From 7e605499c34feeb595e63d9b30a05b76785f4d34 Mon Sep 17 00:00:00 2001
From: pkgagent <pkgagent@tencent.com>
Date: Thu, 18 Jun 2026 13:29:20 +0800
Subject: [PATCH] Update to 140.12.0 (fixes CVE-2026-12299)

---
 sources                                                   | 4 ++--
 ...patch => thunderbird-140.12.0-cargo-checksum-fix.patch | 0
 thunderbird.spec                                          | 8 ++++++--
 3 files changed, 8 insertions(+), 4 deletions(-)
 rename thunderbird-140.11.0-cargo-checksum-fix.patch => thunderbird-140.12.0-cargo-checksum-fix.patch (100%)

diff --git a/sources b/sources
index 5e032aa..5fb959d 100644
--- a/sources
+++ b/sources
@@ -1,3 +1,3 @@
 SHA512 (cbindgen-vendor.tar.xz) = 2b8db32c0bca2fa27304ee4fd3a5cc38bc43a11500b23842747813d221e55719c51cf4c0e027e41857f58ce1e283ce97b69c2c7d1eae93ecbb08c2f729e2bf55
-SHA512 (thunderbird-140.11.0esr.source.tar.xz) = bc1aa2f7e37b8272961acec1ee4774fb2036961e3f6f9e2d40ef4c5fd9935d25e55a2ac3b5a28adbbee075133bae8867b8277622089dfa9cafece3eb2c84d688
-SHA512 (thunderbird-langpacks-140.11.0.tar.xz) = a43746a717a5f2810194986cfddbe0834464052c9ac601717e3d386bdfb9229a84a0ac939ad8c429d4a18b8a0e21d26284260d86b14d3e9e7b93e7a2545141e6
+SHA512 (thunderbird-140.12.0esr.source.tar.xz) = ccbcc305d5cc10aa01aa5071f40a21b42de0300d9ad6763c4fc4ad71bf797566f2380c8fd84d46952e7c4eae0a35905173e6906b108192833660eae2ceea7b51
+SHA512 (thunderbird-langpacks-140.12.0.tar.xz) = 1f216fbaf9da8a027ddc941e0dd55a3eca6c4cc0bbc6d5a48c5ec298af31c2362429e619a2ee900851cbdc26313579628d7a474b4df881dbb9f6fea0b351f720
diff --git a/thunderbird-140.11.0-cargo-checksum-fix.patch b/thunderbird-140.12.0-cargo-checksum-fix.patch
similarity index 100%
rename from thunderbird-140.11.0-cargo-checksum-fix.patch
rename to thunderbird-140.12.0-cargo-checksum-fix.patch
diff --git a/thunderbird.spec b/thunderbird.spec
index d547aa1..c24884d 100644
--- a/thunderbird.spec
+++ b/thunderbird.spec
@@ -43,7 +43,7 @@
 
 Summary:        Mozilla Thunderbird mail/newsgroup client
 Name:           thunderbird
-Version:        140.11.0
+Version:        140.12.0
 Release:        1%{?dist}
 URL:            http://www.mozilla.org/projects/thunderbird/
 License:        MPL-2.0 OR GPL-2.0-or-later OR LGPL-2.0-or-later
@@ -94,7 +94,7 @@ Patch4016:	      av1-else-condition-add.patch
 Patch4017:        exceptionHandled-for-IO-error-processhandler.patch
 Patch4018:        build-annobin-fix.patch
 Patch4019:        build-min-lexical.patch
-Patch4020:        thunderbird-140.11.0-cargo-checksum-fix.patch
+Patch4020:        thunderbird-140.12.0-cargo-checksum-fix.patch
 
 Patch5000:        0001-thunderbird-128.14.0-add-support-for-loongarch64.patch
 
@@ -539,6 +539,10 @@ gtk-update-icon-cache %{_datadir}/icons/hicolor &>/dev/null || :
 
 
 %changelog
+* Thu Jun 18 2026 PkgAgent Robot <pkgagent@opencloudos.tech> - 140.12.0-1
+- [Type] security
+- [DESC] Update to 140.12.0 (fixes CVE-2026-12299)
+
 * Fri May 22 2026 PkgAgent Robot <pkgagent@opencloudos.tech> - 140.11.0-1
 - [Type] security
 - [DESC] Update to 140.11.0 (fixes CVE-2026-8950 CVE-2026-8947)
-- 
Gitee