New Search

Race condition in the ptrace and utrace support in the Linux kernel 2.6.9 through 2.6.25 as used in Red Hat Enterprise Linux (RHEL) 4 allows local users to cause a denial of service (oops) via a long series of PTRACE_ATTACH ptrace calls to another user's process that trigger a conflict between utrace_detach and report_quiescent related to "late ptrace_may_attach() check" and "race around dead_engine_ops setting" a different vulnerability than CVE-2007-0771 and CVE-2008-1514. NOTE: this issue might only affect kernel versions before 2.6.16.x.

oval:org.mitre.oval:def:10749

Race condition in the ptrace and utrace support in the Linux kernel 2.6.9 through 2.6.25 as used in Red Hat Enterprise Linux (RHEL) 4 allows local users to cause a denial of service (oops) via a long series of PTRACE_ATTACH ptrace calls to another user's process that trigger a conflict between utrace_detach and report_quiescent related to "late ptrace_may_attach() check" and "race around &dead_engine_ops setting" a different vulnerability than CVE-2007-0771 and CVE-2008-1514. NOTE: this issue might only affect kernel versions before 2.6.16.x.

Family:
unix
Status:
ACCEPTED
Platform(s):
  • Oracle Linux 4
  • Red Hat Enterprise Linux 4
  • CentOS Linux 4
Class:
vulnerability
Reference(s):
  • CVE-2008-2365
Product(s):