* Francesco Poli: > At the same time, DSA 1283-1[4] claims that this vulnerability is fixed > in version 5.2.0-11. I've looked at the source package, and the patch is contained in it and also applied. So I've corrected the tracker to indicate that 5.2.0-11 is indeed fixed. Thanks for reporting this inconsistency.