-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Package: firefox-esr
Version: 68.4.1esr-1~deb8u1
CVE ID : CVE-2019-17026
An issue was found in the IonMonkey JIT compiler of the Mozilla Firefox
web browser which could lead to arbitrary code execution.
For Debian 8 "Jessie"
Package: qtbase-opensource-src
Version: 5.3.2+dfsg-4+deb8u4
CVE ID : CVE-2020-0569
In Qt5's plugin loader code as found in qtbase-opensource-src, it was
possible to (side-)load plugins from "the" local folder in addition to a
system-widely defined library path.
For Debian
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512
Package: libjackson-json-java
Version: 1.9.2-3+deb8u1
CVE ID : CVE-2017-7525 CVE-2017-15095 CVE-2019-10172
Several vulnerabilities were fixed in libjackson-json-java.
CVE-2017-7525
Jackson Deserializer security vulnera