Hi Richard, On Thu, Aug 11, 2016 at 02:41:29PM +0200, Richard van den Berg wrote: > Dear Debian security team, > > Will there be a DSA written for CVE-2016-5696 [1]? It looks pretty serious > and I'd like to fix this on my systems ASAP. Yes there will be a Linux DSA including the fix for CVE-2016-5696. There is no timeline though yet, and mitigation could be used as per https://lwn.net/Articles/696868/ . Regards, Salvatore