Ah, interesting lesson in vulnerability report aging. None of the six different bug tracking sites linked to ever went back and updated the reports to show this _was_ fixed in release 818 (though at least a couple sites apparently did originally contact ActiveState to find out that that was planned). Is this normal, that there is _no_ followup?