kernel-rt is vulnerable to denial of service. An off-by-two error was found in the set_selection() function of the Linux kernel. This could allow a local, unprivileged user to cause a denial of service when making a selection of characters in a UTF-8 console. Note: physical console access is required to exploit this issue.
lists.openwall.net/linux-kernel/2009/01/30/333
lists.openwall.net/linux-kernel/2009/02/02/364
secunia.com/advisories/34917
secunia.com/advisories/34981
secunia.com/advisories/35121
www.debian.org/security/2009/dsa-1787
www.debian.org/security/2009/dsa-1800
www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.28.4
www.openwall.com/lists/oss-security/2009/02/12/10
www.openwall.com/lists/oss-security/2009/02/12/11
www.openwall.com/lists/oss-security/2009/02/12/9
www.redhat.com/security/updates/classification/#important
www.redhat.com/support/errata/RHSA-2009-0451.html
www.securityfocus.com/bid/33672
www.ubuntu.com/usn/usn-751-1
access.redhat.com/errata/RHSA-2009:0451