Note: This is an archival copy of Security Sun Alert 200822 as previously published on http://sunsolve.sun.com.|
Latest version of this security advisory is available from http://support.oracle.com as Sun Alert 1000621.1.
Solaris 8 Operating System
Date of Resolved Release
An unprivileged local user may be able to induce a kernel memory leak on a Solaris 8 system due to a security vulnerability in the lofiadm(1M) command. As a result of the kernel memory leak, the system performance will degrade and the system may hang, causing a denial of service.
This issue can occur in the following releases:
Note: Solaris 9 is not impacted by this issue. Solaris 2.6 and Solaris 7 do not support the lofi(7M) driver, and therefore are not impacted.
If the described issue occurs, the system will experience poor response to any user interactions and in some cases may hang.
There is no workaround. Please see the "Resolution" section below.
This issue is addressed in the following releases:
This solution has no attachment