** Description changed: - integer overflow in the ACL handling code, which could further lead to - heap-based buffer overflow via a crafted filesystem. + Integer overflow in the xfs_acl_from_disk function in fs/xfs/xfs_acl.c + in the Linux kernel before 3.1.9 allows local users to cause a denial of + service (panic) via a filesystem with a malformed ACL, leading to a + heap-based buffer overflow. Break-Fix: ef14f0c1578dce4b688726eb2603e50b62d6665a fa8b18edd752a8b4e9d1ee2cd615b82c93cf8bba Break-Fix: ef14f0c1578dce4b688726eb2603e50b62d6665a 093019cf1b18dd31b2c3b77acce4e000e2cbc9ce
-- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/917706 Title: CVE-2012-0038 To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/linux/+bug/917706/+subscriptions -- ubuntu-bugs mailing list [email protected] https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
