Note: This is an archival copy of Security Sun Alert 240706 as previously published on http://sunsolve.sun.com.|
Latest version of this security advisory is available from http://support.oracle.com as Sun Alert 1019535.1.
Solaris 8 Operating System
Solaris 9 Operating System
Solaris 10 Operating System
Date of Resolved Release
Covert Channel Security Vulnerability in the Solaris Kernel:
A security vulnerability with system calls in the Solaris Kernel may allow two unprivileged local user processes to establish a covert communication channel bypassing system restrictions such as the multi-level security policy found in Solaris Trusted Extensions or the isolation policy implemented using zones(5) or chroot(2).
2. Contributing Factors
This issue can occur in the following releases:
To determine the base build of OpenSolaris, the following command can be used:
$ uname -v3. Symptoms
There are no predictable symptoms that would indicate the described issue has been exploited to establish a covert communication channel.
There is no workaround for this issue. Please see the Resolution section below.
This issue is resolved in the following releases:
Copyright 2000-2008 Sun Microsystems, Inc., 4150 Network Circle, Santa Clara, CA 95054 U.S.A. All rights reserved.
28-Aug-2008: Updated the Resolution section
This solution has no attachment