Deadlock Vulnerability in futex.c for Linux Kernel 2.6.x

Deadlock Vulnerability in futex.c for Linux Kernel 2.6.x

CVE-2005-0937 · LOW Severity

AV:L/AC:H/AU:N/C:N/I:N/A:P

Some futex functions in futex.c for Linux kernel 2.6.x perform get_user calls while holding the mmap_sem semaphore, which could allow local users to cause a deadlock condition in do_page_fault by triggering get_user faults while another thread is executing mmap or other functions.

Learn more about our Cis Benchmark Audit For Distribution Independent Linux.