[kernel-sec-discuss] r1415 - active
Dann Frazier
dannf at alioth.debian.org
Mon Jul 6 04:23:45 UTC 2009
Author: dannf
Date: 2009-07-06 04:23:43 +0000 (Mon, 06 Jul 2009)
New Revision: 1415
Modified:
active/CVE-2009-1388
Log:
remove empty lines so deb822 can parse
Modified: active/CVE-2009-1388
===================================================================
--- active/CVE-2009-1388 2009-07-06 02:54:54 UTC (rev 1414)
+++ active/CVE-2009-1388 2009-07-06 04:23:43 UTC (rev 1415)
@@ -2,15 +2,15 @@
Description:
The OpenVZ Linux kernel team has found deadlock between ptrace and
coredump code. It affects 2.6.18 but does not affect the upstream kernel.
-
+ .
"ptrace_start() spins waiting for child->state ==
TASK_TRACED/TASK_STOPPED. If we race with the coredumping, we have to
wait until it completes.
-
+ .
If the tracer participates in coredumping too, we deadlock.
do_coredump() waits for tracer to exit and report
complete(mm->core_startup_done), the tracer spins in an endless loop.
-
+ .
Change ptrace_start() to abort if child->mm->core_waiters != 0."
References:
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2009-1388
More information about the kernel-sec-discuss
mailing list