Description
The kernel in Red Hat Enterprise Linux 3, when running on SMP systems, allows local users to cause a denial of service (deadlock) by running the shmat function on an shm at the same time that shmctl is removing that shm (IPC_RMID), which prevents a spinlock from being unlocked.
CVSS breakdown
CVSS 3.1
Attack Vector
Local
Attack Complexity
Low
Privileges Required
Low
User Interaction
None
Scope
Unchanged
Confidentiality
None
Integrity
None
Availability
High
Affected products
- RedHat / enterprise_linux3.0 – 3.0
References
- MISChttp://www.kb.cert.org/vuls/id/245984
- MISChttps://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9649
- MISChttps://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=205618
- VENDOR_ADVISORYhttp://secunia.com/advisories/23064
- MISChttp://support.avaya.com/elmodocs2/security/ASA-2006-254.htm
- VENDOR_ADVISORYhttp://secunia.com/advisories/22497
- MISChttp://www.redhat.com/support/errata/RHSA-2006-0710.html