Seems imlib has multiple overflows vulnerabilities [1,2,3]. Are Woody/Sarge vulnerable? Is a DSA in preparation for it? Christophe [1] imlib: Buffer overflows in image decoding http://www.gentoo.org/security/en/glsa/glsa-200412-03.xml [2] CAN-2004-1026 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-1026 [3] SUSE Security Summary Report SUSE-SR:2004:003 http://www.suse.de/de/security/2004_03_sr.html