Published: 07 March 2012
The mem_cgroup_usage_unregister_event function in mm/memcontrol.c in the Linux kernel before 3.2.10 does not properly handle multiple events that are attached to the same eventfd, which allows local users to cause a denial of service (NULL pointer dereference and system crash) or possibly have unspecified other impact by registering memory threshold events.
From the Ubuntu security team
A flaw was discovered in the Linux kernel's cgroups subset. A local attacker could use this flaw to crash the system.
CVSS 3 base score: 5.5
Upstream commit: 371528c (3.3-rc5)
this functionality appears in the commit below, added break-fix: 2e72b6347c9459e6cff5634ddc815485bae6985f