CVE-2008-4810, CVE-2009-1669, Vulnerabilities in Smarty can lead to
remote code exploitation.
Although this vulnerability specifically targets Debian installations,
it is a good time to check your current Smarty version. Also, if you
use Smarty, it is recommended that you subscribe to the Smarty announce
mailing list. This is a low-traffic list that will notify you of new
releases and bug fixes.
The latest stable version of Smarty is 2.6.26. This is a security
update and it is recommended that you update to this version. Please
check with your OS vendor for updates. If you cannot update to this
version, please let me know.