according to the CVE description [1], it appears that CVE-2007-6514 should apply to the apache and/or samba packages. however, according to the tracker [2], it is tracked as a problem with the kernel. i think that this should be fixed. [1] http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-6514 [2] http://security-tracker.debian.net/tracker/CVE-2007-6514