Description of problem: This was introduced in 6c21a7fb4 (v2.6.33-rc1). It was first reported here http://lkml.org/lkml/2009/12/29/13, and subsequently here http://lkml.org/lkml/2010/2/5/76 (backtraces). This can be reproduced by running ltp test pipe07. http://groups.google.com/group/linux.kernel/msg/95986c94ea55c81a. https://bugzilla.redhat.com/show_bug.cgi?id=562597 Mainline fix: https://bugzilla.redhat.com/show_bug.cgi?id=562597#c3
How to mitigate against NULL pointer dereference vulnerabilities? http://kbase.redhat.com/faq/docs/DOC-20536
Created attachment 389395 [details] mainline fix
Upstream patch: http://git.kernel.org/linus/89068c576bf324ef6fbd50dfc745148f7def202c
This patch was not needed as the problem it fixed was not backported from upstream.