[Git][security-tracker-team/security-tracker][master] thunderbird DSA

Moritz Muehlenhoff (@jmm) jmm at debian.org
Sun Jul 6 19:22:57 BST 2025 


Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
744acbf0 by Moritz Mühlenhoff at 2025-07-06T20:21:34+02:00
thunderbird DSA

- - - - -


3 changed files:

- data/CVE/list
- data/DSA/list
- data/dsa-needed.txt


Changes:

=====================================
data/CVE/list
=====================================
@@ -7580,7 +7580,6 @@ CVE-2024-1243 (Improper input validation in the Wazuh agent for Windows prior to
 	NOT-FOR-US: Wazuh agent for Windows
 CVE-2025-5986 (A crafted HTML email using mailbox:/// links can trigger automatic, un ...)
 	- thunderbird 1:128.12.0esr-1
-	[bookworm] - thunderbird <postponed> (Minor issue, fix along with June update)
 	[bullseye] - thunderbird <postponed> (Minor issue; can be fixed in next update)
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2025-49/#CVE-2025-5986
 CVE-2025-49710 (An integer overflow was present in `OrderedHashTable` used by the Java ...)


=====================================
data/DSA/list
=====================================
@@ -1,3 +1,6 @@
+[06 Jul 2025] DSA-5959-1 thunderbird - security update
+	{CVE-2025-5986 CVE-2025-6424 CVE-2025-6425 CVE-2025-6429 CVE-2025-6430}
+	[bookworm] - thunderbird 1:128.12.0esr-1~deb12u1
 [04 Jul 2025] DSA-5958-1 jpeg-xl - security update
 	{CVE-2023-0645 CVE-2023-35790 CVE-2024-11403 CVE-2024-11498}
 	[bookworm] - jpeg-xl 0.7.0-10+deb12u1


=====================================
data/dsa-needed.txt
=====================================
@@ -64,8 +64,6 @@ sogo
 --
 sympa
 --
-thunderbird (jmm)
---
 tomcat10
 --
 wordpress



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/744acbf02739791bc2fd5f8a2a2de6024124354e

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/744acbf02739791bc2fd5f8a2a2de6024124354e
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250706/8d5c1dac/attachment-0001.htm>

More information about the debian-security-tracker-commits mailing list