DEBIAN-CVE-2007-4135

DEBIAN-CVE-2007-4135 PUBLISHED

The NFSv4 ID mapper (nfsidmap) before 0.17 does not properly handle return values from the getpwnam_r function when performing a username lookup, which can cause it to report a file as being owned by "root" instead of "nobody" if the file exists on the server but not on the client.

Affected Products

Vendor	Product	Versions
Debian:11	libnfsidmap	0, 0, 0

Timeline

Sep 5, 2007 CVE Published
Apr 28, 2026 CVE Updated

References

https://security-tracker.debian.org/tracker/CVE-2007-4135 advisory

Open in Interactive Console →