Hi, I won''t be able to do much Debian related work in March and April (some vacation among other things). So it would be great if someone else could subscribe to d-devel-changes and put the information about security fixes from the changelog entries into CVE/list. Cheers, Stefan PS: This exim filter gave good results for me. I.e. after it caught everything that was important in two months, I stopped reading the rest. (message_body_visible in exim4.conf must not be too small, though. 150000 should work.) if $message_body matches "(cve|can-|secur|buffer *over|vuln|dsa-|mfsa| gnutls-sa-|compromis)" or $message_body MATCHES "(DoS|XSS|CSRF)" then save $home/mail/lists/debian-d-changes-1 finish else if $message_body matches "(warning|crash|format *string|overflow| perms|permission|privilege|escap|segfault|segmentation|segv|password| plaintext|rpath|hash[^:]|sanitiz)" then save $home/mail/lists/debian-d-changes-2 finish ...