Linux Kernel XFS Heap Overflow May Let Remote Users Execute Arbitrary Code
A vulnerability was reported in the Linux Kernel. A remote user can cause arbitrary code to be executed on the target user's system.
A remote user can create a filesystem that, when mounted by the target user, will execute arbitrary code on the target user's system.
A remote user can create a specially crafted filesystem that, when mounted by the target user, will trigger an integer overflow in the ACL handling code, which may lead to a heap overflow and potentially execute arbitrary code on the target system.
A source code fix, available at: Latest Linux Kernel.