Security Vulnerability With Sun N1 Grid Engine Daemons

Category
Security

Release Phase
Resolved

Product
Sun Grid Engine 6
Sun Grid Engine 5.3

Bug Id
6398008, 6397987, 6365380

Date of Resolved Release
28-JUL-2006

Impact

A security vulnerability in the Sun N1 Grid Engine daemons may allow local unprivileged users to kill either the qmaster or execd process and shutdown the grid service, creating a Denial of Service (DoS) condition. In certain cases, buffer overflows may be exploited by unprivileged local users to gain elevated privileges.

Contributing Factors

This issue can occur in the following releases:

SPARC Platform

Sun Grid Engine 5.3 (32-bit Solaris)
Sun Grid Engine 5.3 (64-bit Solaris)
Sun Grid Engine 5.3 (32-bit Solaris) NON-Solaris Package format
Sun Grid Engine 5.3 (64-bit Solaris) NON-Solaris Package format
N1 Grid Engine 6.0 (32-bit Solaris) without patch 123037-01
N1 Grid Engine 6.0 (64-bit Solaris) without patch 123038-01
N1 Grid Engine 6.0 (32-bit Solaris) NON-Solaris Package format without patch 123041-01
N1 Grid Engine 6.0 (64-bit Solaris) NON-Solaris Package format without patch 123042-01

x86 Platform

Sun Grid Engine 5.3
Sun Grid Engine 5.3 NON-Solaris Package format
N1 Grid Engine 6.0 without patch 123039-01
N1 Grid Engine 6.0 NON-Solaris Package format without patch 123043-01
N1 Grid Engine 6.0 (x64) without patch 123040-01
N1 Grid Engine 6.0 (x64) NON-Solaris Package format without patch 123044-01

Linux

Sun Grid Engine 5.3
N1 Grid Engine 6.0 without patch 123045-01
N1 Grid Engine 6.0 (x64) without patch 123046-01

Windows

N1 Grid Engine 6.0 without patch 123052-01

HP-UX

N1 Grid Engine 6.0 without patch 123050-01

AIX

N1 Grid Engine 6.0 (for AIX 4.3) without patch 123047-01
N1 Grid Engine 6.0 (for AIX 5.1) without patch 123048-01

Mac OS

N1 Grid Engine 6.0 without patch 123049-01

IRIX

N1 Grid Engine 6.0 (for IRIX 6.5) without patch 123051-01

Symptoms

Should the described exploit occur, the 'qmaster' or 'execd' process is shut down and a core file will be created.

To verify that your 'qmaster' or 'execd' process is not up and running, search in the process table with the 'ps' command for the process name "sge_qmaster" or "sge_execd". The following examples show a running qmaster:

On Mac OS:

    $ ps ax | grep sge_qmaster
    526  ??  S     12:44.97 /gridware/sge/bin/darwin/sge_qmaster

all other platforms (including Windows, when using Windows Services for UNIX):

    $ ps -ef | grep sge_qmaster
    sgeadmin 13001 1 0 Apr 24 ? 19:17 /gridware/sge/bin/sol-sparc64/sge_qmaster

If no 'qmaster' or 'execd' process was found in the process table the cluster may be affeced by this issue.

Workaround

There is no workaround for this issue. Please see the Resolution section below.

Resolution

This issue is addressed in the following releases: