On 2008-11-23, Michael Gilbert <michael.s.gilbert@gmail.com> wrote: > Now that ubuntu [1] has released fixes for CVE-2008-2940 and > CVE-2008-2941 in HPLIP, can we expect to see the same for Etch soon? > > Thanks for working to keep Debian secure. They don't warrant a DSA and can be fixed in the next point release at the discretion of the maintainers. Lenny is already fixed. Cheers, Moritz