Note: This is an archival copy of Security Sun Alert 201931 as previously published on http://sunsolve.sun.com.|
Latest version of this security advisory is available from http://support.oracle.com as Sun Alert 1001428.1.
Solaris 9 Operating System
Solaris 2.6 Operating System
Solaris 7 Operating System
Solaris 8 Operating System
Date of Resolved Release
A local unprivileged user may be able to gain unauthorized root privileges due to a security vulnerability in libraries associated with the PGX32 Frame Buffer.
This issue can occur in the following releases:
Note: Solaris on the x86 platform is not affected.
This issue only occurs when a PGX32 frame buffer is installed. To verify if a Sun system is equipped with a PGX32 frame buffer, use the "/usr/platform/`uname -m`/sbin/prtdiag" command. An output line containing "TSI,gfxp" in the "Name" column indicates that a PGX32 frame buffer is installed.
There are no predictable symptoms that would show the described issue has been exploited.
There is no workaround. Please see the "Resolution" section below.
This issue is addressed in the following releases:
This solution has no attachment