Description of problem:
RHEL 5.x has a different open-by-handle path to rhel6/mainline and so the backport of the untrusted inode lookup patches failed to update this path. Hence local handle lookups were not being checked correctly. This was not picked up during initial testing as the tests are affected by timing and not always guarantee to fail.
Version-Release number of selected component (if applicable):
Reproduced in QA. See bug 624366.
The fixes for CVE-2010-2943 et al are not correct or complete without this bug being fixed.