Candidate: CVE-2010-2960
Description: keyctl_session_to_parent null ptr deref
References:
Notes:
 Patches (not in upstream yet):
 https://bugzilla.redhat.com/show_bug.cgi?id=627440#c4
 https://bugzilla.redhat.com/show_bug.cgi?id=627440#c5
 Introduced via upstream commit ee18d64c (v2.6.32-rc1)
 https://bugzilla.redhat.com/CVE-2010-2960
 https://bugzilla.redhat.com/show_bug.cgi?id=627440#c3
Bugs:
upstream: released (2.6.36-rc4) [9d1ac65, 3d96406]
2.6.32-upstream-stable: released (2.6.32.23)
linux-2.6: released (2.6.32-23) [bugfix/all/keys-fix-RCU-no-lock-warning-in-keyctl_session_to_parent.patch, bugfix/all/keys-fix-bug-in-keyctl_session_to_parent-if-parent-has-no-session-keyring.patch]
2.6.26-lenny-security: N/A
2.6.32-squeeze-security: released (2.6.32-23) [bugfix/all/keys-fix-RCU-no-lock-warning-in-keyctl_session_to_parent.patch, bugfix/all/keys-fix-bug-in-keyctl_session_to_parent-if-parent-has-no-session-keyring.patch]