Collins Richey wrote: >Is this yet another example of >Debian liking well aged software and suffering the consequences? > > > Possibly, but the vulnerability was just fixed in 2.4.23 so it's not only debian. The "found in september" line is a bit disconcerting. -- Ken