PublicDate: 2008-08-08 19:41:00 UTC
Candidate: CVE-2008-3534
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-3534
 https://ubuntu.com/security/notices/USN-659-1
Description:
 The shmem_delete_inode function in mm/shmem.c in the tmpfs implementation
 in the Linux kernel before 2.6.26.1 allows local users to cause a denial of
 service (system crash) via a certain sequence of file create, remove, and
 overwrite operations, as demonstrated by the insserv program, related to
 allocation of "useless pages" and improper maintenance of the i_blocks
 count.
Ubuntu-Description:
 It was discovered that the tmpfs implementation did not correctly handle
 certain sequences of inode operations.  A local attacker could exploit
 this to crash the system, leading to a denial of service.
Notes:
Bugs:
Priority: medium
Discovered-by:
Assigned-to: smb_tp
CVSS: 

Patches_linux-source-2.6.15:
upstream_linux-source-2.6.15: released (2.6.27~rc4)
dapper_linux-source-2.6.15: released (2.6.15-52.73)
feisty_linux-source-2.6.15: DNE
gutsy_linux-source-2.6.15: DNE
hardy_linux-source-2.6.15: DNE
devel_linux-source-2.6.15: DNE

Patches_linux-source-2.6.20:
upstream_linux-source-2.6.20: released (2.6.27~rc4)
dapper_linux-source-2.6.20: DNE
feisty_linux-source-2.6.20: ignored (end-of-life)
gutsy_linux-source-2.6.20: DNE
hardy_linux-source-2.6.20: DNE
devel_linux-source-2.6.20: DNE

Patches_linux-source-2.6.22:
upstream_linux-source-2.6.22: released (2.6.27~rc4)
dapper_linux-source-2.6.22: DNE
feisty_linux-source-2.6.22: DNE
gutsy_linux-source-2.6.22: released (2.6.22-15.59)
hardy_linux-source-2.6.22: DNE
devel_linux-source-2.6.22: DNE

Patches_linux:
 break-fix: 14fcc23fdc78e9d32372553ccf21758a9bd56fa1 d847471d063663b9f36927d265c66a270c0cfaab
upstream_linux: released (2.6.27~rc4)
dapper_linux: DNE
feisty_linux: DNE
gutsy_linux: DNE
hardy_linux: released (2.6.24-21.43)
devel_linux: not-affected (2.6.27-2.3)