Hi, The 2.6.32 kernel in bpo is affected by CVE-2010-3301: http://sota.gen.nz/compat2/ (with escalation to root privs) I suppose that people are working on fixing this, for squeeze and then for bpo - is there a status / ETA? -- Sylvain