Candidate: CVE-2009-0269
PublicDate: 2009-01-26 15:30:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0269
 https://ubuntu.com/security/notices/USN-751-1
Description:
 fs/ecryptfs/inode.c in the eCryptfs subsystem in the Linux kernel before
 2.6.28.1 allows local users to cause a denial of service (fault or memory
 corruption), or possibly have unspecified other impact, via a readlink call
 that results in an error, leading to use of a -1 return value as an array
 index.
Ubuntu-Description:
 The eCryptfs filesystem did not correctly handle certain VFS return codes.
 A local attacker with write-access to an eCryptfs filesystem could cause
 a system crash, leading to a denial of service.
Notes:
Bugs:
Priority: low
Discovered-by:
Assigned-to:
CVSS: 

Patches_linux-source-2.6.15:
upstream_linux-source-2.6.15: needs-triage
dapper_linux-source-2.6.15: not-affected
gutsy_linux-source-2.6.15: DNE
hardy_linux-source-2.6.15: DNE
intrepid_linux-source-2.6.15: DNE
devel_linux-source-2.6.15: DNE

Patches_linux-source-2.6.22:
upstream_linux-source-2.6.22: needs-triage
dapper_linux-source-2.6.22: DNE
gutsy_linux-source-2.6.22: released (2.6.22-16.62)
hardy_linux-source-2.6.22: DNE
intrepid_linux-source-2.6.22: DNE
devel_linux-source-2.6.22: DNE

Patches_linux:
upstream_linux: needs-triage
dapper_linux: DNE
gutsy_linux: DNE
hardy_linux: released (2.6.24-23.52)
intrepid_linux: released (2.6.27-11.31)
devel_linux: not-affected