Date: Sat, 11 Jun 2005 03:19:31 -0400 From: Kris Kennaway <kris@obsecurity.org> To: current@FreeBSD.org Subject: Memory modified after free; most recently used by cred Message-ID: <20050611071931.GA27432@xor.obsecurity.org>
next in thread | raw e-mail | index | archive | help
--3MwIy2ne0vdjdPXF Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Got this on a 12-processor machine under heavy load. I'll have to try and reproduce it with memguard (currently I have memguard looking for another use-after-free in the softupdates code). Kris Memory modified after free 0xfffff80015c58e00(248) val=fffff800 @ 0xfffff80015c58e38 panic: Most recently used by cred cpuid = 6 KDB: enter: panic [thread pid 13926 tid 100573 ] Stopped at kdb_enter+0x3c: ta %xcc, 1 db> wh Tracing pid 13926 tid 100573 td 0xfffff800680e5560 panic() at panic+0x16c mtrash_ctor() at mtrash_ctor+0x6c uma_zalloc_arg() at uma_zalloc_arg+0x110 malloc() at malloc+0x114 crget() at crget+0x10 crdup() at crdup+0x4 kern_access() at kern_access+0xc access() at access+0x10 syscall() at syscall+0x2d4 --3MwIy2ne0vdjdPXF Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.1 (FreeBSD) iD8DBQFCqpBZWry0BWjoQKURAr2JAJ9fuQGNev4tijXu0BbYUDzpbLxGwQCgkQxz fQE78BAAvEt0TiD6p/HxiU8= =eZL9 -----END PGP SIGNATURE----- --3MwIy2ne0vdjdPXF--
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20050611071931.GA27432>