← Back to team overview

kernel-packages team mailing list archive

[Bug 1326367] Re: exploitable futex vulnerability


** Information type changed from Private Security to Public Security

You received this bug notification because you are a member of Kernel
Packages, which is subscribed to linux in Ubuntu.

  exploitable futex vulnerability

Status in “linux” package in Ubuntu:

Bug description:
  If uaddr == uaddr2, then we have broken the rule of only requeueing from
  a non-pi futex to a pi futex with this call. If we attempt this, then
  dangling pointers may be left for rt_waiter resulting in an exploitable

To manage notifications about this bug go to: