Note: This is an archival copy of Security Sun Alert 200045 as previously published on http://sunsolve.sun.com.|
Latest version of this security advisory is available from http://support.oracle.com as Sun Alert 1000037.1.
Solaris 10 Operating System
Date of Resolved Release
A security vulnerability in the Solaris 10 Virtual File System (VFS) may allow a local unprivileged user to exhaust all kernel memory, thereby causing a Denial of Service (DoS) to the system as a whole.
This issue can occur in the following releases:
Note: Solaris 8 and Solaris 9 are not affected by this issue.
If the described issue occurs, the system will slow down considerably and eventually become unresponsive.
When the system is slow but not unresponsive, the vmstat(1M) utility can be used to ascertain the occurrence of this issue. The following command can be run to query the virtual memory usage on the system every 3 seconds:
$ vmstat 3
Should the described issue occur, the "free" column under the "memory" section of the output reduces quickly to less than 1% of the physical memory available on the system.
There is no workaround. Please see the "Resolution" section below.
This issue is addressed in the following releases:
This solution has no attachment