The futex_lock_pi function in kernel/futex.c in the Linux kernel before
2.6.33-rc7 does not properly manage a certain reference count, which allows
local users to cause a denial of service (OOPS) via vectors involving an
unmount of an ext3 filesystem.
Updated: 2016-01-26 17:35:34 UTC (commit 10507)