Comment 4 for bug 211323

Jamie, Kees, please could you have a look at the package before promotion?
the package looks ok otherwise, coming with with it's own sprintf/snprintf implementation.
"No recent CVE entries" seems a bit of understatement given one incident for 2008 and some more for 2007.