Synopsis :

The remote Debian host is missing a security-related update.

Description :

Christoph Martin noticed that upon configuration mason, which
interactively creates a Linux packet filtering firewall, does not
install the init script to actually load the firewall during system
boot. This will leave the machine without a firewall after a reboot.

See also :

http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=222384
http://www.debian.org/security/2005/dsa-845

Solution :

Upgrade the mason package.

For the old stable distribution (woody) this problem has been fixed in
version 0.13.0.92-2woody1.

For the stable distribution (sarge) this problem has been fixed in
version 1.0.0-2.2.

Risk factor :

High / CVSS Base Score : 7.5
(CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P)