Home / mailingsPDF  

SUN(SM) ALERT WEEKLY SUMMARY REPORT

Posted on 02 January 2008
Sun Alerts

Weeks of 16-Dec-2007 - 29-Dec-2007

Welcome to the Sun(SM) Alert Weekly Summary Report, the newsletter
that provides you with a weekly listing of newly released and
updated Sun Alert Notifications. It is being distributed
to inform you about critical hardware and software issues that
could impact the availability, security, and data integrity of
your computing environment.

==================================================================
ISSUE HIGHLIGHTS

* Newly Released Sun Alert Notifications

* Updated Sun Alert Notifications

* Additional Sun Alert Information

* Changes to Patch Access on SunSolve

==================================================================

-------------------------------------------------------------------
Newly Released Sun Alert Notifications
-------------------------------------------------------------------
(Total Released: 10)

Sun Alert ID: 103002 (RESOLVED)
Synopsis: Cross-site Scripting Vulnerability in Sun Java
System Web Server and Web Proxy Server
Product: Sun Java System Web Server 7.0, Sun Java System Web
Proxy Server 4.0, Sun Java System Web Server 6.1,
Sun Java System Web Proxy Server 3.6
Category: Security
Date Released: 21-Dec-2007
Date Closed: 21-Dec-2007

To view this Sun Alert document please go to the following URL:
http://sunsolve.sun.com/search/document.do?assetkey=1-26-103002-1

-------------------------------------------------------------------
Sun Alert ID: 103152 (RESOLVED)
Synopsis: Security Vulnerability in Sun Management Center
(Sun MC) May Allow Unauthorized Access to System
and Data
Product: Sun Management Center 3.6.1, Sun Management Center
3.6, Sun Management Center 3.5 Update 1
Category: Security
Date Released: 18-Dec-2007
Date Closed: 18-Dec-2007

To view this Sun Alert document please go to the following URL:
http://sunsolve.sun.com/search/document.do?assetkey=1-26-103152-1

-------------------------------------------------------------------
Sun Alert ID: 103170
Synopsis: Multiple Security Vulnerabilities Within the GIMP
Plugins
Product: Solaris 10 Operating System
Category: Security
Date Released: 17-Dec-2007

To view this Sun Alert document please go to the following URL:
http://sunsolve.sun.com/search/document.do?assetkey=1-26-103170-1

-------------------------------------------------------------------
Sun Alert ID: 103172 (RESOLVED)
Synopsis: Solaris 9 sshd(1M) Patches May Cause Incorrect
Audit Data to be Logged
Product: Solaris 9 Operating System
Category: Security, Availability
Date Released: 18-Dec-2007
Date Closed: 18-Dec-2007

To view this Sun Alert document please go to the following URL:
http://sunsolve.sun.com/search/document.do?assetkey=1-26-103172-1

-------------------------------------------------------------------
Sun Alert ID: 103175
Synopsis: Security Vulnerabilities in the Sun Ray Device
Manager Daemon
Product: Sun Ray Server Software 3.1, Sun Ray Server
Software 3.1.1, Sun Ray Server Software 3.0, Sun
Ray Server Software 2.0
Category: Security
Date Released: 18-Dec-2007

To view this Sun Alert document please go to the following URL:
http://sunsolve.sun.com/search/document.do?assetkey=1-26-103175-1

-------------------------------------------------------------------
Sun Alert ID: 103177
Synopsis: Multiple Security Vulnerabilities in Firefox and
Thunderbird for Solaris 10 May Allow Execution of
Arbitrary Code and Access to Unauthorized Data
Product: Firefox 2.0, Solaris 10 Operating System
Category: Security
Date Released: 18-Dec-2007

To view this Sun Alert document please go to the following URL:
http://sunsolve.sun.com/search/document.do?assetkey=1-26-103177-1

-------------------------------------------------------------------
Sun Alert ID: 103179
Synopsis: Security Vulnerabilities in the Apache 1.3 and 2.0
Web Server Daemon and "mod_status" Module May Lead
to Cross Site Scripting (XSS) or Denial of Service
(DoS).
Product: Solaris 9 Operating System, Solaris 10 Operating
System, Solaris 8 Operating System
Category: Security
Date Released: 21-Dec-2007

To view this Sun Alert document please go to the following URL:
http://sunsolve.sun.com/search/document.do?assetkey=1-26-103179-1

-------------------------------------------------------------------
Sun Alert ID: 103186 (RESOLVED)
Synopsis: Solaris 10 Systems With Certain Patches Installed
May Experience Data Integrity Issues Over TCP
Loopback
Product: Solaris 10 Operating System
Category: Data Loss, Availability
Date Released: 21-Dec-2007
Date Closed: 21-Dec-2007

To view this Sun Alert document please go to the following URL:
http://sunsolve.sun.com/search/document.do?assetkey=1-26-103186-1

-------------------------------------------------------------------
Sun Alert ID: 103189
Synopsis: Installing Certain Solaris 10 Samba Patches Causes
"inetd" Services to Fail in Non-global Zones
Product: Solaris 10 Operating System
Category: Availability, Availability
Date Released: 21-Dec-2007

To view this Sun Alert document please go to the following URL:
http://sunsolve.sun.com/search/document.do?assetkey=1-26-103189-1

-------------------------------------------------------------------
Sun Alert ID: 103190
Synopsis: Certain Solaris 9 st(7D) Driver Patches may Cause a
System Panic
Product: Solaris 9 Operating System
Category: Availability
Date Released: 21-Dec-2007

To view this Sun Alert document please go to the following URL:
http://sunsolve.sun.com/search/document.do?assetkey=1-26-103190-1


-------------------------------------------------------------------
Updated Sun Alert Notifications
-------------------------------------------------------------------
(Total Updated: 2)

Sun Alert ID: 103115 (RESOLVED)
Synopsis: Host With 2Gb QLogic HBA Booting from 6140 Array
Over Fabric Switch Fails to Boot
Product: Sun StorageTek Enterprise 2Gb FC PCI-X HBA, Dual
port, Sun StorageTek Enterprise 2Gb FC PCI-X HBA,
Single port
Category: Availability
Date Released: 15-Oct-2007, 20-Dec-2007
Date Closed: 20-Dec-2007

To view this Sun Alert document please go to the following URL:
http://sunsolve.sun.com/search/document.do?assetkey=1-26-103115-1

-------------------------------------------------------------------
Sun Alert ID: 103044 (RESOLVED)
Synopsis: Solaris Daylight Saving Time (DST) Update
Product: Solaris 9 Operating System, Solaris 10 Operating
System, Solaris 8 Operating System
Category: Availability
Date Released: 20-Aug-2007, 28-Dec-2007
Date Closed: 20-Aug-2007

To view this Sun Alert document please go to the following URL:
http://sunsolve.sun.com/search/document.do?assetkey=1-26-103044-1

------------------------------------------------------------------
Additional Sun Alert Information
------------------------------------------------------------------

* Accessing Sun Alert Notifications

Sun Alert Notifications are accessed on http://sun.com/sunsolve
under SunSolve Collections, Advanced Search, Browse Documents or
Security Sun Alerts


* Sun Alert Patch Report

http://sun.com/sunsolve/sunalert_patches.html

This is a comprehensive report of patches mentioned in the Resolution
section of Sun Alert documents and is available from SunSolve on the
Patch Portal page. It is updated daily and organized by product.


-------------------------------------------------------------------
*IMPORTANT UPDATE* Changes to Solaris 8 and 9 Patch Access on SunSolve
-------------------------------------------------------------------

On March 31, 2007, Sun changed the way users access
Solaris 8 and 9 Software Updates (patches) to be consistent with the way
users access Solaris 10 Software Updates.

Users will still be required to have a Sun Online Account and accept
a Software License Agreement in order to access any Software Updates,
but in addition users will be required to purchase a Solaris Subscription
or Sun System Service Plan in order to access Solaris 8 and 9 Software Updates.

No Solaris Subscription or Sun System Service Plan will be required for security
patches and device drivers, which will remain available without charge.

For more information, go to:

http://sunsolve.sun.com/search/document.do?assetkey=1-9-83061-1

For questions, contact: patchpolicy@sun.com


******************************************************************

Thanks for tuning in to the Sun Alert Weekly Summary Report!

Best regards,
Sun Alert Program Office
Sun Microsystems, Inc.


ALSO ON SUN.COM --------------------------------------------------
My Sun Connection: http://sun.com/mysunconnection
Products & Services: http://sun.com/products
Business & Industry Solutions: http://sun.com/solutions
Support & Training: http://sun.com/supportraining/
Downloads: http://sun.com/download
Documentation: http://sun.com/documentation
Research: http://sun.com/research
News: http://sun.com/news
Sun[sm] Store: http://sun.com/store

Resources for
* Developers: http://sun.com/developers
* System Admins: http://sun.com/bigadmin
* Partners: http://sun.com/partners
* Executives: http://sun.com/executives
* Investors: http://sun.com/investors
------------------------------------------------------------------

Copyright 2008 Sun Microsystems, Inc. All rights reserved.

Sun, Sun Microsystems, the Sun Logo, My Sun, iForce, Sun Fire, and
Sun StorEdge are trademarks or registered trademarks of Sun
Microsystems, Inc. in the United States and other countries. All
SPARC trademarks are used under license and are trademarks or
registered trademarks of SPARC International, Inc. in the United
States and other countries. Products bearing SPARC trademarks are
based upon an architecture developed by Sun Microsystems, Inc.

 

TOP

Mailings :

Exploits :