Note: This is an archival copy of Security Sun Alert 228388 as previously published on http://sunsolve.sun.com.
Latest version of this security advisory is available from http://support.oracle.com as Sun Alert 1017335.1.
Article ID : 1017335.1
Article Type : Sun Alerts (SURE)
Last reviewed : 2005-10-11
Audience : PUBLIC
Copyright Notice: Copyright © 2010, Oracle Corporation and/or its affiliates.

A Security Vulnerability in Solaris 10 May Allow a Local Unprivileged User the Ability to Panic the System

Category
Security

Release Phase
Resolved

Product
Solaris 10 Operating System

Bug Id
6294867

Date of Resolved Release
12-OCT-2005

Impact

A security vulnerability in the Solaris 10 file system "privilege management" feature may allow a local unprivileged user the ability to panic a system, resulting in a Denial of Service (DoS).


Contributing Factors

This issue can occur in the following releases:

SPARC Platform

  • Solaris 10 without patch 118822-16

x86 Platform

  • Solaris 10 without patch 118844-16

Note: Solaris 8 and 9 are not vulnerable to this issue.


Symptoms

The system will panic with a "BAD TRAP: NULL pointer dereference" in the kernel function: secpolicy_fs_common().


Workaround

There is no workaround. Please see the Resolution section below.


Resolution

This issue is addressed in the following releases:

SPARC Platform

  • Solaris 10 with patch 118822-16 or later

x86 Platform

  • Solaris 10 with patch 118844-16 or later


References

118822-16
118844-16




Attachments
This solution has no attachment