Note: This is an archival copy of Security Sun Alert 247986 as previously published on http://sunsolve.sun.com.|
Latest version of this security advisory is available from http://support.oracle.com as Sun Alert 1019873.1.
Solaris 8 Operating System
Solaris 9 Operating System
Solaris 10 Operating System
Date of Workaround Release
Date of Resolved Release
Security vulnerability in aio_suspend(3RT) may lead to a system panic, resulting in a Denial of Service (DoS):
An integer overflow security vulnerability in aio_suspend(3RT) may allow a local unprivileged user to panic systems running in 32 bit mode, thereby resulting in a Denial of Service (DoS) condition.
This issue is also mentioned in the following document:
http://www.trapkit.de/) for bringing this issue to our attention.
2. Contributing Factors
This issue can occur in the following releases:
Note 2: OpenSolaris distributions may include additional bug fixes above and beyond the build from which it was derived. To determine the base build of OpenSolaris, the following command can be used:
$ uname -vNote 3: This issue only impacts systems that are running in 32 bit mode. To determine if a system is running in 32 bit mode, execute the following command:
$ isainfo -bIf "32" is returned, the system is running in 32-bit mode.
If the described issue occurs, the system may panic with a stack trace similar to the following:
There is no workaround for this issue. Please see the Resolution section below.
This issue is addressed in the following releases:
Copyright 2000-2008 Sun Microsystems, Inc., 4150 Network Circle, Santa Clara, CA 95054 U.S.A. All rights reserved.
12-Jan-2009: Updated Contributing Factors and Resolution sections. Resolved.
This solution has no attachment