Candidate: CVE-2004-0497
References: 
 CONECTIVA:CLA-2004:852
 URL:http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000852
 MANDRAKE:MDKSA-2004:066
 URL:http://www.mandrakesecure.net/en/advisories/advisory.php?name=MDKSA-2004:066
 REDHAT:RHSA-2004:354
 URL:http://www.redhat.com/support/errata/RHSA-2004-354.html
 REDHAT:RHSA-2004:360
 URL:http://www.redhat.com/support/errata/RHSA-2004-360.html
 SUSE:SUSE-SA:2004:020
 URL:http://www.novell.com/linux/security/advisories/2004_20_kernel.html
 XF:linux-fchown-groupid-modify(16599)
 URL:http://xforce.iss.net/xforce/xfdb/16599
Description: 
 Unknown vulnerability in Linux kernel 2.x may allow local users to modify the
 group ID of files, such as NFS exported files in kernel 2.4.
Notes: 
 Changelog shows fixed in 2.4.26-3
 2.6 patch:
   http://linux.bkbits.net:8080/linux-2.6/cset@40e62e18vom8K1fHgbJfe1oQ6mdkkQ?nav=index.html|src/|src/fs|related/fs/attr.c
Bugs: 
upstream: released (2.4.27, 2.6.8)
linux-2.6: N/A
2.6.8-sarge-security: N/A
2.4.27-sarge-security: released (2.4.27-1)
2.4.19-woody-security: 
2.4.18-woody-security: 
2.4.17-woody-security: 
2.4.16-woody-security: 
2.4.17-woody-security-hppa: 
2.4.17-woody-security-ia64: 
2.4.18-woody-security-hppa: