CVE-2011-1479

NameCVE-2011-1479
DescriptionDouble free vulnerability in the inotify subsystem in the Linux kernel before 2.6.39 allows local users to cause a denial of service (system crash) via vectors involving failed attempts to create files. NOTE: this vulnerability exists because of an incorrect fix for CVE-2010-4250.
SourceCVE (at NVD; CERT, LWN, oss-sec, fulldisc, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, GitHub advisories/code/issues, web search, more)

The information below is based on the following data on fixed versions.

PackageTypeReleaseFixed VersionUrgencyOriginDebian Bugs
linux-2.6sourcelenny(not affected)
linux-2.6sourcesqueeze(not affected)
linux-2.6source(unstable)2.6.38-4

Notes

[lenny] - linux-2.6 <not-affected> (Only affected 2.6.37 and 2.6.38)
[squeeze] - linux-2.6 <not-affected> (Only affected 2.6.37 and 2.6.38)
Search for package or bug name: Reporting problems