Category
Security
Release Phase
Resolved
Bug Id
6468901
ProductSolaris 10 Operating System
OpenSolaris
Date of Resolved Release21-Aug-2009
Security Vulnerability in Solaris pollwakeup(9F) May Allow an Unprivileged User to Panic the System
1. Impact
A security vulnerability in Solaris pollwakeup(9F) may allow a local unprivileged user
to panic the system and thereby cause a denial of service.
Sun acknowledges, with thanks, Jason Hoos for bringing this issue to our attention.
2. Contributing Factors
This issue can occur in the following releases:
SPARC Platform
- Solaris 10 without patch 141414-09
- OpenSolaris based upon builds snv_01 through snv_50
x86 Platform
- Solaris 10 without patch 141415-09
- OpenSolaris based upon builds snv_01 through snv_50
Note: Solaris 8 and 9 are not impacted by this issue.
OpenSolaris distributions may include additional fixes above and beyond the build
from which it was derived. The base build can be derived as follows:
$ uname -v
snv_111
3. Symptoms
If the described issues occur, the system may panic with a stack trace similar to one of the following:
vpanic()
mutex_vector_enter+0x350()
pollwakeup+0x20()
port_send_event+0x114()
pollwakeup+0xc4()
4. Relief/Workaround
There is no workaround to this issue. Please see the Resolution section below.
5. Resolution
This issue is addressed in the following releases:
SPARC Platform
- Solaris 10 with patch 141414-09 or later
- OpenSolaris based upon builds snv_51 or later
x86 Platform
- Solaris 10 with patch 141415-09 or later
- OpenSolaris based upon builds snv_51 or later
For more information on Security Sun Alerts, see
References
141414-09
141415-09
References
SUNPATCH:141414-09
SUNPATCH:141415-09
AttachmentsThis solution has no attachment