Note: This is an archival copy of Security Sun Alert 201059 as previously published on http://sunsolve.sun.com.|
Latest version of this security advisory is available from http://support.oracle.com as Sun Alert 1000782.1.
Solaris 9 Operating System
Solaris 10 Operating System
Solaris 8 Operating System
Date of Resolved Release
A security vulnerability in the Human Interface Device (HID) class driver for Solaris 8, 9 and 10 may allow a local unprivileged user to panic the system, causing a Denial of Service (DoS).
This issue can occur in the following releases:
To determine if the HID module is loaded, the following command can be run:
$ modinfo | grep hid 84 138cc18 36d8 54 1 hid (USB HID Client Driver 1.36) 85 138f938 32e8 - 1 hidparser (HID PARSER 1.13)
A system panic due to this issue will contain a stack trace similar to the following:
freemsg+0x46() hid_qreply_merror+0x44() hid_wput+0x19f() putnext+0x31a() usbms_wput+0xc3() putnext+0x31a() consmslwserv+0x3d() runservice+0x62() queue_service+0x5b() stream_service+0xe8() taskq_d_thread+0xe8() thread_start+8()
There is no workaround for this issue. Please see the Resolution section below.
This issue is addressed in the following releases:
This solution has no attachment