15 matches found
CVE-2026-46040
A flaw was found in the Linux kernel's inotify subsystem. When the fsnotifyaddinodemarklocked function fails during the creation of a new watch, the system does not properly decrement the watch count. This oversight can lead to a watch count leak, where repeated failures exhaust the maximum user...
kernel: inotify: Avoid reporting event with invalid wd
A race condition was found in the Linux kernel's inotify subsystem. When inotifyfreeingmark races with inotifyhandleinodeevent, the event handler may read imark-wd after it has been reset to -1. This causes an invalid watch descriptor value of -1 to be reported to userspace applications,...
EUVD-2011-1483
Malware in sbrugna...
CVE-2019-9857
A flaw in the inotify subsystem can allow a local attacker to create a denial of service DOS situation in which the memory use of watches on existing watchpoints were not accounted for correctly...
CVE-2011-1479
Double free vulnerability in the inotify subsystem in the Linux kernel before 2.6.39 allows local users to cause a denial of service system crash via vectors involving failed attempts to create files. NOTE: this vulnerability exists because of an incorrect fix for CVE-2010-4250...
CVE-2011-1479
CVE-2011-1479 : A double-free in the Linux kernel’s inotify subsystem (kernel versions before 2.6.39) allows local users to crash the system via paths involving failed file creation. The issue stems from an incorrect fix related to CVE-2010-4250. Affected product: Linux kernel; vulnerability type...
PT-2012-1527 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 2.6.39 Description: A double free vulnerability exists in the inotify subsystem of the Linux kernel, allowing local users to cause a denial of service, resulting in a system crash. This issue arises from incorre...
CVE-2011-1479
Double free vulnerability in the inotify subsystem in the Linux kernel before 2.6.39 allows local users to cause a denial of service system crash via vectors involving failed attempts to create files. NOTE: this vulnerability exists because of an incorrect fix for CVE-2010-4250...
Ubuntu 8.10 : linux vulnerabilities (USN-715-1)
Hugo Dias discovered that the ATM subsystem did not correctly manage socket counts. A local attacker could exploit this to cause a system hang, leading to a denial of service. CVE-2008-5079 It was discovered that the inotify subsystem contained watch removal race conditions. A local attacker coul...
USN-715-1: Linux kernel vulnerabilities
Hugo Dias discovered that the ATM subsystem did not correctly manage socket counts. A local attacker could exploit this to cause a system hang, leading to a denial of service. CVE-2008-5079 It was discovered that the inotify subsystem contained watch removal race conditions. A local attacker coul...
USN-714-1: Linux kernel vulnerabilities
Hugo Dias discovered that the ATM subsystem did not correctly manage socket counts. A local attacker could exploit this to cause a system hang, leading to a denial of service. CVE-2008-5079 It was discovered that the libertas wireless driver did not correctly handle beacon and probe responses. A...
Debian DSA-1687-1 : linux-2.6 - denial of service/privilege escalation
Several vulnerabilities have been discovered in the Linux kernel that may lead to a denial of service or privilege escalation. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2008-3527 Tavis Ormandy reported a local DoS and potential privilege escalation...
DSA-1687-1 fai-kernels linux-2.6 user-mode-linux - several vulnerabilities
Bulletin has no description...
Debian DSA-1681-1 : linux-2.6.24 - denial of service/privilege escalation
Several vulnerabilities have been discovered in the Linux kernel that may lead to a denial of service or privilege escalation. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2008-3528 Eugene Teo reported a local DoS issue in the ext2 and ext3 filesystem...
DSA-1681-1 linux-2.6.24 - several vulnerabilities
Bulletin has no description...