CVE-2008-3534

Priority
Medium
Description
The shmem_delete_inode function in mm/shmem.c in the tmpfs implementation
in the Linux kernel before 2.6.26.1 allows local users to cause a denial of
service (system crash) via a certain sequence of file create, remove, and
overwrite operations, as demonstrated by the insserv program, related to
allocation of "useless pages" and improper maintenance of the i_blocks
count.
Ubuntu-Description
It was discovered that the tmpfs implementation did not correctly handle
certain sequences of inode operations. A local attacker could exploit
this to crash the system, leading to a denial of service.
References
Assigned-to
smb_tp
Package
Upstream:needed
Ubuntu 8.04 LTS (Hardy Heron):DNE
Package
Upstream:needed
Ubuntu 8.04 LTS (Hardy Heron):DNE
Package
Upstream:needed
Ubuntu 8.04 LTS (Hardy Heron):DNE
Package
Source: linux (LP Ubuntu Debian)
Upstream:released (2.6.26.1)
Ubuntu 8.04 LTS (Hardy Heron):released (2.6.24-21.43)
Patches:
Upstream:14fcc23fdc78e9d32372553ccf21758a9bd56fa1
Upstream:d847471d063663b9f36927d265c66a270c0cfaab
More Information

Valid XHTML 1.0 Strict

Updated: 2012-06-01 15:18:59 UTC (commit 5347)