All the just-announced vulnerability fixes are easily applied to the 1.3 server branch except for CVE-2008-2360 ... does someone have a fix for CVE-2008-2360 for server-1.3-branch (yes, I'm trying to weasel out of rolling it myself mostly because I don't want the responsibility ;>) --Jeremy