Note: This is an archival copy of Security Sun Alert 235421 as previously published on http://sunsolve.sun.com. Latest version of this security advisory is available from http://support.oracle.com as Sun Alert 1019129.1. |
Category Security Release Phase Resolved 6513817 Product Solaris 10 Operating System Date of Workaround Release 04-Apr-2008 Date of Resolved Release 02-May-2008 Vulnerability in Solaris 10 Trusted Extensions (see details below) 1. ImpactA security vulnerability in Solaris 10 Trusted Extensions labeled networking may allow untrusted applications in separate labeled zones to exchange data on the local system by circumventing label restrictions.2. Contributing FactorsThis issue can occur if one or more all-zones interfaces areThis issue can occur on the following releases: SPARC Platform
Note 2: This issue only impacts Solaris 10 systems which have installed and configured Solaris Trusted Extensions. Solaris Trusted Extensions is available starting in the Solaris 10 11/06 release. To determine if a system is configured with Trusted Extensions, the following command can be run: $ svcs labeld STATE STIME FMRI online 16:19:20 svc:/system/labeld:default If the system is configured with Trusted Extensions, the "labeld" 3. SymptomsThere are no predictable symptoms that would indicate the described issue has been exploited.4. WorkaroundInterim Security Relief (ISR) is available for the following releases from http://sunsolve.sun.com/tpatchesSome customers may be restricted to running the Common Criteria evaluated version of the Solaris Trusted Extensions OE. These customers may use the following IDRs that have been created based on the estimate that Kernel Update patches 125100-08 (SPARC) and 125101-08 (x86) will be the Target Of Evaluation (TOE): SPARC Platform
5. ResolutionThis issue is addressed in the following releases:SPARC Platform
For more information on Security Sun Alerts, see Modification History 02-May-2008: Updated Contributing Factors, Workaround and Resolution sections. Resolved. 05-Jun-2008: Updated Contributing Factors References127127-11127128-11 sunalert-tech-questions@sun.com and CC the following persons: Internal Contributor/Submitter Internal Eng Responsible Engineer Internal Services Knowledge Engineer ReferencesSUNPATCH:127127-11SUNPATCH:127128-11 Attachments This solution has no attachment |
|