* Florian Weimer: > For the unstable distribution (sid) and testing distribution (lenny), > the remote shell command injection issuei (CVE-2008-5516) has been fixed > in version 1.5.6-1. The other issue will be fixed soon. It turns out that both issues are fixed as of 1.5.6.5-2 (part of lenny since 2009-01-06).