Candidate: CVE-2008-5700
PublicDate: 2008-12-22 15:30:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-5700
 https://ubuntu.com/security/notices/USN-714-1
 https://ubuntu.com/security/notices/USN-715-1
Description:
 libata in the Linux kernel before 2.6.27.9 does not set minimum timeouts
 for SG_IO requests, which allows local users to cause a denial of service
 (Programmed I/O mode on drives) via multiple simultaneous invocations of an
 unspecified test program.
Ubuntu-Description:
 It was discovered that the ATA subsystem did not correctly set timeouts.
 A local attacker could exploit this to cause a system hang, leading to
 a denial of service.
Notes:
Bugs:
Priority: low
Discovered-by:
Assigned-to:
CVSS: 

Patches_linux-source-2.6.15:
upstream_linux-source-2.6.15: needs-triage
dapper_linux-source-2.6.15: released (2.6.15-53.75)
gutsy_linux-source-2.6.15: DNE
hardy_linux-source-2.6.15: DNE
intrepid_linux-source-2.6.15: DNE
devel_linux-source-2.6.15: DNE

Patches_linux-source-2.6.22:
upstream_linux-source-2.6.22: needs-triage
dapper_linux-source-2.6.22: DNE
gutsy_linux-source-2.6.22: released (2.6.22-16.61)
hardy_linux-source-2.6.22: DNE
intrepid_linux-source-2.6.22: DNE
devel_linux-source-2.6.22: DNE

Patches_linux:
upstream_linux: needs-triage
dapper_linux: DNE
gutsy_linux: DNE
hardy_linux: released (2.6.24-23.48)
intrepid_linux: released (2.6.27-11.27)
devel_linux: not-affected