CVE-2008-3534

Priority
Medium
Description
The shmem_delete_inode function in mm/shmem.c in the tmpfs implementation
in the Linux kernel before 2.6.26.1 allows local users to cause a denial of
service (system crash) via a certain sequence of file create, remove, and
overwrite operations, as demonstrated by the insserv program, related to
allocation of "useless pages" and improper maintenance of the i_blocks
count.
Ubuntu-Description
It was discovered that the tmpfs implementation did not correctly handle
certain sequences of inode operations. A local attacker could exploit
this to crash the system, leading to a denial of service.
References
Assigned-to
smb_tp
Package
Upstream:needed
Package
Upstream:needed
Package
Upstream:needed
Package
Source: linux (LP Ubuntu Debian)
Upstream:released (2.6.26.1)
Patches:
Upstream:14fcc23fdc78e9d32372553ccf21758a9bd56fa1
Upstream:d847471d063663b9f36927d265c66a270c0cfaab
More Information

Valid XHTML 1.0 Strict

Updated: 2015-07-15 19:29:39 UTC (commit 9690)