f7904561bb471254043f369497760a756015219aff092c870835e3207cf
+size 28372

create-tar.sh

@@ -2,8 +2,8 @@
 
 CHANNEL="esr45"
 BRANCH="releases/comm-$CHANNEL"
-RELEASE_TAG="THUNDERBIRD_45_2_RELEASE"
-VERSION="45.2"
+RELEASE_TAG="THUNDERBIRD_45_3_0_RELEASE"
+VERSION="45.3.0"
 
 echo "cloning $BRANCH..."
 hg clone http://hg.mozilla.org/$BRANCH thunderbird

l10n-45.2.tar.xz

@@ -1,3 +0,0 @@
-version https://git-lfs.github.com/spec/v1
-oid sha256:81a5b2074116f10028c59735e9e430e5d1f1c2c2f03b2c68ae7e6231c60a30e9
-size 24498044

l10n-45.3.0.tar.xz

@@ -0,0 +1,3 @@
+version https://git-lfs.github.com/spec/v1
+oid sha256:261a0f60fbb2120119fb2829be6903837d1cd0b4d95be42d3c81ee3854336547
+size 24490768

thunderbird-45.2-source.tar.xz

@@ -1,3 +0,0 @@
-version https://git-lfs.github.com/spec/v1
-oid sha256:38d35554536635116284387d7d855f75b70ea68ea0cbb81f67e5a4fe77299515
-size 211768108

thunderbird-45.3.0-source.tar.xz

@@ -0,0 +1,3 @@
+version https://git-lfs.github.com/spec/v1
+oid sha256:b89e767ce707b6401e09a8a9d6e08da3c1f162ae1802de83483a905d4e7fdeff
+size 211749764