Hi, On Wed, September 24, 2014 21:43, Darko Gavrilovic wrote: > Hi, is there a bash upgrade for squeeze to address below cve? > > https://www.debian.org/security/2014/dsa-3032 Updates to squeeze-lts are announced on the debian-lts-announce list. There you will find that this bug has indeed been addressed Updates will be available within the hour from primary mirrors. Cheers, Thijs