This appears to be the simplest fix for the bug, moving from using runlevel S to runlevel 1. I don't believe this makes the security situation any worse.
Attachment: nvi_1.81.6-12.debdiff Description: Binary data