Grant Diffey

**Name of the Vulnerable Software and Affected Versions** Linux kernel versions prior to 2.6.35 drbd-kmp-default (affected versions not specified) **Description** The issue affects the Linux kernel and the drbd-kmp-default package in openSUSE. In the Linux kernel, the `gfs2 dirent find space` function in `fs/gfs2/dir.c` uses an incorrect size value in calculations associated with sentinel directory entries. This allows local users to cause a denial of service, potentially leading to a NULL pointer dereference and panic, by renaming a file in a GFS2 filesystem. The `gfs2 rename` function in `fs/gfs2/ops inode.c` is also related to this issue. Additionally, multiple vulnerabilities in the drbd-kmp-default package may compromise the confidentiality, integrity, and availability of protected information, and can be exploited locally. **Recommendations** For Linux kernel versions prior to 2.6.35, update to version 2.6.35 or later to resolve the issue. For drbd-kmp-default, at the moment, there is no information about a newer version that contains a fix for this vulnerability.