Note: This is an archival copy of Security Sun Alert 200390 as previously published on http://sunsolve.sun.com.|
Latest version of this security advisory is available from http://support.oracle.com as Sun Alert 1000275.1.
Solaris 9 Operating System
Solaris 8 Operating System
Date of Workaround Release
Date of Resolved Release
A security vulnerability in the Solaris 8 and 9 IP implementation may allow a remote unprivileged user to degrade the performance of a networked Solaris system by sending specially crafted IP packets. This could result in a mild Denial of Service (DoS) against network services provided by the system and/or local services, due to increased CPU usage.
This issue can occur in the following releases:
Note: Solaris 10 is not affected by this issue.
Solaris 8 and 9 systems may see high numbers of duplicate IP fragments and/or high number of reassembly failures of IP fragments. For example, running the command:
% /usr/bin/netstat -s | /usr/bin/egrep 'ReasmDuplicates|ReasmFails'
may show high value for counters ip[v6]ReasmDuplicates and ip[v6]ReasmFails.
Further, Solaris 8 and 9 systems with a single processor may see a noticeable increase in CPU usage. For example the vmstat(1M) 'sy' column may show a high percentage of CPU time being spent in kernel.
There is no workaround for this issue. Please see the Resolution section below.
This issue is addressed in the following releases:
Note: Patches previously listed here for resolution to this issue (116965-26, 114344-25, 116966-25, 119435-15) have been withdrawn and are no longer available on SunSolve. Please see Sun Alert 103023 for more details.
This solution has no attachment