CLSA-2026-1779136540 thunderbird: Fix of 2 CVEs
CVE-2024-0747: Document::Open inheriting CSP from a different window - CVE-2025-5268: Memory safety bugs gfxFont mHasSpaceFeatures atomicity, PresShell event-handler UAF, wasm uncheckedReadValType missing types...