Comment 2 for bug 1493037

doko asked me to give these a quick look. There are no open CVEs in any of them and only libcrypt-cbc-perl has a CVE history: CVE-2006-0898 (fixed via debian sync prior to dapper release). I reviewed the changes for the fix and they were easy to understand. As for the libcrypt-* packages listed here, they all have testsuites and look to be supportable. Nothing here needs further security review.