From b9267c0556cc8134abb82531432735b2668fa843 Mon Sep 17 00:00:00 2001
From: Martin Weinelt <hexa@darmstadt.ccc.de>
Date: Tue, 10 Dec 2024 02:25:06 +0100
Subject: [PATCH 1/2] thunderbird-latest-unwrapped: 132.0.1 -> 133.0

https://www.thunderbird.net/en-US/thunderbird/133.0/releasenotes/
https://www.mozilla.org/en-US/security/advisories/mfsa2024-67/

Fixes: CVE-2024-11691, CVE-2024-11692, CVE-2024-11701, CVE-2024-11702,
       CVE-2024-11694, CVE-2024-11695, CVE-2024-11696, CVE-2024-11697,
       CVE-2024-11704, CVE-2024-11698, CVE-2024-11705, CVE-2024-11706,
       CVE-2024-11708, CVE-2024-11699
(cherry picked from commit b5b6587eae9dd314543b36f3c0acebad6acec13f)
---
 .../networking/mailreaders/thunderbird/packages.nix           | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/pkgs/applications/networking/mailreaders/thunderbird/packages.nix b/pkgs/applications/networking/mailreaders/thunderbird/packages.nix
index 25f78dbd3dcbf..60683174425bb 100644
--- a/pkgs/applications/networking/mailreaders/thunderbird/packages.nix
+++ b/pkgs/applications/networking/mailreaders/thunderbird/packages.nix
@@ -57,8 +57,8 @@ in rec {
   thunderbird = thunderbird-esr;
 
   thunderbird-latest = common {
-    version = "132.0.1";
-    sha512 = "ff2ff1344c3ab6594fba2e03d3f0548221934b94972819cfb6de9cea0bf9bac4ec67d14e7c6b9ae854ecdbc472b814a5f6f7204a9ce71ddac6167ff536a6276a";
+    version = "133.0";
+    sha512 = "8cf8973964cabdc7fafe83d1dfd4f9fbfd340638b1f3d396a98059c00650549b0f4a7bfc486a294b2966136266d4524d6c825a6ee344cd753ac2f7ab412cbc96";
 
     updateScript = callPackage ./update.nix {
       attrPath = "thunderbirdPackages.thunderbird-latest";

From 2a967028475e679030fe986b9072c034ba705028 Mon Sep 17 00:00:00 2001
From: Martin Weinelt <hexa@darmstadt.ccc.de>
Date: Tue, 10 Dec 2024 02:25:59 +0100
Subject: [PATCH 2/2] thunderbird-128-unwrapped: 128.4.3esr -> 128.5.1esr

https://www.thunderbird.net/en-US/thunderbird/128.5.0esr/releasenotes/
https://www.thunderbird.net/en-US/thunderbird/128.5.1esr/releasenotes/
https://www.mozilla.org/en-US/security/advisories/mfsa2024-68/

Fixes: CVE-2024-11691, CVE-2024-11692, CVE-2024-11694, CVE-2024-11695,
       CVE-2024-11696, CVE-2024-11697, CVE-2024-11698, CVE-2024-11699
(cherry picked from commit e2c6430a396d4dcc97c46ed4b67075d8544f017d)
---
 .../networking/mailreaders/thunderbird/packages.nix           | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/pkgs/applications/networking/mailreaders/thunderbird/packages.nix b/pkgs/applications/networking/mailreaders/thunderbird/packages.nix
index 60683174425bb..4f8ae6f3b4190 100644
--- a/pkgs/applications/networking/mailreaders/thunderbird/packages.nix
+++ b/pkgs/applications/networking/mailreaders/thunderbird/packages.nix
@@ -69,8 +69,8 @@ in rec {
   thunderbird-esr = thunderbird-128;
 
   thunderbird-128 = common {
-    version = "128.4.3esr";
-    sha512 = "18691722f6376f3dc0658c01164fcdbf6008fc31eff8c1bd403d34f188db0e7850883315a96fc07289d207c9977d732628d3945736aa191fefd0a01735e3037d";
+    version = "128.5.1esr";
+    sha512 = "1dfa0752a1dbfc4d7516beab13e188aa40c145f2eb0554441ecc4dff739cc862c15fdfdd8c0cc026d010ba3caa57d6168da35e484c04989fb6c81f5c09215831";
 
     updateScript = callPackage ./update.nix {
       attrPath = "thunderbirdPackages.thunderbird-128";