From d7db4b785d10b57e6e5f2cf3707f7284e6848de4fb2f790209b34e95068b2a20 Mon Sep 17 00:00:00 2001
From: Wolfgang Rosenauer <wolfgang@rosenauer.org>
Date: Tue, 29 Jan 2019 21:58:55 +0000
Subject: [PATCH] MFSA 2019-03 (bsc#1122983)   * CVE-2018-18500 bmo#1510114    
 Use-after-free parsing HTML5 stream   * CVE-2018-18505 bmo#1497749    
 Privilege escalation through IPC channel messages   * CVE-2016-5824
 bmo#1275400     DoS (use-after-free) via a crafted ics file   *
 CVE-2018-18501 bmo#1512450 bmo#1517542 bmo#1513201 bmo#1460619    
 bmo#1502871 bmo#1516738 bmo#1516514     Memory safety bugs fixed in Firefox
 65 and Firefox ESR 60.5

OBS-URL: https://build.opensuse.org/package/show/mozilla:Factory/MozillaThunderbird?expand=0&rev=452
---
 MozillaThunderbird.changes | 10 ++++++++++
 1 file changed, 10 insertions(+)

diff --git a/MozillaThunderbird.changes b/MozillaThunderbird.changes
index 2f7463d..9cd2436 100644
--- a/MozillaThunderbird.changes
+++ b/MozillaThunderbird.changes
@@ -14,6 +14,16 @@ Fri Jan 25 14:40:21 UTC 2019 - Wolfgang Rosenauer <wr@rosenauer.org>
     protocol.
   * Thunderbird now compatible with other WebExtension-based
     FileLink add-ons like the Dropbox add-on
+  MFSA 2019-03 (bsc#1122983)
+  * CVE-2018-18500 bmo#1510114
+    Use-after-free parsing HTML5 stream
+  * CVE-2018-18505 bmo#1497749
+    Privilege escalation through IPC channel messages
+  * CVE-2016-5824 bmo#1275400
+    DoS (use-after-free) via a crafted ics file
+  * CVE-2018-18501 bmo#1512450 bmo#1517542 bmo#1513201 bmo#1460619
+    bmo#1502871 bmo#1516738 bmo#1516514
+    Memory safety bugs fixed in Firefox 65 and Firefox ESR 60.5
 - requires NSS 3.36.7
 - removed obsolete patch
   mozilla-no-stdcxx-check.patch