- Mozilla Thunderbird 102.11.0

* https://www.thunderbird.net/en-US/thunderbird/102.11.0/releasenotes
  MFSA 2023-18 (bsc#1211175)
  * CVE-2023-32205 (bmo#1753339, bmo#1753341)
    Browser prompts could have been obscured by popups
  * CVE-2023-32206 (bmo#1824892)
    Crash in RLBox Expat driver
  * CVE-2023-32207 (bmo#1826116)
    Potential permissions request bypass via clickjacking
  * CVE-2023-32211 (bmo#1823379)
    Content process crash due to invalid wasm code
  * CVE-2023-32212 (bmo#1826622)
    Potential spoof due to obscured address bar
  * CVE-2023-32213 (bmo#1826666)
    Potential memory corruption in FileReader::DoReadData()
  * CVE-2023-32214 (bmo#1828716)
    Potential DoS via exposed protocol handlers
  * CVE-2023-32215 (bmo#1540883, bmo#1751943, bmo#1814856,
    bmo#1820210, bmo#1821480, bmo#1827019, bmo#1827024, bmo#1827144,
    bmo#1827359, bmo#1830186)
    Memory safety bugs fixed in Firefox 113 and Firefox ESR 102.11

OBS-URL: https://build.opensuse.org/package/show/mozilla:Factory/MozillaThunderbird?expand=0&rev=701

MozillaThunderbird.changes

@@ -1,3 +1,28 @@
+-------------------------------------------------------------------
+Thu May 11 06:45:57 UTC 2023 - Wolfgang Rosenauer <wr@rosenauer.org>
+
+- Mozilla Thunderbird 102.11.0
+  * https://www.thunderbird.net/en-US/thunderbird/102.11.0/releasenotes
+  MFSA 2023-18 (bsc#1211175)
+  * CVE-2023-32205 (bmo#1753339, bmo#1753341)
+    Browser prompts could have been obscured by popups
+  * CVE-2023-32206 (bmo#1824892)
+    Crash in RLBox Expat driver
+  * CVE-2023-32207 (bmo#1826116)
+    Potential permissions request bypass via clickjacking
+  * CVE-2023-32211 (bmo#1823379)
+    Content process crash due to invalid wasm code
+  * CVE-2023-32212 (bmo#1826622)
+    Potential spoof due to obscured address bar
+  * CVE-2023-32213 (bmo#1826666)
+    Potential memory corruption in FileReader::DoReadData()
+  * CVE-2023-32214 (bmo#1828716)
+    Potential DoS via exposed protocol handlers
+  * CVE-2023-32215 (bmo#1540883, bmo#1751943, bmo#1814856,
+    bmo#1820210, bmo#1821480, bmo#1827019, bmo#1827024, bmo#1827144,
+    bmo#1827359, bmo#1830186)
+    Memory safety bugs fixed in Firefox 113 and Firefox ESR 102.11
+
 -------------------------------------------------------------------
 Sun Apr 23 07:54:15 UTC 2023 - Wolfgang Rosenauer <wr@rosenauer.org>
 

MozillaThunderbird.spec

@@ -29,8 +29,8 @@
 # major 69
 # mainver %major.99
 %define major          102
-%define mainver        %major.10.1
+%define mainver        %major.11.0
-%define orig_version   102.10.1
+%define orig_version   102.11.0
 %define orig_suffix    %{nil}
 %define update_channel release
 %define source_prefix  thunderbird-%{orig_version}

tar_stamps

@@ -1,10 +1,10 @@
 PRODUCT="thunderbird"
 CHANNEL="esr102"
-VERSION="102.10.1"
+VERSION="102.11.0"
 VERSION_SUFFIX=""
-PREV_VERSION="102.10.0"
+PREV_VERSION="102.10.1"
 PREV_VERSION_SUFFIX=""
 #SKIP_LOCALES="" # Uncomment to skip l10n and compare-locales-generation
 RELEASE_REPO="https://hg.mozilla.org/releases/comm-esr102"
-RELEASE_TAG="6eabe0915354d878fe93e2b02547cebe83f1fd6d"
+RELEASE_TAG="e075eaac980f3465ce15797842d675a5e9fa9085"
-RELEASE_TIMESTAMP="20230421163959"
+RELEASE_TIMESTAMP="20230503190012"

thunderbird-102.10.1.source.tar.xz

@@ -1,3 +0,0 @@
-version https://git-lfs.github.com/spec/v1
-oid sha256:39e8714c162f05955844606583106db9b314eee1a58cb8ad504e1836031916e1
-size 506975996

thunderbird-102.10.1.source.tar.xz.asc

@@ -1,16 +0,0 @@
------BEGIN PGP SIGNATURE-----
-
-iQIzBAABCgAdFiEEQ2D+IQnEl2MYb44h6+QekPbxL20FAmRC8FcACgkQ6+QekPbx
-L22ZWxAAiT1HuDKgomwn/fTp2d6hAIgaZOi0gERleDfzcbRMTa2+vLiPHka7YHdt
-h7qfeCW5cYS/ldxGq2toB7/+h/W1ZSPlFFO77j2ehPFK/Tc3TJaF+r4C3OW7F8E9
-mpOG77zHIZf6S6RBOSwoNlkqhypmBolB5rZQXlHUpppXIWiOyCiJLI/oXcvbKYLp
-J3XTKpE3kPR1SQFxx/pQIK95mhxWoJzrTVdxjPy8wNmSWG9pWKERE8J6JYj9hYK1
-arine8fLGH7BhCCNcQmVTRmbI8urcXEf55NmIrhjUrPU1HPhRtMnk6MNnbuwwfZt
-/wz+IMBiWDoWx8RDBIfgSZ3R2SmnWUehj+vEwhR1aQT/WXxEtPXSmU38AhqJwTBM
-P4iWqkWAYqRID9IPgZzTBuNahkC4t22kXQ06XEhoHH8WtjXl0FNUYoCjIhbdpdlE
-Irpa71cQw7GRGPNr8nrhrpnbbkjlQp8yoi6TdkivpkmfQcyAI/uC2sy0arIjG3Dg
-nRd6ffLyM52XI63nGiSOwnb/XeGbD8CxBGryl+7TYQCpmAVKyWS+Fa+aYJgTltV/
-7jww23aKQ8rUuQ5FTZxDNxFfsupZZNKOjF7xaS1MWslBS41cmrwasMHhAxXvO3Bs
-+X9fMD6VERB7fuDGPgnp8tZPU4j376alLBm9kVPTI6lHInKBIWI=
-=Z1zX
------END PGP SIGNATURE-----

thunderbird-102.11.0.source.tar.xz

@@ -0,0 +1,3 @@
+version https://git-lfs.github.com/spec/v1
+oid sha256:de73803f8a0bb4037da0a50748de41761939cab9cc924d93bd08e142610a64fa
+size 509580260

thunderbird-102.11.0.source.tar.xz.asc

@@ -0,0 +1,16 @@
+-----BEGIN PGP SIGNATURE-----
+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+=YfnD
+-----END PGP SIGNATURE-----