Release date:
Updated on:
Affected Systems:
Linux kernel 2.6.0-2.6.37
Description:
--------------------------------------------------------------------------------
Bugtraq id: 44861
Cve id: CVE-2010-4169
Linux Kernel is the Kernel used by open source Linux.
Linux Kernels has a implementation vulnerability. Attackers can exploit this vulnerability to cause kernel crash and Local Denial of Service (DoS.
This vulnerability is caused by the error dab5855 ("perf_counter: Add mmap event hooks to mprotect ()"), because mprotect_fixup () can release "vma" due to merging ".
<* Source: Dave Jones (davej@RedHat.com)
*>
Suggestion:
--------------------------------------------------------------------------------
Vendor patch:
Linux
-----
The vendor has released a patch to fix this security problem. Please download it from the vendor's homepage:
Http://www.kernel.org/