From e77528174a62806e811e43592b6a03a86f65312e42ed68d07af39366aad58d68 Mon Sep 17 00:00:00 2001
From: Wolfgang Rosenauer <wolfgang@rosenauer.org>
Date: Tue, 30 Aug 2016 14:03:54 +0000
Subject: [PATCH 1/2] - update to Thunderbird 45.3 (boo#991809)   *
 Disposition-Notification-To could not be used in    
 mail.compose.other.header   * "edit as new message" on a received message
 pre-filled the sender     as the composing identity.   * Certain messages
 caused corruption of the drafts summary database.   security fixes:   * MFSA
 2016-62/CVE-2016-2836     Miscellaneous memory safety hazards   * MFSA
 2016-63/CVE-2016-2830 (bmo#1255270)     Favicon network connection can
 persist when page is closed   * MFSA 2016-64/CVE-2016-2838 (bmo#1279814)    
 Buffer overflow rendering SVG with bidirectional content   * MFSA
 2016-65/CVE-2016-2839 (bmo#1275339)     Cairo rendering crash due to memory
 allocation issue with FFmpeg 0.10   * MFSA 2016-67/CVE-2016-5252
 (bmo#1268854)     Stack underflow during 2D graphics rendering   * MFSA
 2016-70/CVE-2016-5254 (bmo#1266963)     Use-after-free when using alt key and
 toplevel menus   * MFSA 2016-72/CVE-2016-5258 (bmo#1279146)    
 Use-after-free in DTLS during WebRTC session shutdown   * MFSA
 2016-73/CVE-2016-5259 (bmo#1282992)     Use-after-free in service workers
 with nested sync events   * MFSA 2016-76/CVE-2016-5262 (bmo#1277475)    
 Scripts on marquee tag can execute in sandboxed iframes   * MFSA
 2016-77/CVE-2016-2837 (bmo#1274637)     Buffer overflow in ClearKey Content
 Decryption Module (CDM)     during video playback   * MFSA
 2016-78/CVE-2016-5263 (bmo#1276897)     Type confusion in display
 transformation

OBS-URL: https://build.opensuse.org/package/show/mozilla:Factory/MozillaThunderbird?expand=0&rev=336
---
 MozillaThunderbird.changes     | 38 ++++++++++++++++++++++++++++++++++
 MozillaThunderbird.spec        |  6 +++---
 compare-locales.tar.xz         |  4 ++--
 create-tar.sh                  |  4 ++--
 l10n-45.2.tar.xz               |  3 ---
 l10n-45.3.tar.xz               |  3 +++
 thunderbird-45.2-source.tar.xz |  3 ---
 thunderbird-45.3-source.tar.xz |  3 +++
 8 files changed, 51 insertions(+), 13 deletions(-)
 delete mode 100644 l10n-45.2.tar.xz
 create mode 100644 l10n-45.3.tar.xz
 delete mode 100644 thunderbird-45.2-source.tar.xz
 create mode 100644 thunderbird-45.3-source.tar.xz

diff --git a/MozillaThunderbird.changes b/MozillaThunderbird.changes
index 0cf26da..3f36bfc 100644
--- a/MozillaThunderbird.changes
+++ b/MozillaThunderbird.changes
@@ -1,3 +1,41 @@
+-------------------------------------------------------------------
+Tue Aug 30 06:55:14 UTC 2016 - wr@rosenauer.org
+
+- update to Thunderbird 45.3 (boo#991809)
+  * Disposition-Notification-To could not be used in
+    mail.compose.other.header
+  * "edit as new message" on a received message pre-filled the sender
+    as the composing identity.
+  * Certain messages caused corruption of the drafts summary database.
+  security fixes:
+  * MFSA 2016-62/CVE-2016-2836
+    Miscellaneous memory safety hazards
+  * MFSA 2016-63/CVE-2016-2830 (bmo#1255270)
+    Favicon network connection can persist when page is closed
+  * MFSA 2016-64/CVE-2016-2838 (bmo#1279814)
+    Buffer overflow rendering SVG with bidirectional content
+  * MFSA 2016-65/CVE-2016-2839 (bmo#1275339)
+    Cairo rendering crash due to memory allocation issue with FFmpeg 0.10
+  * MFSA 2016-67/CVE-2016-5252 (bmo#1268854)
+    Stack underflow during 2D graphics rendering
+  * MFSA 2016-70/CVE-2016-5254 (bmo#1266963)
+    Use-after-free when using alt key and toplevel menus
+  * MFSA 2016-72/CVE-2016-5258 (bmo#1279146)
+    Use-after-free in DTLS during WebRTC session shutdown
+  * MFSA 2016-73/CVE-2016-5259 (bmo#1282992)
+    Use-after-free in service workers with nested sync events
+  * MFSA 2016-76/CVE-2016-5262 (bmo#1277475)
+    Scripts on marquee tag can execute in sandboxed iframes
+  * MFSA 2016-77/CVE-2016-2837 (bmo#1274637)
+    Buffer overflow in ClearKey Content Decryption Module (CDM)
+    during video playback
+  * MFSA 2016-78/CVE-2016-5263 (bmo#1276897)
+    Type confusion in display transformation
+  * MFSA 2016-79/CVE-2016-5264 (bmo#1286183)
+    Use-after-free when applying SVG effects
+  * MFSA 2016-80/CVE-2016-5265 (bmo#1278013)
+    Same-origin policy violation using local HTML file and saved shortcut file
+
 -------------------------------------------------------------------
 Fri Aug  5 13:47:12 UTC 2016 - pcerny@suse.com
 
diff --git a/MozillaThunderbird.spec b/MozillaThunderbird.spec
index d0949a5..58b3d1d 100644
--- a/MozillaThunderbird.spec
+++ b/MozillaThunderbird.spec
@@ -1,7 +1,7 @@
 #
 # spec file for package MozillaThunderbird
 #
-# Copyright (c) 2016 SUSE LINUX Products GmbH, Nuernberg, Germany.
+# Copyright (c) 2016 SUSE LINUX GmbH, Nuernberg, Germany.
 #               2006-2016 Wolfgang Rosenauer <wr@rosenauer.org>
 #
 # All modifications and additions to the file contributed by third parties
@@ -17,9 +17,9 @@
 #
 
 
-%define mainversion 45.2
+%define mainversion 45.3
 %define update_channel release
-%define releasedate 2016063000
+%define releasedate 2016082900
 
 %if %suse_version > 1310
 %define gstreamer_ver 1.0
diff --git a/compare-locales.tar.xz b/compare-locales.tar.xz
index ea59240..ec175bc 100644
--- a/compare-locales.tar.xz
+++ b/compare-locales.tar.xz
@@ -1,3 +1,3 @@
 version https://git-lfs.github.com/spec/v1
-oid sha256:0fac3e72820af400fd061f763fb802c1b05ac7eea38a9242cafd1c48615b49d3
-size 28376
+oid sha256:ed0a9f7904561bb471254043f369497760a756015219aff092c870835e3207cf
+size 28372
diff --git a/create-tar.sh b/create-tar.sh
index afab80b..6403d6b 100644
--- a/create-tar.sh
+++ b/create-tar.sh
@@ -2,8 +2,8 @@
 
 CHANNEL="esr45"
 BRANCH="releases/comm-$CHANNEL"
-RELEASE_TAG="THUNDERBIRD_45_2_RELEASE"
-VERSION="45.2"
+RELEASE_TAG="THUNDERBIRD_45_3_0_RELEASE"
+VERSION="45.3"
 
 echo "cloning $BRANCH..."
 hg clone http://hg.mozilla.org/$BRANCH thunderbird
diff --git a/l10n-45.2.tar.xz b/l10n-45.2.tar.xz
deleted file mode 100644
index 7735f3e..0000000
--- a/l10n-45.2.tar.xz
+++ /dev/null
@@ -1,3 +0,0 @@
-version https://git-lfs.github.com/spec/v1
-oid sha256:81a5b2074116f10028c59735e9e430e5d1f1c2c2f03b2c68ae7e6231c60a30e9
-size 24498044
diff --git a/l10n-45.3.tar.xz b/l10n-45.3.tar.xz
new file mode 100644
index 0000000..3204ded
--- /dev/null
+++ b/l10n-45.3.tar.xz
@@ -0,0 +1,3 @@
+version https://git-lfs.github.com/spec/v1
+oid sha256:261a0f60fbb2120119fb2829be6903837d1cd0b4d95be42d3c81ee3854336547
+size 24490768
diff --git a/thunderbird-45.2-source.tar.xz b/thunderbird-45.2-source.tar.xz
deleted file mode 100644
index 59cd0b0..0000000
--- a/thunderbird-45.2-source.tar.xz
+++ /dev/null
@@ -1,3 +0,0 @@
-version https://git-lfs.github.com/spec/v1
-oid sha256:38d35554536635116284387d7d855f75b70ea68ea0cbb81f67e5a4fe77299515
-size 211768108
diff --git a/thunderbird-45.3-source.tar.xz b/thunderbird-45.3-source.tar.xz
new file mode 100644
index 0000000..24acec7
--- /dev/null
+++ b/thunderbird-45.3-source.tar.xz
@@ -0,0 +1,3 @@
+version https://git-lfs.github.com/spec/v1
+oid sha256:b89e767ce707b6401e09a8a9d6e08da3c1f162ae1802de83483a905d4e7fdeff
+size 211749764

From f478d3d254959992917067cece02e64a980962bbf26f85cf384def26fee7561f Mon Sep 17 00:00:00 2001
From: Wolfgang Rosenauer <wolfgang@rosenauer.org>
Date: Wed, 31 Aug 2016 06:57:06 +0000
Subject: [PATCH 2/2] Accepting request 423866 from
 home:AndreasStieger:branches:mozilla:Factory

Use upstream versioning scheme - append .0

OBS-URL: https://build.opensuse.org/request/show/423866
OBS-URL: https://build.opensuse.org/package/show/mozilla:Factory/MozillaThunderbird?expand=0&rev=337
---
 MozillaThunderbird.changes                                      | 2 +-
 MozillaThunderbird.spec                                         | 2 +-
 create-tar.sh                                                   | 2 +-
 l10n-45.3.tar.xz => l10n-45.3.0.tar.xz                          | 0
 ...rbird-45.3-source.tar.xz => thunderbird-45.3.0-source.tar.xz | 0
 5 files changed, 3 insertions(+), 3 deletions(-)
 rename l10n-45.3.tar.xz => l10n-45.3.0.tar.xz (100%)
 rename thunderbird-45.3-source.tar.xz => thunderbird-45.3.0-source.tar.xz (100%)

diff --git a/MozillaThunderbird.changes b/MozillaThunderbird.changes
index 3f36bfc..bc02f37 100644
--- a/MozillaThunderbird.changes
+++ b/MozillaThunderbird.changes
@@ -1,7 +1,7 @@
 -------------------------------------------------------------------
 Tue Aug 30 06:55:14 UTC 2016 - wr@rosenauer.org
 
-- update to Thunderbird 45.3 (boo#991809)
+- update to Thunderbird 45.3.0 (boo#991809)
   * Disposition-Notification-To could not be used in
     mail.compose.other.header
   * "edit as new message" on a received message pre-filled the sender
diff --git a/MozillaThunderbird.spec b/MozillaThunderbird.spec
index 58b3d1d..701bc44 100644
--- a/MozillaThunderbird.spec
+++ b/MozillaThunderbird.spec
@@ -17,7 +17,7 @@
 #
 
 
-%define mainversion 45.3
+%define mainversion 45.3.0
 %define update_channel release
 %define releasedate 2016082900
 
diff --git a/create-tar.sh b/create-tar.sh
index 6403d6b..5079d4c 100644
--- a/create-tar.sh
+++ b/create-tar.sh
@@ -3,7 +3,7 @@
 CHANNEL="esr45"
 BRANCH="releases/comm-$CHANNEL"
 RELEASE_TAG="THUNDERBIRD_45_3_0_RELEASE"
-VERSION="45.3"
+VERSION="45.3.0"
 
 echo "cloning $BRANCH..."
 hg clone http://hg.mozilla.org/$BRANCH thunderbird
diff --git a/l10n-45.3.tar.xz b/l10n-45.3.0.tar.xz
similarity index 100%
rename from l10n-45.3.tar.xz
rename to l10n-45.3.0.tar.xz
diff --git a/thunderbird-45.3-source.tar.xz b/thunderbird-45.3.0-source.tar.xz
similarity index 100%
rename from thunderbird-45.3-source.tar.xz
rename to thunderbird-45.3.0-source.tar.xz