|
The logging code in nfs-utils contains an off-by-one buffer overrun when adding a newline to the string being logged. This vulnerability may allow an attacker to execute arbitrary code or cause a denial of service condition by sending certain RPC requests.
For the stable distribution (woody) this problem has been fixed in version 1:1.0-2woody1.
For the unstable distribution (sid) this problem has been fixed in version 1:1.0.3-2.
We recommend that you update your nfs-utils package.
MD5 checksums of the listed files are available in the original advisory.