Note: This is an archival copy of Security Sun Alert 200103 as previously published on http://sunsolve.sun.com.|
Latest version of this security advisory is available from http://support.oracle.com as Sun Alert 1000087.1.
Solaris 10 Operating System
Date of Resolved Release
A remote priviledged or unpriviledged user may be able to trigger a race condition in the TCP subsystem which can result in a system panic. The ability to panic a system is a type of Denial of Service (DoS).
This issue can occur in the following releases:
Note: Solaris 8 and 9 are not impacted by this issue.
One of the following stack traces are seen:
------ tcp_clean_death+0xb8() tcp_rput_data+0x1284() squeue_enter_chain+0x90() ip_input+0x824() putnext+0x218() ce_drain_fifo+0x52e4() thread_start+4() -------- -------- tcp_drop_q0+0x120() tcp_conn_request+0x108() squeue_drain+0x134() squeue_enter_chain+0x350() ip_input+0x824() putnext+0x218() ce_drain_fifo+0x52e4() thread_start+4() ------
There is no workaround. Please see the "Resolution" section below.
This solution has no attachment