[SECURITY] [DLA 2093-1] firefox-esr security update

-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Package: firefox-esr Version: 68.4.1esr-1~deb8u1 CVE ID : CVE-2019-17026 An issue was found in the IonMonkey JIT compiler of the Mozilla Firefox web browser which could lead to arbitrary code execution. For Debian 8

[SECURITY] [DLA 2092-1] qtbase-opensource-src security update

Package: qtbase-opensource-src Version: 5.3.2+dfsg-4+deb8u4 CVE ID : CVE-2020-0569 In Qt5's plugin loader code as found in qtbase-opensource-src, it was possible to (side-)load plugins from "the" local folder in addition to a system-widely defined library path. For

[SECURITY] [DLA 2091-1] libjackson-json-java security update

-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Package: libjackson-json-java Version: 1.9.2-3+deb8u1 CVE ID : CVE-2017-7525 CVE-2017-15095 CVE-2019-10172 Several vulnerabilities were fixed in libjackson-json-java. CVE-2017-7525 Jackson Deserializer security