Integer Overflow in xfs_acl_from_disk Function in Linux Kernel

Integer Overflow in xfs_acl_from_disk Function in Linux Kernel

CVE-2012-0038 · MEDIUM Severity

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Integer overflow in the xfs_acl_from_disk function in fs/xfs/xfs_acl.c in the Linux kernel before 3.1.9 allows local users to cause a denial of service (panic) via a filesystem with a malformed ACL, leading to a heap-based buffer overflow.

Learn more about our Cis Benchmark Audit For Distribution Independent Linux.