Buffer Overflow in Linux Kernel NFSv4 ACL Handling

Buffer Overflow in Linux Kernel NFSv4 ACL Handling

CVE-2013-4591 · MEDIUM Severity

AV:L/AC:H/AU:N/C:C/I:C/A:C

Buffer overflow in the __nfs4_get_acl_uncached function in fs/nfs/nfs4proc.c in the Linux kernel before 3.7.2 allows local users to cause a denial of service (memory corruption and system crash) or possibly have unspecified other impact via a getxattr system call for the system.nfs4_acl extended attribute of a pathname on an NFSv4 filesystem.

Learn more about our Cis Benchmark Audit For Distribution Independent Linux.