CVE-2009-0935 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2009-0935): The inotify_read function in the Linux kernel 2.6 before 2.6.29-rc3 allows local users to cause a denial of service (OOPS) via a read with an invalid address to an inotify instance, which causes the device's event list mutex to be unlocked twice and prevents proper synchronization of a data structure for the inotify instance.