The futex_lock_pi function in kernel/futex.c in the Linux kernel before
2.6.33-rc7 does not properly manage a certain reference count, which allows
local users to cause a denial of service (OOPS) via vectors involving an
unmount of an ext3 filesystem.
Updated: 2015-07-29 20:37:56 UTC (commit 9756)