Note: This is an archival copy of Security Sun Alert 200718 as previously published on http://sunsolve.sun.com.|
Latest version of this security advisory is available from http://support.oracle.com as Sun Alert 1000569.1.
Solaris 10 Operating System
Date of Resolved Release
A security vulnerability in Solaris 10 related to the acl(2) system call may allow a local unprivileged user to cause the system to panic, resulting in a denial of service (DoS) to the system.
Sun acknowledges with thanks, iDefense (http://www.idefense.com), for bringing this issue to our attention.
This issue is also described in the following document:
This issue can occur in the following releases:
Note: Solaris 8 and 9 are not affected by this issue.
Should the described issue occur, the system may panic with a stack trace similar to the following:
unix:panicsys+0x48 unix:vpanic_common+0x78 unix:panic+0x1c genunix:vmem_xalloc+0x8b0 genunix:vmem_alloc+0x1d4
There is no workaround for this issue. Please see the Resolution section below.
This issue is addressed in the following releases:
This solution has no attachment