Hi! I just stumbled over this on <http://seclists.org/oss-sec/2014/q4/79>, and from a cursory glance it appears as if inetutils' syslogd is also vulnerable? There's a patch there that seems would apply w/o much effort.
I think this would be a good excuse to do a release, with a nice timing now that Debian is close to its freeze in almost a month. Thanks, Guillem
