The logging code in nfs-utils contains an off-by-one buffer overrun
when adding a newline to the string being logged. This vulnerability
may allow an attacker to execute arbitrary code or cause a denial of
service condition by sending certain RPC requests.
For the stable distribution (woody) this problem has been fixed in
version 1:1.0-2woody1.
For the unstable distribution (sid) this problem has been fixed in
version 1:1.0.3-2.
We recommend that you update your nfs-utils package.