Note: This is an archival copy of Security Sun Alert 263689 as previously published on http://sunsolve.sun.com.|
Latest version of this security advisory is available from http://support.oracle.com as Sun Alert 1020726.1.
6844213, 6845488, 6845490, 6858545, 6858546, 6865681, 6875540, 6877439, 6878799, 6902320, 6902321, 6911815, 6918300, 6900032
Solaris 10 Operating System
Date of Resolved Release
This Alert covers CVE-2010-0882 for the Trusted Extensions component of the Solaris and OpenSolaris products.
Please see http://www.oracle.com/technology/deploy/security/alerts.htm
for more information about Critical Patch Updates and Security Alerts.
This publication relates to the CPU for April 2010.
2. Contributing Factors
This issue can occur in the following releases:
Note 2: A system is only vulnerable to this issue if Trusted Extensions is turned on. To determine if a system is configured with Trusted Extensions, the following command can be run:
$ svcs /system/labeldIf the state is disabled or if the "/system/labeld" service is not listed, then the system is not configured to use Trusted Extensions.
Note 3: OpenSolaris distributions may include additional bug fixes above and beyond the build from which it was derived. To determine the base build of OpenSolaris, the following command can be used:
$ uname -v
This issue is addressed in the following releases:
This solution has no attachment