Note: This is an archival copy of Security Sun Alert 200580 as previously published on http://sunsolve.sun.com.|
Latest version of this security advisory is available from http://support.oracle.com as Sun Alert 1000442.1.
Solaris 10 Operating System
Date of Resolved Release
An unprivileged local user within a Linux branded zone (see lx(5)) may be able to panic Solaris 10 x86 systems running in 64bit mode. Being able to panic a system is a type of Denial of Service (DoS).
The issue can occur in the following releases:
Note 1: This issue only occurs on systems with Linux branded zones (see lx(5)) installed. Solaris 8 and Solaris 9 do not provide support for Linux branded zones and are not impacted by this issue.
Note 2: This issue only affects systems running in 64-bit mode.
To determine if an lx(5) branded zone is installed on a Solaris system, the following command can be run:
$ zoneadm list -ip |cut -d: -f6 | grep lx || echo "No lx brand zones on system"
To determine if a system is running in 64-bit mode, the following command can be run:
$ isainfo -b 64
There are no predictable symptoms that would indicate the described issue has been exploited, other than the system panic itself.
There is no workaround for this issue. Please see the Resolution section below.
This issue is resolved in the following release:
This solution has no attachment