Debian Security Advisory DSA 1531-1 (policyd-weight)

Summary
The remote host is missing an update to policyd-weight announced via advisory DSA 1531-1.
Solution
https://secure1.securityspace.com/smysecure/catid.html?in=DSA%201531-1
Insight
Chris Howells discovered that policyd-weight, a policy daemon for the Postfix mail transport agent, created its socket in an insecure way, which may be exploited to overwrite or remove arbitary files from the local system. For the stable distribution (etch), this problem has been fixed in version 0.1.14-beta-6etch1. The old stable distribution (sarge) does not contain a policyd-weight package. For the unstable distribution (sid), this problem will be fixed soon. We recommend that you upgrade your policyd-weight package.