Note: This is an archival copy of Security Sun Alert 200480 as previously published on http://sunsolve.sun.com.|
Latest version of this security advisory is available from http://support.oracle.com as Sun Alert 1000358.1.
Solaris 10 Operating System
Date of Resolved Release
Multiple security vulnerabilities in Solaris 10 SCTP Socket Option Processing (see sctp(7P)) may allow an unprivileged local user to panic the system, resulting in a Denial of Service (DoS).
These issues can occur in the following releases:
Note: Solaris 7 will not be evaluated regarding the potential impact of the issue described in this Sun Alert. Solaris 8 and 9 are not impacted by this issue.
The system may panic with a stack trace similar to the following:
... vpanic() sosctp_setsockopt() setsockopt() ...
There is no workaround. Please see the Resolution section below.
These issues are addressed in the following releases:
This solution has no attachment