Off-by-one overflow on extended attributes reading.
vulners.com/securityvulns/securityvulns:doc:10877