Alexander Viro

**Name of the Vulnerable Software and Affected Versions** Linux kernel versions prior to 2.6.25.2 **Description** The issue allows local users to execute code in parallel or exploit a race condition to obtain re-ordered access to the descriptor table due to the lack of a certain protection mechanism for fcntl functionality. **Recommendations** For versions prior to 2.6.25.2, update to version 2.6.25.2 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Linux kernel versions 2.6.x before 2.6.24.6 Linux kernel versions 2.6.25 before 2.6.25.1 **Description** A race condition exists in the directory notification subsystem (dnotify) of the Linux kernel, allowing local users to cause a denial of service (OOPS) and possibly gain privileges via unspecified vectors. **Recommendations** For Linux kernel versions 2.6.x before 2.6.24.6, update to version 2.6.24.6 or later to resolve the issue. For Linux kernel versions 2.6.25 before 2.6.25.1, update to version 2.6.25.1 or later to resolve the issue.