Neither of these are currently in jessie's stable package set. However, both are desirable sometime this year, enough that we will probably bite the bullet on using a backports package and/or rolling our own that we have to maintain security on.
The driver for openssl 1.0.2 is ALPN support (which isn't important until we get HTTP/2)
The drivers for nginx 1.9.2:
- lots of non-sec bugfixes for "newer" features that we are using are simply not backported to 1.6.x (several already for SPDY, OCSP Stapling, etc)
- general background on nginx mainline-vs-stable: http://nginx.com/blog/nginx-1-6-1-7-released/
- SO_REUSEPORT support
This will all be interrelated with HTTP/2 support as well, but that may not land in nginx until some later version.
Note that for ALPN, the updated nginx package has to have been compiled against headers from the updated openssl package.