Security update for MozillaThunderbird

openSUSE_Backports_SLE-16.0_PullRequest_196 Security update for MozillaThunderbird important openSUSE Backports SLE-16.0 PullRequest 196 This update for MozillaThunderbird fixes the following issues: Changes in MozillaThunderbird: Mozilla Thunderbird 140.3.0 ESR: * Right-clicking 'List-ID' -> 'Unsubscribe' created double encoded draft subject * Thunderbird could crash on startup * Thunderbird could crash when importing mail * Opening Website header link in RSS feed incorrectly re-encoded URL parameters MFSA 2025-78 (bsc#1249391) * CVE-2025-10527 Sandbox escape due to use-after-free in the Graphics: Canvas2D component * CVE-2025-10528 Sandbox escape due to undefined behavior, invalid pointer in the Graphics: Canvas2D component * CVE-2025-10529 Same-origin policy bypass in the Layout component * CVE-2025-10532 Incorrect boundary conditions in the JavaScript: GC component * CVE-2025-10533 Integer overflow in the SVG component * CVE-2025-10536 Information disclosure in the Networking: Cache component * CVE-2025-10537 Memory safety bugs fixed in Firefox ESR 140.3, Thunderbird ESR 140.3, Firefox 143 and Thunderbird 143 MozillaThunderbird-140.3.0-bp160.999999.1.1.src.rpm MozillaThunderbird-140.3.0-bp160.999999.1.1.x86_64.rpm MozillaThunderbird-debuginfo-140.3.0-bp160.999999.1.1.x86_64.rpm MozillaThunderbird-debugsource-140.3.0-bp160.999999.1.1.x86_64.rpm MozillaThunderbird-openpgp-librnp-140.3.0-bp160.999999.1.1.x86_64.rpm MozillaThunderbird-openpgp-librnp-debuginfo-140.3.0-bp160.999999.1.1.x86_64.rpm MozillaThunderbird-translations-common-140.3.0-bp160.999999.1.1.x86_64.rpm MozillaThunderbird-translations-other-140.3.0-bp160.999999.1.1.x86_64.rpm openSUSE_Backports_SLE-16.0_PullRequest_196 Security update for MozillaThunderbird important openSUSE Backports SLE-16.0 PullRequest 196 This update for MozillaThunderbird fixes the following issues: Changes in MozillaThunderbird: Mozilla Thunderbird 140.3.0 ESR: * Right-clicking 'List-ID' -> 'Unsubscribe' created double encoded draft subject * Thunderbird could crash on startup * Thunderbird could crash when importing mail * Opening Website header link in RSS feed incorrectly re-encoded URL parameters MFSA 2025-78 (bsc#1249391) * CVE-2025-10527 Sandbox escape due to use-after-free in the Graphics: Canvas2D component * CVE-2025-10528 Sandbox escape due to undefined behavior, invalid pointer in the Graphics: Canvas2D component * CVE-2025-10529 Same-origin policy bypass in the Layout component * CVE-2025-10532 Incorrect boundary conditions in the JavaScript: GC component * CVE-2025-10533 Integer overflow in the SVG component * CVE-2025-10536 Information disclosure in the Networking: Cache component * CVE-2025-10537 Memory safety bugs fixed in Firefox ESR 140.3, Thunderbird ESR 140.3, Firefox 143 and Thunderbird 143 MozillaThunderbird-140.3.0-bp160.999999.1.1.aarch64.rpm MozillaThunderbird-140.3.0-bp160.999999.1.1.src.rpm MozillaThunderbird-debuginfo-140.3.0-bp160.999999.1.1.aarch64.rpm MozillaThunderbird-debugsource-140.3.0-bp160.999999.1.1.aarch64.rpm MozillaThunderbird-openpgp-librnp-140.3.0-bp160.999999.1.1.aarch64.rpm MozillaThunderbird-openpgp-librnp-debuginfo-140.3.0-bp160.999999.1.1.aarch64.rpm MozillaThunderbird-translations-common-140.3.0-bp160.999999.1.1.aarch64.rpm MozillaThunderbird-translations-other-140.3.0-bp160.999999.1.1.aarch64.rpm