Red Hat Bugzilla – Bug 691793
CVE-2011-1479 kernel: DoS (crash) due slab corruption in inotify_init1 (incomplete fix for CVE-2010-4250)
Last modified: 2013-04-24 00:31:46 EDT
Originally, the CVE-2010-4250 identifier has been assigned to the
Memory leak in the inotify_init() system call could, in some cases,
leak a group, allowing a local, unprivileged user to eventually cause
a denial of service.
Later, it was found that relevant upstream commit:
did not properly address the issue / introduced a regression
(slab corruption by double free of user_struct in inotify_init1),
which could allow a local, unprivileged user to cause a denial of
service (kernel crash).
This issue did not affect the versions of Linux kernel as shipped with Red Hat
Enterprise Linux 4 and 5. This has been addressed in Red Hat Enterprise Linux 6 and Red Hat Enterprise MRG via https://rhn.redhat.com/errata/RHSA-2011-0498.html and https://rhn.redhat.com/errata/RHSA-2011-1253.html.
The fix will also be in 220.127.116.11 .
This issue has been addressed in following products:
MRG for RHEL-6 v.2
Via RHSA-2011:1253 https://rhn.redhat.com/errata/RHSA-2011-1253.html