The remote host is missing an update to gpm announced via advisory DSA 095-1.

https://secure1.securityspace.com/smysecure/catid.html?in=DSA%20095-1

The package 'gpm' contains the 'gpm-root' program, which can be used to create mouse-activated menus on the console. Among other problems, the gpm-root program contains a format string vulnerability, which allows an attacker to gain root privileges. This has been fixed in version 1.17.8-18.1, and we recommend that you upgrade