An use-after-free flaw has been found in the way taskstat's TASKSTATS_CMD_ATTR_PID command and exiting tasks with already freed mm interacted. An unprivileged local user could use this flaw to crash the system or leak kernel memory. Upstream fix: http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commitdiff;h=f0ec1aaf54caddd21c259aea8b2ecfbde4ee4fb9 References: http://bugzilla.openvz.org/show_bug.cgi?id=2294 Acknowledgements: Red Hat would like to thank Alexander Peslyak for reporting this issue.
Statement: This issue did not affect the versions of the Linux kernel as shipped with Red Hat Enterprise Linux 6 and Red Hat Enterprise MRG as they already contain upstream commit f0ec1aaf54cadd that fixed this issue.
This issue has been addressed in following products: Red Hat Enterprise Linux 5 Via RHSA-2012:1323 https://rhn.redhat.com/errata/RHSA-2012-1323.html