libnfs through 6.0.2 before 55c18ea does not validate a string size, leading to an integer overflow during a connection to a crafted NFS server. This occurs in libnfs_zdr_string in lib/libnfs-zdr.c.
1.9.7-21.9.8-11.11.0-21.11.0-32.0.0-1~exp13.0.0-2ubuntu14.0.0-14.0.0-1ubuntu0.15.0.2-1ubuntu0.24.04.15.0.2-1ubuntu0.25.10.15.0.2-1ubuntu1.1Exploitability
AV:NAC:HPR:NUI:RScope
S:UImpact
C:HI:HA:LCVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:L