Updated Firefox-ESR and Thunderbird packages has been released for Debian GNU/Linux 8 LTS:
DLA 1869-1: firefox-esr security update
DLA 1870-1: thunderbird security update
DLA 1869-1: firefox-esr security update
DLA 1870-1: thunderbird security update
DLA 1869-1: firefox-esr security update
Package : firefox-esr
Version : 60.8.0esr-1~deb8u1
CVE ID : CVE-2019-9811 CVE-2019-11709 CVE-2019-11711 CVE-2019-11712
CVE-2019-11713 CVE-2019-11715 CVE-2019-11717 CVE-2019-11730
Multiple security issues have been found in the Mozilla Firefox web
browser, which could potentially result in the execution of arbitrary
code, cross-site scripting, spoofing, information disclosure, denial of
service or cross-site request forgery.
For Debian 8 "Jessie", these problems have been fixed in version
60.8.0esr-1~deb8u1.
We recommend that you upgrade your firefox-esr packages.
Further information about Debian LTS security advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://wiki.debian.org/LTS
DLA 1870-1: thunderbird security update
Package : thunderbird
Version : 1:60.8.0-1~deb8u1
CVE ID : CVE-2019-9811 CVE-2019-11709 CVE-2019-11711 CVE-2019-11712
CVE-2019-11713 CVE-2019-11715 CVE-2019-11717 CVE-2019-11730
Multiple security issues have been found in Thunderbird which could
potentially result in the execution of arbitrary code, cross-site
scripting, spoofing, information disclosure, denial of service or
cross-site request forgery.
For Debian 8 "Jessie", these problems have been fixed in version
1:60.8.0-1~deb8u1.
We recommend that you upgrade your thunderbird packages.
Further information about Debian LTS security advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://wiki.debian.org/LTS
