Originally, the CVE-2010-4250 identifier has been assigned to the
Memory leak in the inotify_init() system call could, in some cases,
leak a group, allowing a local, unprivileged user to eventually cause
a denial of service.
Later, it was found that relevant upstream commit:
did not properly address the issue / introduced a regression
(slab corruption by double free of user_struct in inotify_init1),
which could allow a local, unprivileged user to cause a denial of
service (kernel crash).
This issue did not affect the versions of Linux kernel as shipped with Red Hat
Enterprise Linux 4 and 5. This has been addressed in Red Hat Enterprise Linux 6 and Red Hat Enterprise MRG via https://rhn.redhat.com/errata/RHSA-2011-0498.html and https://rhn.redhat.com/errata/RHSA-2011-1253.html.
The fix will also be in 126.96.36.199 .
This issue has been addressed in following products:
MRG for RHEL-6 v.2
Via RHSA-2011:1253 https://rhn.redhat.com/errata/RHSA-2011-1253.html