Updated eject packages has been released for Debian 7 LTS
Package : eject
Version : 2.1.5+deb1+cvs20081104-13+deb7u1
CVE ID : CVE-2017-6964
Debian Bug : #858872
Ilja Van Sprundel discovered that eject (a tool to eject CD/DVD drives) did not
properly handle errors returned from setuid/setgid.
For Debian 7 "Wheezy", this issue has been fixed in eject version
2.1.5+deb1+cvs20081104-13+deb7u1.
We recommend that you upgrade your eject packages.