Note: This is an archival copy of Security Sun Alert 265248 as previously published on http://sunsolve.sun.com.
Latest version of this security advisory is available from http://support.oracle.com as Sun Alert 1020811.1.
Article ID : 1020811.1
Article Type : Sun Alerts (SURE)
Last reviewed : 2010-12-05
Audience : PUBLIC
Copyright Notice: Copyright © 2010, Oracle Corporation and/or its affiliates.

Security Vulnerability in Solaris pollwakeup(9F) May Allow an Unprivileged User to Panic the System



Category
Security

Release Phase
Resolved

Bug Id
6468901

Product
Solaris 10 Operating System
OpenSolaris

Date of Resolved Release
21-Aug-2009

Security Vulnerability in Solaris pollwakeup(9F) May Allow an Unprivileged User to Panic the System

1. Impact

A security vulnerability in Solaris pollwakeup(9F) may allow a local unprivileged user
to panic the system and thereby cause a denial of service.

Sun acknowledges, with thanks, Jason Hoos for bringing this issue to our attention.


2. Contributing Factors

This issue can occur in the following releases:

SPARC Platform

  • Solaris 10 without patch 141414-09
  • OpenSolaris based upon builds snv_01 through snv_50

x86 Platform

  • Solaris 10 without patch 141415-09
  • OpenSolaris based upon builds snv_01 through snv_50

Note: Solaris 8 and 9 are not impacted by this issue.

OpenSolaris distributions may include additional fixes above and beyond the build
from which it was derived. The base build can be derived as follows:

            $ uname -v
snv_111


3. Symptoms

If the described issues occur, the system may panic with a stack trace similar to one of the following:

	vpanic()
mutex_vector_enter+0x350()
pollwakeup+0x20()
port_send_event+0x114()
pollwakeup+0xc4()


4. Relief/Workaround

There is no workaround to this issue. Please see the Resolution section below.



5. Resolution

This issue is addressed in the following releases:

SPARC Platform

  • Solaris 10 with patch 141414-09 or later
  • OpenSolaris based upon builds snv_51 or later

x86 Platform

  • Solaris 10 with patch 141415-09 or later
  • OpenSolaris based upon builds snv_51 or later

For more information on Security Sun Alerts, see


References

141414-09
141415-09

References

SUNPATCH:141414-09
SUNPATCH:141415-09



Attachments
This solution has no attachment