In case any of you missed this, there has been a flaw discovered in opennssl which allows for a possible remote exploit. Announcement here: http://lists.grok.org.uk/pipermail/full-disclosure/2012-April/086585.html Debian security note here: http://lists.debian.org/debian-security-announce/2012/msg00085.html It doesn't look like there is an exploit in the wild (yet), but the updates are rolling out already so it's sensible to upgrade now.