Description
The inotify functionality in Linux kernel 2.6 before 2.6.28-rc5 might allow local users to gain privileges via unknown vectors related to race conditions in inotify watch removal and umount.
References (23)
Core 23
Core References
Third Party Advisory, VDB Entry mailing-list
x_refsource_bugtraq
http://www.securityfocus.com/archive/1/499044/100/0/threaded
Vendor Advisory vendor-advisory
x_refsource_redhat
http://www.redhat.com/support/errata/RHSA-2009-0225.html
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/32998
Third Party Advisory, VDB Entry vdb-entry
signature
x_refsource_oval
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10584
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/33706
Issue Tracking x_refsource_confirm
https://issues.rpath.com/browse/RPL-2915
Various Sources x_refsource_confirm
http://kernel.org/pub/linux/kernel/v2.6/testing/ChangeLog-2.6.28-rc5
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/33641
Vendor Advisory vendor-advisory
x_refsource_redhat
http://www.redhat.com/support/errata/RHSA-2009-0053.html
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/33503
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/33756
Vendor Advisory vendor-advisory
x_refsource_fedora
https://www.redhat.com/archives/fedora-package-announce/2008-December/msg01358.html
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/33348
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/33623
Third Party Advisory x_refsource_confirm
http://wiki.rpath.com/wiki/Advisories:rPSA-2008-0332
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/33083
Vendor Advisory vendor-advisory
x_refsource_ubuntu
https://usn.ubuntu.com/714-1/
Vendor Advisory vendor-advisory
x_refsource_ubuntu
http://www.ubuntu.com/usn/usn-715-1
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/33854
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/33704
Third Party Advisory vendor-advisory
x_refsource_debian
http://www.debian.org/security/2008/dsa-1681
Mailing List vendor-advisory
x_refsource_suse
http://lists.opensuse.org/opensuse-security-announce/2009-01/msg00010.html
Mailing List vendor-advisory
x_refsource_suse
http://lists.opensuse.org/opensuse-security-announce/2009-01/msg00006.html
Scores
EPSS
0.0027
EPSS Percentile
18.5%
Details
CWE
CWE-362
Status
published
Products (50)
linux/linux_kernel
2.6
linux/linux_kernel
2.6.1
linux/linux_kernel
2.6.2
linux/linux_kernel
2.6.10
linux/linux_kernel
2.6.11
linux/linux_kernel
2.6.11.1
linux/linux_kernel
2.6.11.2
linux/linux_kernel
2.6.11.3
linux/linux_kernel
2.6.11.4
linux/linux_kernel
2.6.11.5
... and 40 more
Published
Nov 21, 2008
Tracked Since
Feb 18, 2026