CVE-2013-4591

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 3.7.2

Description The issue is related to a buffer overflow in the nfs4 get acl uncached function, which can cause a denial of service, resulting in memory corruption and system crash. It may also have other unspecified impacts. This occurs when a local user makes a getxattr system call for the system.nfs4 acl extended attribute of a pathname on an NFSv4 filesystem.

Recommendations For Linux kernel versions prior to 3.7.2, update to version 3.7.2 or later to resolve the issue. As a temporary workaround, consider restricting access to the nfs4 get acl uncached function or limiting the use of the getxattr system call for the system.nfs4 acl extended attribute on NFSv4 filesystems until the update is applied.