Upstream information
Description
fs/ecryptfs/inode.c in the eCryptfs subsystem in the Linux kernel before 2.6.28.1 allows local users to cause a denial of service (fault or memory corruption), or possibly have unspecified other impact, via a readlink call that results in an error, leading to use of a -1 return value as an array index.NVD CVSS v2 Base Score: 4.9 (AV:L/AC:L/Au:N/C:N/I:N/A:C)
Novell/SUSE information
Novell Bugzilla entry: 470942 SUSE Security Advisories:- SUSE-SA:2009:010, published Thu, 26 Feb 2009 16:00:00 +0000
- SUSE-SA:2009:030, published Mon, 08 Jun 2009 18:00:00 +0000
- SUSE-SA:2009:031, published Mon, 09 Jun 2009 09:00:00 +0000
List of released packages
| Product(s) | Fixed package version(s) | References |
|---|---|---|
| openSUSE 10.3 |
|
