Note: This is an archival copy of Security Sun Alert 249146 as previously published on http://sunsolve.sun.com.|
Latest version of this security advisory is available from http://support.oracle.com as Sun Alert 1019927.1.
Solaris 9 Operating System
Solaris 10 Operating System
Date of Workaround Release
Date of Resolved Release
The Solaris rpc.metad(1M) Daemon is Vulnerable to a Denial of Service (DoS) Attack
A security vulnerability in rpc.metad(1M) may allow a local or remote unprivileged user to crash rpc.metad(1M), resulting in failure of the service and causing Solaris Volume Manager (SVM) commands to fail. This is a type of Denial-of-Service (DoS).
This issue is referenced in the following document:
2. Contributing Factors
This issue can occur in the following releases:
OpenSolaris distributions may include additional bug fixes above and beyond the build from which it was derived.
The base build can be derived as follows:
$ uname -v
Should the described issue occur, rpc.metad(1M) exits unexpectedly and may also generate a core file.
There may also be system error messages similar to the following:
rpc.metad: [ID 702911 daemon.error] Segmentation Fault/usr/sbin/metaset commands on remote hosts fail with:
metaset: <remote host>: metad client create: RPC: Program not registered/usr/sbin/meteaset commands on the local host fail with:
metaset: <local host>: network/rpc/meta:default: service not online in SMF/usr/bin/pstack on the resulting core file will show a stack similar to the following:
# /usr/bin/pstack /core
There is no workaround for this issue. However, it may be possible to recover from the Denial of Service condition using the following method:
Verify that rpc.metad is not running:
For Solaris 8 and 9:
# pgrep -lf rpc.metad || /usr/sbin/rpc.metad
then restart rpc.metad as follows:
For Solaris 10 and OpenSolaris:
# pgrep -lf rpc.metad || svcadm clear network/rpc/meta
This issue is addressed in the following releases:
Copyright 2000-2009 Sun Microsystems, Inc., 4150 Network Circle, Santa Clara, CA 95054 U.S.A. All rights reserved.
06-May-2009: Updated Contributing Factors and Resolution sections; issue is Resolved
This solution has no attachment