Note: This is an archival copy of Security Sun Alert 248026 as previously published on http://sunsolve.sun.com.|
Latest version of this security advisory is available from http://support.oracle.com as Sun Alert 1019875.1.
Solaris 8 Operating System
Solaris 9 Operating System
Solaris 10 Operating System
Date of Resolved Release
Security vulnerability in the Solaris IP(7p) implementation, related to minor number allocation, may lead to a Denial of Service (DoS) condition:
Security vulnerability within the Solaris IP(7p) (Internet Protocol) implementation related to the allocation of minor numbers may allow a local unprivileged user to open a large number of sockets, thereby resulting in a Denial of Service (DoS) condition to 32-bit applications. Depending on the system configuration, this may in turn affect the system as a whole, for example it may prevent new logins from completing successfully.
2. Contributing Factors
This issue can occur in the following releases:
$ uname -vNote 2: This issue only impacts applications running in 32-bit mode. To determine if an application is running in 32-bit mode, use the file(1) command on the executable associated with the application, as in the following example:
$file /usr/lib/inet/in.dhcpdIf the string "ELF 32-bit" is returned, it is a 32-bit application.
If the described issue occurs, users may not be able to login to the system and certain network services may fail. For example, on systems configured with NIS+(1), nis_cachemgr(1M) may fail with an error message similar to the following:
nis_cachemgr: nis_cast: t_open: /dev/udp:Not enough spaceSymptoms for other affected 32-bit applications will vary depending on the application.
There is no workaround for this issue. Please see the Resolution section below.
This issue is addressed in the following releases:
Copyright 2000-2009 Sun Microsystems, Inc., 4150 Network Circle, Santa Clara, CA 95054 U.S.A. All rights reserved.
This solution has no attachment