24.01.2017 10:42, Ola Lundqvist wrote: > CVE-2016-9602 this is about 9pfs. In wheezy, this is hardly used by anyone, as it is very slow and quite unstable. But yes, it migth be a real security issue. However, the patch for this issue isn't upstream yet, it is only seen in the redhat bugtracker. Isn't it a bit premature to apply it to wheezy? Thanks, /mjt