Bug#303140: CAN-2005-0937: DoS in futex handling

To: Moritz Muehlenhoff <jmm@inutil.org>, 303140@bugs.debian.org
Cc: control@bugs.debian.org
Subject: Bug#303140: CAN-2005-0937: DoS in futex handling
From: Horms <horms@debian.org>
Date: Tue, 5 Apr 2005 17:16:51 +0900
Message-id: <[🔎] 20050405081649.GF31640@verge.net.au>
Reply-to: Horms <horms@debian.org>, 303140@bugs.debian.org
In-reply-to: <[🔎] E1DIZTk-0002uo-Vi@localhost.localdomain>
References: <[🔎] E1DIZTk-0002uo-Vi@localhost.localdomain>

tag 303140 +pending
thanks

On Mon, Apr 04, 2005 at 11:51:28PM +0200, Moritz Muehlenhoff wrote:
> Package: kernel-source-2.6.8
> Version: 2.6.8-15
> Severity: important
> Tags: security
> 
> Hi,
> CAN-2005-0937 describes the following Denial-of-Service vulnerability:
> 
> Some futex functions in futex.c for Linux kernel 2.6.x perform get_user
> calls while holding the mmap_sem semaphore, which could allow local
> users to cause a deadlock condition in do_page_fault by triggering
> get_user faults while another thread is executing mmap or other functions.
> 
> Patch is available at:
> http://linux.bkbits.net:8080/linux-2.6/cset@421cfc11zFsK9gxvSJ2t__FCmuUd3Q    

Thanks, I have added this into SVN for 2.6.8. 
2.6.11 appears to already have the patch from upstream.
And futexes aren't in 2.4.27.

-- 
Horms

Reply to:

Follow-Ups:
- Processed: Re: Bug#303140: CAN-2005-0937: DoS in futex handling
  - From: owner@bugs.debian.org (Debian Bug Tracking System)

References:
- Bug#303140: CAN-2005-0937: DoS in futex handling
  - From: Moritz Muehlenhoff <jmm@inutil.org>

Prev by Date: Re: [PATCH 00/04] Load keyspan firmware with hotplug
Next by Date: Re: non-free firmware in kernel modules, aggregation and unclear copyright notice.
Previous by thread: Bug#303140: CAN-2005-0937: DoS in futex handling
Next by thread: Processed: Re: Bug#303140: CAN-2005-0937: DoS in futex handling
Index(es):
- Date
- Thread