Linux Kernel < 2.4.21 - Denial of Service via NFSv3 XDR Data Size Integer Signedness Error
Integer signedness error in the decode_fh function of nfs3xdr.c in Linux kernel before 2.4.21 allows remote attackers to cause a denial of service (kernel panic) via a negative size value within XDR data of an NFSv3 procedure call.