From 329b61bb1889ed515b4b1208bdad5af417941545df9a28888fd2720b4b9f9498 Mon Sep 17 00:00:00 2001
From: Wolfgang Rosenauer <wolfgang@rosenauer.org>
Date: Thu, 29 Dec 2016 08:33:54 +0000
Subject: [PATCH] * The system integration dialog was shown every time when
 starting     Thunderbird   * MFSA 2016-96     CVE-2016-9899: Use-after-free
 while manipulating DOM events and                    audio elements
 (bmo#1317409)     CVE-2016-9895: CSP bypass using marquee tag (bmo#1312272)  
   CVE-2016-9897: Memory corruption in libGLES (bmo#1301381)    
 CVE-2016-9898: Use-after-free in Editor while manipulating DOM               
     subtrees (bmo#1314442)     CVE-2016-9900: Restricted external resources
 can be loaded by                    SVG images through data URLs
 (bmo#1319122)     CVE-2016-9904: Cross-origin information leak in shared
 atoms                    (bmo#1317936)     CVE-2016-9905: Crash in
 EnumerateSubDocuments (bmo#1293985)     CVE-2016-9893: Memory safety bugs
 fixed in Thunderbird 45.6

OBS-URL: https://build.opensuse.org/package/show/mozilla:Factory/MozillaThunderbird?expand=0&rev=347
---
 MozillaThunderbird.changes | 17 ++++++++++++++++-
 1 file changed, 16 insertions(+), 1 deletion(-)

diff --git a/MozillaThunderbird.changes b/MozillaThunderbird.changes
index 677e63c..602805e 100644
--- a/MozillaThunderbird.changes
+++ b/MozillaThunderbird.changes
@@ -1,7 +1,22 @@
 -------------------------------------------------------------------
-Fri Dec 16 13:06:13 UTC 2016 - wr@rosenauer.org
+Thu Dec 29 08:33:21 UTC 2016 - wr@rosenauer.org
 
 - update to Thunderbird 45.6.0 (boo#1015422)
+  * The system integration dialog was shown every time when starting
+    Thunderbird
+  * MFSA 2016-96
+    CVE-2016-9899: Use-after-free while manipulating DOM events and
+                   audio elements (bmo#1317409)
+    CVE-2016-9895: CSP bypass using marquee tag (bmo#1312272)
+    CVE-2016-9897: Memory corruption in libGLES (bmo#1301381)
+    CVE-2016-9898: Use-after-free in Editor while manipulating DOM
+                   subtrees (bmo#1314442)
+    CVE-2016-9900: Restricted external resources can be loaded by
+                   SVG images through data URLs (bmo#1319122)
+    CVE-2016-9904: Cross-origin information leak in shared atoms
+                   (bmo#1317936)
+    CVE-2016-9905: Crash in EnumerateSubDocuments (bmo#1293985)
+    CVE-2016-9893: Memory safety bugs fixed in Thunderbird 45.6
 
 -------------------------------------------------------------------
 Thu Dec  1 09:58:57 UTC 2016 - astieger@suse.com