Bug#930550: marked as done (unblock: thunderbird/1:60.7.1-1)

["Debian Bug Tracking System" <owner@bugs.debian.org>]

Your message dated Sat, 15 Jun 2019 11:32:20 +0000
with message-id <E1hc6uy-0004e9-HC@respighi.debian.org>
and subject line unblock thunderbird
has caused the Debian Bug report #930550,
regarding unblock: thunderbird/1:60.7.1-1
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact owner@bugs.debian.org
immediately.)


-- 
930550: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=930550
Debian Bug Tracking System
Contact owner@bugs.debian.org with problems

--- Begin Message ---

• To: Debian Bug Tracking System <submit@bugs.debian.org>
• Subject: unblock: thunderbird/1:60.7.1-1
• From: Carsten Schoenert <c.schoenert@t-online.de>
• Date: Sat, 15 Jun 2019 10:11:13 +0200
• Message-id: <[🔎] 156058627338.26222.785732233771181419.reportbug@x260.cruise.homelinux.net>

Package: release.debian.org
Severity: normal
User: release.debian.org@packages.debian.org
Usertags: unblock

Please unblock package thunderbird

The release of an updated Thunderbird package by Mozilla was needed due
found CVE issues.

There are no changes did happen to the packaging thunderbird itself, it
was only necessary to import the new sources and start a rebuild. The
modification within the debian folder are really small and simple.

$ diff -Naur thunderbird-60.7.0/debian/ thunderbird-60.7.1/debian/
diff -puNr -Naur thunderbird-60.7.0/debian/changelog thunderbird-60.7.1/debian/changelog
--- thunderbird-60.7.0/debian/changelog	2019-06-15 10:00:28.591606482 +0200
+++ thunderbird-60.7.1/debian/changelog	2019-06-15 10:02:39.604085695 +0200
@@ -1,3 +1,14 @@
+thunderbird (1:60.7.1-1) unstable; urgency=high
+
+  * [f791dee] New upstream version 60.7.1
+    Fixed CVE issues in upstream version 60.7.1 (MFSA 2019-17)
+    CVE-2019-11703: Heap buffer overflow in icalparser.c
+    CVE-2019-11704: Heap buffer overflow in icalvalue.c
+    CVE-2019-11705: Stack buffer overflow in icalrecur.c
+    CVE-2019-11706: Type confusion in icalproperty.c
+
+ -- Carsten Schoenert <c.schoenert@t-online.de>  Fri, 14 Jun 2019 07:25:35 +0200
+
 thunderbird (1:60.7.0-1) unstable; urgency=medium
 
   * [f6dd130] New upstream version 60.7.0

So please consider to unblock the thunderbird package 1:60.7.1-1.

unblock thunderbird/1:60.7.1-1

-- System Information:
Debian Release: 10.0
  APT prefers testing
  APT policy: (500, 'testing'), (1, 'experimental')
Architecture: amd64 (x86_64)
Foreign Architectures: i386, aarch64, arm64

Kernel: Linux 4.19.0-2-amd64 (SMP w/4 CPU cores)
Locale: LANG=de_DE.UTF-8, LC_CTYPE=de_DE.UTF-8 (charmap=UTF-8), LANGUAGE=de_DE.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)
LSM: AppArmor: enabled

--- End Message ---

--- Begin Message ---

• To: 930550-done@bugs.debian.org
• Subject: unblock thunderbird
• From: Ivo De Decker <ivodd@respighi.debian.org>
• Date: Sat, 15 Jun 2019 11:32:20 +0000
• Message-id: <E1hc6uy-0004e9-HC@respighi.debian.org>

Unblocked thunderbird.

--- End Message ---