ChangeLog for: 2025-05-28 22:50:43

d/automake-1.18-noarch-1.txz:  Upgraded.
d/tree-sitter-0.25.5-x86_64-1.txz:  Upgraded.
l/mozilla-nss-3.112-x86_64-1.txz:  Upgraded.
n/curl-8.14.0-x86_64-1.txz:  Upgraded.
  This update fixes security issues:
  No QUIC certificate pinning with wolfSSL.
  QUIC certificate check skip with wolfSSL.
  Please note that curl can be built to use one out of twelve different TLS
  libraries. The selection is done both at build-time and also optionally at
  runtime. This vulnerability only affects curl made to use this specific TLS
  (wolfSSL) backend.
  For more information, see:
    https://curl.se/docs/CVE-2025-5025.html
    https://curl.se/docs/CVE-2025-4947.html
    https://www.cve.org/CVERecord?id=CVE-2025-5025
    https://www.cve.org/CVERecord?id=CVE-2025-4947
  (* Security fix *)
n/nghttp3-1.10.1-x86_64-1.txz:  Upgraded.
x/marisa-0.3.0-x86_64-1.txz:  Upgraded.
xap/mozilla-thunderbird-128.11.0esr-x86_64-1.txz:  Upgraded.
  This release contains security fixes and improvements.
  For more information, see:
    https://www.mozilla.org/en-US/thunderbird/128.11.0esr/releasenotes/
    https://www.mozilla.org/en-US/security/advisories/mfsa2025-46/
    https://www.cve.org/CVERecord?id=CVE-2025-5262
    https://www.cve.org/CVERecord?id=CVE-2025-5263
    https://www.cve.org/CVERecord?id=CVE-2025-5264
    https://www.cve.org/CVERecord?id=CVE-2025-5265
    https://www.cve.org/CVERecord?id=CVE-2025-5266
    https://www.cve.org/CVERecord?id=CVE-2025-5267
    https://www.cve.org/CVERecord?id=CVE-2025-5268
    https://www.cve.org/CVERecord?id=CVE-2025-5269
  (* Security fix *)