The kernel in Red Hat Enterprise Linux 3, when running on SMP systems, allows local users to cause a denial of service (deadlock) by running the shmat function on an shm at the same time that shmctl is removing that shm (IPC_RMID), which prevents a spinlock from being unlocked.
https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=205618
http://secunia.com/advisories/22497
http://secunia.com/advisories/23064
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9649
http://support.avaya.com/elmodocs2/security/ASA-2006-254.htm
Published: 2006-10-17
Base Score: 4
Vector: CVSS2#AV:L/AC:H/Au:N/C:N/I:N/A:C
Severity: Medium