look at http://security.e-matters.de/advisories/042002.html, it seems like the the debian woody version is affected. Is there any DSA in preparation? Thanks, Benjamin