CVE-2007-0001 Information

Description

The file watch implementation in the audit subsystem (auditctl -w) in the Red Hat Enterprise Linux (RHEL) 4 kernel 2.6.9 allows local users to cause a denial of service (kernel panic) by replacing a watched file which does not cause the watch on the old inode to be dropped.

Reference

http://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=223129 http://osvdb.org/33031 http://secunia.com/advisories/24300 http://www.redhat.com/support/errata/RHSA-2007-0085.html http://www.securityfocus.com/bid/22737 http://www.securitytracker.com/id?1017705 https://oval.cisecurity.org/repository/search/definition/oval3Aorg.mitre.oval3Adef3A9560