CVE-2010-0623

Published: Feb 15, 2010Modified: Apr 29, 2026

4.9

Vector

AV:L/AC:L/Au:N/C:N/I:N/A:C

Exploitability: 3.9 / Impact: 6.9

Source: NVD

Description

The futex_lock_pi function in kernel/futex.c in the Linux kernel before 2.6.33-rc7 does not properly manage a certain reference count, which allows local users to cause a denial of service (OOPS) via vectors involving an unmount of an ext3 filesystem.

Affected (14)

Products: Linux: Linux Kernel · Opensuse: Opensuse · Canonical: Ubuntu Linux

1 product

1 product

1 product

Configuration A

8 vulnerable

Vulnerable Software	Affected Versions
Linux Linux Kernel	Before 2.6.33
Linux Linux Kernel	Version 2.6.33
Linux Linux Kernel	Version 2.6.33 rc1
Linux Linux Kernel	Version 2.6.33 rc2
Linux Linux Kernel	Version 2.6.33 rc3
Linux Linux Kernel	Version 2.6.33 rc4
Linux Linux Kernel	Version 2.6.33 rc5
Linux Linux Kernel	Version 2.6.33 rc6

Configuration B

1 vulnerable

Vulnerable Software	Affected Versions
Opensuse Opensuse	Version 11.2

Configuration C

5 vulnerable

Vulnerable Software	Affected Versions
Canonical Ubuntu Linux	Version 6.06
Canonical Ubuntu Linux	Version 8.04
Canonical Ubuntu Linux	Version 8.10
Canonical Ubuntu Linux	Version 9.04
Canonical Ubuntu Linux	Version 9.10

References (18)

http://bugzilla.kernel.org/show_bug.cgi?id=14256

Source: cve@mitre.org

Issue TrackingPatchVendor Advisory

http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=5ecb01cfdf96c5f465192bdb2a4fd4a61a24c6cc

Source: cve@mitre.org

http://lists.opensuse.org/opensuse-security-announce/2010-03/msg00006.html

Source: cve@mitre.org

Mailing ListThird Party Advisory

http://secunia.com/advisories/38922

Source: cve@mitre.org

Third Party Advisory

http://www.kernel.org/pub/linux/kernel/v2.6/testing/ChangeLog-2.6.33-rc7

Source: cve@mitre.org

Broken Link

http://www.mandriva.com/security/advisories?name=MDVSA-2010:088

Source: cve@mitre.org

Third Party Advisory

http://www.openwall.com/lists/oss-security/2010/02/11/2

Source: cve@mitre.org

Mailing ListThird Party Advisory

http://www.ubuntu.com/usn/USN-914-1

Source: cve@mitre.org

Third Party Advisory

http://www.vupen.com/english/advisories/2010/0638

Source: cve@mitre.org

Third Party Advisory

http://bugzilla.kernel.org/show_bug.cgi?id=14256

Source: af854a3a-2127-422b-91ae-364da2661108

Issue TrackingPatchVendor Advisory

http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=5ecb01cfdf96c5f465192bdb2a4fd4a61a24c6cc

Source: af854a3a-2127-422b-91ae-364da2661108

http://lists.opensuse.org/opensuse-security-announce/2010-03/msg00006.html

Source: af854a3a-2127-422b-91ae-364da2661108

Mailing ListThird Party Advisory

http://secunia.com/advisories/38922

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

http://www.kernel.org/pub/linux/kernel/v2.6/testing/ChangeLog-2.6.33-rc7

Source: af854a3a-2127-422b-91ae-364da2661108

Broken Link

http://www.mandriva.com/security/advisories?name=MDVSA-2010:088

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

http://www.openwall.com/lists/oss-security/2010/02/11/2

Source: af854a3a-2127-422b-91ae-364da2661108

Mailing ListThird Party Advisory

http://www.ubuntu.com/usn/USN-914-1

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

http://www.vupen.com/english/advisories/2010/0638

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

Timeline

No history available yet.