Rafal Wojtczuk of McAfee AVERT Research discovered multiple integer overflows in
e2fsprogs. These flaws could result in the execution of arbitrary code if a
program using libext2fs (e2fsck, dumpe2fs, pygrub) is used to process a
malicious filesystem.
Under normal conditions this practice is not common. The most plausible attack
would be to leverage this flaw in a virtualized environment to gain access to dom0.
Acknowledgements:
Red Hat would like to thank Rafal Wojtczuk of McAfee Avert Research for responsibly disclosing these issues.