thunderbird 1:102.10.0-1 source package in Debian

Changelog

thunderbird (1:102.10.0-1) unstable; urgency=medium

  * [8afefce] New upstream version 102.10.0
    Fixed CVE issues in upstream version 102.10 (MFSA 2023-15):
    CVE-2023-29532: Mozilla Maintenance Service Write-lock bypass
    CVE-2023-29533: Fullscreen notification obscured
    CVE-2023-1999: Double-free in libwebp
    CVE-2023-29535: Potential Memory Corruption following Garbage Collector
                    compaction
    CVE-2023-29536: Invalid free from JavaScript code
    CVE-2023-0547: Revocation status of S/Mime recipient certificates was
                   not checked
    CVE-2023-29479: Hang when processing certain OpenPGP messages
    CVE-2023-29539: Content-Disposition filename truncation leads to
                    Reflected File Download
    CVE-2023-29541: Files with malicious extensions could have been
                    downloaded unsafely on Linux
    CVE-2023-29542: Bypass of file download extension restrictions
    CVE-2023-1945: Memory Corruption in Safe Browsing Code
    CVE-2023-29548: Incorrect optimization result on ARM64
    CVE-2023-29550: Memory safety bugs fixed in Thunderbird 102.10

 -- Carsten Schoenert <email address hidden>  Mon, 17 Apr 2023 21:32:45 +0200