Note: This is an archival copy of Security Sun Alert 200316 as previously published on http://sunsolve.sun.com.|
Latest version of this security advisory is available from http://support.oracle.com as Sun Alert 1000239.1.
Solaris 9 Operating System
Solaris 7 Operating System
Solaris 8 Operating System
Date of Resolved Release
A buffer overflow in newgrp(1) may allow a local unprivileged user the ability to gain root privileges.
This issue can occur in the following releases:
Note: Solaris 10 is not affected by this issue.
There are no predictable symptoms that would indicate the described issue has been exploited.
To work around the described issue, sites may wish to remove the "setuid" permissions from the newgrp(1) utility until patches can be applied to the system. This can be done by issuing the following command:
# chmod u-s /usr/bin/newgrp
Note: Removing the set-user-ID bit from the newgrp(1) utility will prevent unprivileged users from using the newgrp(1) command.
This issue is addressed in the following releases:
This solution has no attachment