[SECURITY] [DLA 2243-1] firefox-esr security update [REVISED]

[Roberto C. Sánchez <roberto@debian.org>]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Package        : firefox-esr
Version        : 68.9.0esr-1~deb8u2
CVE ID         : CVE-2020-12399 CVE-2020-12405 CVE-2020-12406 CVE-2020-12410


Multiple security issues have been found in the Mozilla Firefox web
browser, which could potentially result in the execution of arbitrary
code or a timing attack on cryptographic keys.

For Debian 8 "Jessie", these problems have been fixed in version
68.9.0esr-1~deb8u2.

NOTE: 68.9.0esr-1~deb8u2 fixes an i386 build error in the otherwise
      identical 68.9.0esr-1~deb8u1 that was uploaded but not announced.

We recommend that you upgrade your firefox-esr packages.

Further information about Debian LTS security advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://wiki.debian.org/LTS
-----BEGIN PGP SIGNATURE-----
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=TmBy
-----END PGP SIGNATURE-----