Bug 187841 - CVE-2006-1855 Old thread debugging causes false BUG() in choose_new_parent
Summary: CVE-2006-1855 Old thread debugging causes false BUG() in choose_new_parent
Alias: None
Product: Red Hat Enterprise Linux 4
Classification: Red Hat
Component: kernel   
(Show other bugs)
Version: 4.0
Hardware: i686
OS: Linux
Target Milestone: ---
: ---
Assignee: Jason Baron
QA Contact: Brian Brock
Whiteboard: source=bugzilla,reported=20060403,imp...
Keywords: Security
Depends On:
TreeView+ depends on / blocked
Reported: 2006-04-03 20:48 UTC by David Thompson
Modified: 2013-03-06 05:59 UTC (History)
3 users (show)

Fixed In Version: RHSA-2006-0493
Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of:
Last Closed: 2006-05-24 09:29:00 UTC
Type: ---
Regression: ---
Mount Type: ---
Documentation: ---
Verified Versions:
Category: ---
oVirt Team: ---
RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: ---

Attachments (Terms of Use)
discussion and code snippets (4.12 KB, text/plain)
2006-04-03 20:48 UTC, David Thompson
no flags Details
panic trace (1.07 KB, text/plain)
2006-04-04 15:53 UTC, Jason Baron
no flags Details
here is the upstream fix (908 bytes, patch)
2006-04-04 16:10 UTC, Jason Baron
no flags Details | Diff

External Trackers
Tracker ID Priority Status Summary Last Updated
Red Hat Product Errata RHSA-2006:0493 normal SHIPPED_LIVE Important: kernel security update 2006-05-24 04:00:00 UTC

Description David Thompson 2006-04-03 20:48:20 UTC
Description of problem:

From Nathan Rosenblum <nater@cs.wisc.edu>:

I have identified a bug in the linux kernel 
that causes this kernel panic on my machine. More details are below, but 
the executive summary is this: the code that triggers the bug appears to 
have been eliminated in, but I have not tested on the 
intervening releases between 2.6.9 and that version, so I cannot 
guarantee that it was not fixed previous to  It is unclear 
whether the developer that made the change in that version was aware of 
the severity of the problem, or even if a problem existed; the commit 
comments suggest that the change was only cleanup.  This is apparently 
left-over debugging code that is stripped out in

Version-Release number of selected component (if applicable):


How reproducible:


Steps to Reproduce:

See attachments
Actual results:

Crashed kernel

Expected results:

Running kernel

Comment 1 David Thompson 2006-04-03 20:48:21 UTC
Created attachment 127259 [details]
discussion and code snippets

Comment 2 Jason Baron 2006-04-04 15:53:30 UTC
Created attachment 127301 [details]
panic trace

Comment 3 Jason Baron 2006-04-04 16:10:36 UTC
Created attachment 127302 [details]
here is the upstream fix

Comment 8 Paul Gampe 2006-05-18 18:38:18 UTC
Reviewed with Jay and Linda, approved exception moving to CanFix.

Comment 10 Jason Baron 2006-05-22 19:14:16 UTC
committed in stream U4 build 36.1. A test kernel with this patch is available
from http://people.redhat.com/~jbaron/rhel4/

Comment 12 Red Hat Bugzilla 2006-05-24 09:29:00 UTC
An advisory has been issued which should help the problem
described in this bug report. This report is therefore being
closed with a resolution of ERRATA. For more information
on the solution and/or where to find the updated files,
please follow the link below. You may reopen this bug report
if the solution does not work for you.


Note You need to log in before you can comment on or make changes to this bug.