OpenBSD Pipe VFS Race Condition Denial Of Service Vulnerability

OpenBSD is a BSD based operating system maintained and distributed by the OpenBSD project. OpenBSD has been designed as a secure implementation of the BSD Operating System, and offers numerous security features.

A problem in the kernel could make it possible for a local user to cause a kernel panic. A thread within a process may open a pipe, creating two file descriptors. It is possible for another thread to set one of the file descriptors to null, causing a kernel panic when the blocking process dereferences the file descriptors used for the pipe.

Therefore, it possible for a local user to cause a kernel panic, thus denying service to legitmate users of the system.


 

Privacy Statement
Copyright 2010, SecurityFocus