Linux 2.6.x gfs2 filesystem code fails to properly handle corrupted data structures, leading to an exploitable denial of service issue when a crafted stream is being mounted. This particular vulnerability is caused by a NULL pointer dereference in the init_journal function.
Appears to be unfixed and unreported, filed a bug upstream: http://bugzilla.kernel.org/show_bug.cgi?id=7738
*** Bug 155355 has been marked as a duplicate of this bug. ***
This one took some digging Proposed metadata: [linux < 2.6.21] via: http://tree.celinuxforum.org/gitstat/commit-detail.php?commit=6c93fd1e578669364e026a0d44c669b871e2a8c4 https://bugzilla.redhat.com/show_bug.cgi?id=217008 http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.21 [gp < 2.6.21-1] [gentoo < 2.6.21] git commit id 6c93fd1e578669364e026a0d44c669b871e2a8c4