Debian Security Advisory DSA 1329-1 (gfax)

Summary
The remote host is missing an update to gfax announced via advisory DSA 1329-1.
Solution
https://secure1.securityspace.com/smysecure/catid.html?in=DSA%201329-1
Insight
Steve Kemp from the Debian Security Audit project discovered that gfax, a GHOME frontend for fax programs, uses temporary files in an unsafe manner which may be exploited to execute arbitary commands with the privileges of the root user. For the old stable distribution (sarge) this problem has been fixed in version 0.4.2-11sarge1. The stable distribution (etch) is not affected by this problem. The unstable distribution (sid) is not affected by this problem. We recommend that you upgrade your gfax package.