Steve Langasek wrote: > In the meantime, I'm downgrading 160579 because I don't see anything in that > report that would justify claiming the package is unreleasable. It's also vulnerable to CVE-2004-2656 (no bug seems to exist) and CVE-2001-1535 (328927). Cheers, Moritz