Please note:stable and lenny-backports both appear to be vulnerable to this -- they contain the offending code.
I have filed bug #605484 on this. - John -- To UNSUBSCRIBE, email to debian-security-tracker-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/4cf50dd5.5080...@complete.org
