Category
Security
Release Phase
Resolved
ProductSolaris 10 Operating System
Bug Id
6296934
Date of Resolved Release19-JUL-2006
Impact
A local unprivileged user may be able to hang an x86 system that has loaded the kernel debugger kmdb(1). The ability to hang a system is a type of Denial of Service (DoS).
Contributing Factors
This issue can occur in the following release:
x86 Platform
- Solaris 10 without patch 118855-15
Note 1: This issue does not affect the SPARC platform.
Note 2: This issue does not affect Solaris 8 or 9.
Note 3: This issue only affects systems which have loaded the kernel debugger, kmdb(1). In order to determine if a system has loaded kmdb(1) the following command can be used:
$ modinfo | grep kmdb
178 f7d54ce8 3b8 171 1 kmdb (kmdb driver 1.3)
If the system has not loaded kmdb(1), no output will be seen.
Symptoms
If the described issue occurs, the system will hang and be inaccessible both locally and via the network.
Workaround
There is no workaround. Please see the "Resolution" section below.
Resolution
This issue is addressed in the following release:
x86 Platform
- Solaris 10 with patch 118855-15 or later
References
118855-15
AttachmentsThis solution has no attachment