Note: This is an archival copy of Security Sun Alert 200045 as previously published on http://sunsolve.sun.com.
Latest version of this security advisory is available from http://support.oracle.com as Sun Alert 1000037.1.
Article ID : 1000037.1
Article Type : Sun Alerts (SURE)
Last reviewed : 2007-10-08
Audience : PUBLIC
Copyright Notice: Copyright © 2010, Oracle Corporation and/or its affiliates.

Security Vulnerability in the Solaris 10 Virtual File System (VFS) may Lead to a Denial of Service (DoS) Condition

Category
Security

Release Phase
Resolved

Product
Solaris 10 Operating System

Bug Id
6500134

Date of Resolved Release
09-OCT-2007

Impact

A security vulnerability in the Solaris 10 Virtual File System (VFS) may allow a local unprivileged user to exhaust all kernel memory, thereby causing a Denial of Service (DoS) to the system as a whole.


Contributing Factors

This issue can occur in the following releases:

SPARC Platform

  • Solaris 10 without patch 127111-01

x86 Platform

  • Solaris 10 without patch 127112-01

Note: Solaris 8 and Solaris 9 are not affected by this issue.


Symptoms

If the described issue occurs, the system will slow down considerably and eventually become unresponsive.

When the system is slow but not unresponsive, the vmstat(1M) utility can be used to ascertain the occurrence of this issue. The following command can be run to query the virtual memory usage on the system every 3 seconds:

   $ vmstat 3

Should the described issue occur, the "free" column under the "memory" section of the output reduces quickly to less than 1% of the physical memory available on the system.


Workaround

There is no workaround. Please see the "Resolution" section below.


Resolution

This issue is addressed in the following releases:

SPARC Platform

  • Solaris 10 with patch 127111-01 or later

x86 Platform

  • Solaris 10 with patch 127112-01 or later


References

127111-01
127112-01




Attachments
This solution has no attachment