Note: This is an archival copy of Security Sun Alert 200822 as previously published on http://sunsolve.sun.com.
Latest version of this security advisory is available from http://support.oracle.com as Sun Alert 1000621.1.
Article ID : 1000621.1
Article Type : Sun Alerts (SURE)
Last reviewed : 2003-04-24
Audience : PUBLIC
Copyright Notice: Copyright © 2010, Oracle Corporation and/or its affiliates.

Security Vulnerability With The lofiadm(1M) Command in Solaris 8

Category
Security

Release Phase
Resolved

Product
Solaris 8 Operating System

Bug Id
4331110, 4335489

Date of Resolved Release
28-APR-2003

Impact

An unprivileged local user may be able to induce a kernel memory leak on a Solaris 8 system due to a security vulnerability in the lofiadm(1M) command. As a result of the kernel memory leak, the system performance will degrade and the system may hang, causing a denial of service.


Contributing Factors

This issue can occur in the following releases:

SPARC Platform

  • Solaris 8 without patch 114162-01

x86 Platform

  • Solaris 8 without patch 114163-01

Note: Solaris 9 is not impacted by this issue. Solaris 2.6 and Solaris 7 do not support the lofi(7M) driver, and therefore are not impacted.


Symptoms

If the described issue occurs, the system will experience poor response to any user interactions and in some cases may hang.


Workaround

There is no workaround. Please see the "Resolution" section below.


Resolution

This issue is addressed in the following releases:

SPARC Platform

  • Solaris 8 with patch 114162-01 or later

x86 Platform

  • Solaris 8 with patch 114163-01 or later


Modification History

References
 114162-01

 114163-01



                                                                                   


Attachments
This solution has no attachment