According to: https://security-tracker.debian.org/tracker/CVE-2016-5696
Wheezy and Jessie are still vulnerable. The attack in question is kind of bad (it allows blind injection of arbitrary data into things like http downloads) and has been known for a few weeks now to the general public. Any idea out there when updates to the kernels in question will be released? Perry -- Perry E. Metzger pe...@piermont.com
