On Wed, 6 Oct 2010 21:51:42 +0200, Francesco Poli wrote: > Hi everybody, > it seems that the tracker [1] is convinced that CVE-2010-3311 affects > testing and unstable, while DSA-2116-1 [2] claims that those two > distributions are not affected. > > If the DSA is right, please fix the tracker data. the DSA is wrong. testing/unstable are vulnerable. mike