Launchpad.net

CVE 2008-5182

The inotify functionality in Linux kernel 2.6 before 2.6.28-rc5 might allow local users to gain privileges via unknown vectors related to race conditions in inotify watch removal and umount.

Related bugs and status

CVE-2008-5182 (Candidate) is related to these bugs:

Bug #299708: Update linux kernel to 2.6.24.24-53 in dell-mini

Summary				In	Importance	Status
	299708	Update linux kernel to 2.6.24.24-53 in dell-mini		linux (Ubuntu)	High	Invalid
	299708	Update linux kernel to 2.6.24.24-53 in dell-mini		The Dell Mini Project	Undecided	Fix Released

Bug #322553: [regression] modprobe isp1760 triggers kernel oops during bootup in 2.6.27-11

Summary				In	Importance	Status
	322553	[regression] modprobe isp1760 triggers kernel oops during bootup in 2.6.27-11		linux (Ubuntu)	High	Fix Released
	322553	[regression] modprobe isp1760 triggers kernel oops during bootup in 2.6.27-11		linux (Ubuntu Intrepid)	High	Fix Released

See the

CVE page on Mitre.org for more details.

References

CONFIRM: http://kernel.org/pub/...
CONFIRM: http://wiki.rpath.com/...
CONFIRM: https://issues.rpath.c...
DEBIAN: DSA-1681
REDHAT: RHSA-2009:0225
SECUNIA: 33623
SECUNIA: 32998
SUSE: SUSE-SA:2009:004
SUSE: SUSE-SA:2009:008
UBUNTU: USN-715-1
BID: 33503
SECUNIA: 33641
SECUNIA: 33704
SECUNIA: 33756
SECUNIA: 33706
REDHAT: RHSA-2009:0053
SECUNIA: 33854
FEDORA: FEDORA-2008-11618
SECUNIA: 33348
SECUNIA: 33083
OVAL: oval:org.mitre.oval:de...
UBUNTU: USN-714-1
BUGTRAQ: 20081209 rPSA-2008-033...