The futex_lock_pi function in kernel/futex.c in the Linux kernel before
2.6.33-rc7 does not properly manage a certain reference count, which allows
local users to cause a denial of service (OOPS) via vectors involving an
unmount of an ext3 filesystem.
Updated: 2015-10-17 03:34:26 UTC (commit 10086)