Note: This is an archival copy of Security Sun Alert 264608 as previously published on http://sunsolve.sun.com.|
Latest version of this security advisory is available from http://support.oracle.com as Sun Alert 1020773.1.
Solaris 8 Operating System
Solaris 9 Operating System
Date of Resolved Release
A Security Vulnerability in the Solaris Print Service (in.lpd(1M)) May Lead to a Denial of Service (DoS) Condition
A security vulnerability in the Solaris print service (see in.lpd(1M)) may allow a local or remote unprivileged user to cause the system to slow down and become unresponsive. This is a type of Denial of Service (DoS).
2. Contributing Factors
This issue can occur in the following releases:
1. Solaris 8 entered EOSL Phase 2 on 1 April 2009. Entitlement to patches developed on or after 1 April 2009 requires the purchase of the Solaris 8 Vintage Patch Service. See note in section 5 for more details.
2. Solaris 10 and OpenSolaris are not impacted by this issue.
If the described issue occurs, the system may slow down or become completely unresponsive.
To workaround the described issue until the resolution patches can be applied, the BSD print protocol adaptor (in.lpd(1M)) may be disabled by using the following steps:
1. Edit the "/etc/inetd.conf" file and comment out the following line by adding the "#" symbol to the beginning of the line as shown:
#printer stream tcp6 nowait root /usr/lib/print/in.lpd in.lpd
2. Restart the inetd(1M) process in order to read the newly modified "/etc/inetd.conf" file. This may be done using the following command:
# /usr/bin/pkill -HUP inetd5. Resolution
This issue is addressed in the following releases:
For more information on Security Sun Alerts, see 1009886.1.
Copyright 2000-2009 Sun Microsystems, Inc., 4150 Network Circle, Santa Clara, CA 95054 U.S.A. All rights reserved.
This solution has no attachment