CVE-2008-4554 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2008-4554): The do_splice_from function in fs/splice.c in the Linux kernel before 2.6.27 does not reject file descriptors that have the O_APPEND flag set, which allows local users to bypass append mode and make arbitrary changes to other locations in the file.
http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.27
hardened-kernel unaffected at present time. Removing alias. PS: genpatches-2.6.26-4 added 2.6.26.7. =genpatches-2.6.25* remains vulnerable. However, hardened-sources-2.6.25-r13 does not because we independently folded in the newer stable patches.