What shall we do with CVE-2010-4075, CVE-2010-4076, CVE-2010-4077 at this point of the freeze? Should be fixed by d281da7ff6f70efca0553c288bb883e8605b3862 and 0587102cf9f427c185bfdeb2cef41e13ee0264b1 , but would change the ABI. We could postpone it to a later point update, where we change the ABI along with more serious issues requiring an ABI bump? Cheers, Moritz