Bug 213567 - Access to unmapped vmalloc pages when reading proc/kcore
Summary: Access to unmapped vmalloc pages when reading proc/kcore
Keywords:
Status: CLOSED ERRATA
Alias: None
Product: Red Hat Enterprise Linux 2.1
Classification: Red Hat
Component: kernel
Version: 2.1
Hardware: i386
OS: Linux
medium
medium
Target Milestone: ---
Assignee: Don Howard
QA Contact: Brian Brock
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+ depends on / blocked
 
Reported: 2006-11-02 00:17 UTC by Don Howard
Modified: 2007-11-30 22:06 UTC (History)
0 users

Fixed In Version: RHSA-2007-0013
Doc Type: Bug Fix
Doc Text:
Clone Of:
Environment:
Last Closed: 2007-01-17 10:15:16 UTC
Target Upstream Version:
Embargoed:


Attachments (Terms of Use)
Don't use vmalloc in proc_file_read(). (898 bytes, patch)
2006-11-02 00:21 UTC, Don Howard
no flags Details | Diff


Links
System ID Private Priority Status Summary Last Updated
Red Hat Product Errata RHSA-2007:0013 0 normal SHIPPED_LIVE Moderate: kernel security update 2007-01-17 10:13:36 UTC

Description Don Howard 2006-11-02 00:17:55 UTC
While testing patches for BZ #14766 I found that 2.1 crashes reliably when more
than one process reads /proc/kcore:

$ while true; do cat /proc/kcore > /tmp/kcore; done&
$ while true; do cat /proc/kcore > /dev/null; done&

Derry, RHEL3, and later don't exhibit this problem.

Comment 1 Don Howard 2006-11-02 00:21:16 UTC
Created attachment 140058 [details]
Don't use vmalloc in proc_file_read().

Comment 4 Mike Gahagan 2006-12-19 19:59:19 UTC
I couldn't recreate the crash with e.70, however I have verified that the fix is
in as part of linux-2.4.26-updates.patch and that patch is being applied in e.71.



Comment 6 Red Hat Bugzilla 2007-01-17 10:15:16 UTC
An advisory has been issued which should help the problem
described in this bug report. This report is therefore being
closed with a resolution of ERRATA. For more information
on the solution and/or where to find the updated files,
please follow the link below. You may reopen this bug report
if the solution does not work for you.

http://rhn.redhat.com/errata/RHSA-2007-0013.html



Note You need to log in before you can comment on or make changes to this bug.