Candidate: CVE-2010-2798 Description: The problem was in the way the gfs2 directory code was trying to re-use sentinel directory entries. A local, unprivileged user on a gfs2 mounted directory can trigger this issue, resulting in a NULL pointer dereference. References: https://bugzilla.redhat.com/show_bug.cgi?id=620300 Notes: Bugs: upstream: released (2.6.35) [728a756b8fcd22d80e2dbba8117a8a3aafd3f203] 2.6.32-upstream-stable: released (2.6.32.18) linux-2.6: released (2.6.32-20) 2.6.26-lenny-security: released (2.6.26-24lenny1) [bugfix/all/gfs2-rename-causes-kernel-oops.patch] 2.6.32-squeeze-security: released (2.6.32-20)