Note: This is an archival copy of Security Sun Alert 200443 as previously published on http://sunsolve.sun.com.|
Latest version of this security advisory is available from http://support.oracle.com as Sun Alert 1000324.1.
Solaris 10 Operating System
Date of Resolved Release
A local unprivileged user running find(1) against the "/proc" filesystem may panic the system, creating a Denial of Service (DoS) condition.
This issue can occur in the following releases:
Note: Solaris 8 and 9 are not affected by this issue.
This issue can occur when the find(1) command is run by an unprivileged user to search the "/proc" file system.
The system will panic with a stack trace similar to the following:
recursive rw_enter, lp=XXXXXXXXXXX wwwh=XXXXXXXXXXX thread=XXXXXXXXXXX vpanic() as_fault() pagefault() trap() ktl0() uiomove() gfs_readdir_emit_int() gfs_readdir_pred() pr_readdir_objectdir() getdents64() syscall_trap32()
(where XXXXXXXXXXXX are hexadecimal numbers).
There is no workaround to this issue. Please see the Resolution section below.
This issue is addressed in the following releases:
This solution has no attachment