Hello Emilio, hi Moritz, Am 08.07.2018 um 12:01 schrieb Emilio Pozuelo Monfort: > On 07/07/18 11:44, Carsten Schoenert wrote: >> Hello Emilio and Security-Team, >> >> while preparing the stretch-security package for Thunderbird upstream >> has announced just right now via the private driver mailing list to stop >> the current automatic updates for 52.9.0 due a critical issue [1] that >> can bring in some data loss while working with attachments. So I decided >> to open a bug [2] with severity grave against the version of thunderbird >> in unstable to prevent the migration to testing for now. >> >> But this means also we shouldn't deliver version 52.9.0 in any -security >> release for now. So I will not upload my prepared packages for >> stretch-security as I think Mozilla will provide a fix for the new issue >> within the next days. Or there are other objections? > > Yes, let's postpone this until there is a fix. We don't want to introduce a > data > corruption bug in a security update.
looks like Mozilla got this handled gladly really quick. I uploaded 52.9.1 to unstable on Tuesday and will start to prepare updated packages for stretch-security later this afternoon. Moritz, still o.k. I'm uploading the update once I'm ready? I expect to got this finished today too as it's mostly just a merge with a rebuild for stretch and the previous packages 52.9.0 already have been working on my stretch machine. -- Regards Carsten Schoenert
