Buffer overflow in nfsd in the Linux kernel before 18.104.22.168, when NFSv4 is
enabled, allows remote attackers to have an unknown impact via vectors
related to decoding an NFSv4 acl.
Johann Dahm and David Richter discovered that NFSv4 did not correctly
handle certain file ACLs. If NFSv4 is in use, a local attacker could
create a malicious ACL that could cause a system crash, leading to a
denial of service.
Updated: 2016-03-23 03:32:03 UTC (commit 10817)