Home / mailingsPDF  

SUN(SM) ALERT WEEKLY SUMMARY REPORT

Posted on 19 February 2008
Sun Alerts

Week of 10-Feb-2008 to 16-Feb-2008

Welcome to the Sun(SM) Alert Weekly Summary Report, the newsletter
that provides you with a weekly listing of newly released and
updated Sun Alert Notifications. It is being distributed
to inform you about critical hardware and software issues that
could impact the availability, security, and data integrity of
your computing environment.

==================================================================
Please see the following sites for recent information on the new
SunSpectrum Member Support Center and changes to SunSolve:

* SunSpectrum Member Support Center wiki http://wikis.sun.com/display/ssmsc
* New SunSolve wiki http://wikis.sun.com/display/sunsolve

Changes to the Online Support Center (OSC) :

* New OSC wiki http://wikis.sun.com/display/osc

==================================================================
ISSUE HIGHLIGHTS

* Newly Released Sun Alert Notifications

* Updated Sun Alert Notifications

=================================================================

New Preliminary Sun Alert Notifications
(Total Preliminary: 1)

Sun Alert ID: 231801
Title: Persistent Reservation Commands Processed Slowly on Sun
StorageTek Arrays May Cause Loss of Access or Timeouts
to Filesystems
Product: Sun StorageTek 6140, Sun StorageTek 6540, Sun StorageTek
Flexline 380
Category: Availability
Release Phase: Preliminary
Premiminary Date: 15-Feb-2008

To view this Sun Alert document please go to the following URL:
http://sunsolve.sun.com/search/document.do?assetkey=1-66-231801-1
If this Sun Alert document is not publicly available, go to the
SunSpectrum Member Support Center at www.sun.com/support and
search for the Sun Alert ID above.


=================================================================
New Workaround Sun Alert Notifications
(Total Workaround: 4)

Sun Alert ID: 231243
Title: Solaris MPT(7D) patch May Cause Loss of Devices in
NetBackup
Product: Solaris 10 Operating System
Category: Availability
Release Phase: Workaround
Workaround Date: 12-Feb-2008

To view this Sun Alert document please go to the following URL:
http://sunsolve.sun.com/search/document.do?assetkey=1-66-231243-1
If this Sun Alert document is not publicly available, go to the
SunSpectrum Member Support Center at www.sun.com/support and
search for the Sun Alert ID above.

-----------------------------------------------------------------

Sun Alert ID: 231621
Title: In Solaris Cluster 3.2 the "cl_eventlogd" is Susceptible
to Hanging
Product: Solaris Cluster 3.2
Category: Availability
Release Phase: Workaround
Workaround Date: 12-Feb-2008

To view this Sun Alert document please go to the following URL:
http://sunsolve.sun.com/search/document.do?assetkey=1-66-231621-1
If this Sun Alert document is not publicly available, go to the
SunSpectrum Member Support Center at www.sun.com/support and
search for the Sun Alert ID above.

-----------------------------------------------------------------

Sun Alert ID: 231741
Title: Collecting Support Data On Certain Arrays May Cause One
or Both Array Controllers to Reboot
Product: Sun StorageTek Flexline 240 Array, Sun StorageTek
Flexline 280 Array , Sun StorageTek Flexline 380 Array,
Sun StorageTek 6130 Array, Sun StorageTek 6140 Array,
Sun StorageTek 6540 Array
Category: Availability
Release Phase: Workaround
Workaround Date: 15-Feb-2008

To view this Sun Alert document please go to the following URL:
http://sunsolve.sun.com/search/document.do?assetkey=1-66-231741-1
If this Sun Alert document is not publicly available, go to the
SunSpectrum Member Support Center at www.sun.com/support and
search for the Sun Alert ID above.

-----------------------------------------------------------------

Sun Alert ID: 231802
Title: Collecting Support Data Using Common Array Manager while
Drives are Bypassed May Cause Controllers to Reboot
Product: Sun StorEdge 6130 Array, Sun StorageTek 6140 Array, Sun
StorageTek 6540 Array, Sun StorageTek Flexline 240
Array, Sun StorageTek Flexline 280 Array, Sun
StorageTek Flexline 380 Array, Sun StorageTek Common
Array Manager 6.0
Category: Availability
Release Phase: Workaround
Workaround Date: 15-Feb-2008

To view this Sun Alert document please go to the following URL:
http://sunsolve.sun.com/search/document.do?assetkey=1-66-231802-1
If this Sun Alert document is not publicly available, go to the
SunSpectrum Member Support Center at www.sun.com/support and
search for the Sun Alert ID above.



=================================================================
New Resolved Sun Alert Notifications
(Total Resolved: 10)

Sun Alert ID: 200032 Previous ID: 103179
Title: Security Vulnerabilities in the Apache 1.3 and 2.0 Web
Server Daemon and "mod_status" Module May Lead to Cross
Site Scripting (XSS) or Denial of Service (DoS).
Product: Solaris 9 Operating System, Solaris 10 Operating System,
Solaris 8 Operating System
Category: Security
Release Phase: Resolved
Resolved Date: 15-Feb-2008

To view this Sun Alert document please go to the following URL:
http://sunsolve.sun.com/search/document.do?assetkey=1-66-200032-1
If this Sun Alert document is not publicly available, go to the
SunSpectrum Member Support Center at www.sun.com/support and
search for the Sun Alert ID above.

-----------------------------------------------------------------

Sun Alert ID: 200163
Title: Security Vulnerability in Solaris 8 Directory Functions
Product: Solaris 8 Operating System
Category: Security
Release Phase: Resolved
Resolved Date: 12-Feb-2008

To view this Sun Alert document please go to the following URL:
http://sunsolve.sun.com/search/document.do?assetkey=1-66-200163-1
If this Sun Alert document is not publicly available, go to the
SunSpectrum Member Support Center at www.sun.com/support and
search for the Sun Alert ID above.

-----------------------------------------------------------------

Sun Alert ID: 200561 Previous ID: 103107
Title: Solaris Systems Running VERITAS (VxVM) 4.1/5.0 With
Certain HBAs Installed Are Unable to Complete I/O
Operations and May Become Unresponsive With Certain
Targets
Product: VERITAS Storage Foundation 4.1 Software, VERITAS Volume
Manager 4.1 Software, VERITAS Storage Foundation 5.0
Software
Category: Availability
Release Phase: Resolved
Resolved Date: 13-Feb-2008

To view this Sun Alert document please go to the following URL:
http://sunsolve.sun.com/search/document.do?assetkey=1-66-200561-1
If this Sun Alert document is not publicly available, go to the
SunSpectrum Member Support Center at www.sun.com/support and
search for the Sun Alert ID above.

-----------------------------------------------------------------

Sun Alert ID: 200852 Previous ID: 103014
Title: In Rare Cases, Small Appending Writes to Cluster Files
May Result in Data Integrity Issues
Product: Sun Cluster 3.1, Solaris Cluster 3.2
Category: Availability, Data Loss
Release Phase: Resolved
Resolved Date: 15-Feb-2008

To view this Sun Alert document please go to the following URL:
http://sunsolve.sun.com/search/document.do?assetkey=1-66-200852-1
If this Sun Alert document is not publicly available, go to the
SunSpectrum Member Support Center at www.sun.com/support and
search for the Sun Alert ID above.

-----------------------------------------------------------------

Sun Alert ID: 200858 Previous ID: 103130
Title: Security Vulnerability in Solaris 10 OpenSSL
SSL_get_shared_ciphers() Function
Product: Solaris 10 Operating System
Category: Security
Release Phase: Resolved
Resolved Date: 13-Feb-2008

To view this Sun Alert document please go to the following URL:
http://sunsolve.sun.com/search/document.do?assetkey=1-66-200858-1
If this Sun Alert document is not publicly available, go to the
SunSpectrum Member Support Center at www.sun.com/support and
search for the Sun Alert ID above.

-----------------------------------------------------------------

Sun Alert ID: 201514 Previous ID: 103201
Title: Security Vulnerability in the libxml2 Library May Lead
to a Denial of Service (DoS)
Product: Solaris 9 Operating System, Solaris 10 Operating System
Category: Security
Release Phase: Resolved
Resolved Date: 11-Feb-2008

To view this Sun Alert document please go to the following URL:
http://sunsolve.sun.com/search/document.do?assetkey=1-66-201514-1
If this Sun Alert document is not publicly available, go to the
SunSpectrum Member Support Center at www.sun.com/support and
search for the Sun Alert ID above.

-----------------------------------------------------------------

Sun Alert ID: 231244
Title: Some Sun SPARC Enterprise T5120 and T5220 Servers
Shipped With an Incorrect Solaris 10 Image Containing
an Insecure Configuration
Product: Sun SPARC Enterprise T5120, T5220
Category: Security
Release Phase: Resolved
Resolved Date: 12-Feb-2008

To view this Sun Alert document please go to the following URL:
http://sunsolve.sun.com/search/document.do?assetkey=1-66-231244-1
If this Sun Alert document is not publicly available, go to the
SunSpectrum Member Support Center at www.sun.com/support and
search for the Sun Alert ID above.

-----------------------------------------------------------------

Sun Alert ID: 231441
Title: Multiple Security Vulnerabilities in Solaris 10 Firefox
and Thunderbird
Product: Firefox 2.0, Thunderbird 2.0, Solaris 10 Operating
System
Category: Security
Release Phase: Resolved
Resolved Date: 12-Feb-2008

To view this Sun Alert document please go to the following URL:
http://sunsolve.sun.com/search/document.do?assetkey=1-66-231441-1
If this Sun Alert document is not publicly available, go to the
SunSpectrum Member Support Center at www.sun.com/support and
search for the Sun Alert ID above.

-----------------------------------------------------------------

Sun Alert ID: 231466
Title: Two Security Vulnerabilities Exist Within the cpc(3CPC)
Sub-System of the Solaris Kernel
Product: Solaris 10 Operating System
Category: Security
Release Phase: Resolved
Resolved Date: 14-Feb-2008

To view this Sun Alert document please go to the following URL:
http://sunsolve.sun.com/search/document.do?assetkey=1-66-231466-1
If this Sun Alert document is not publicly available, go to the
SunSpectrum Member Support Center at www.sun.com/support and
search for the Sun Alert ID above.

-----------------------------------------------------------------

Sun Alert ID: 231701
Title: Disk Drive Off Lines and Fail modes Without Recent
Firmware Updates
Product: Sun StorEdge 3510 FC Array, , Sun StorageTek
6130/6140/6540 Arrays with CSM 200 trays,, Sun
StorageTek Flexline 240/280/380 Arrays with CSM 200
trays
Category: Availability
Release Phase: Resolved
Resolved Date: 12-Feb-2008

To view this Sun Alert document please go to the following URL:
http://sunsolve.sun.com/search/document.do?assetkey=1-66-231701-1
If this Sun Alert document is not publicly available, go to the
SunSpectrum Member Support Center at www.sun.com/support and
search for the Sun Alert ID above.



=================================================================
Updated Sun Alert Notifications
(Total Updated: 3)

Sun Alert ID: 200649 Previous ID: 103189
Title: Installing Certain Solaris 10 Samba Patches Causes
"inetd" Services to Fail in Non-global Zones
Product: Solaris 10 Operating System
Category: Availability
Release Phase: Workaround
Last Updated: 15-Feb-2008

To view this Sun Alert document please go to the following URL:
http://sunsolve.sun.com/search/document.do?assetkey=1-66-200649-1
If this Sun Alert document is not publicly available, go to the
SunSpectrum Member Support Center at www.sun.com/support and
search for the Sun Alert ID above.

-----------------------------------------------------------------

Sun Alert ID: 200871 Previous ID: 102987
Title: libpng(3) Contains a Denial of Service (DoS)
Vulnerability
Product: Solaris 9 Operating System, Solaris 10 Operating System,
Solaris 8 Operating System
Category: Security
Release Phase: Workaround
Workaround Date: 28-Jun-2007
Last Updated: 11-Feb-2008

To view this Sun Alert document please go to the following URL:
http://sunsolve.sun.com/search/document.do?assetkey=1-66-200871-1
If this Sun Alert document is not publicly available, go to the
SunSpectrum Member Support Center at www.sun.com/support and
search for the Sun Alert ID above.

-----------------------------------------------------------------

Sun Alert ID: 231524
Title: Security Vulnerability in Solaris 10 Perl 5.8
Product: Solaris 10 Operating System, Perl 5.8
Category: Security
Release Phase: Workaround
Last Updated: 11-Feb-2008

To view this Sun Alert document please go to the following URL:
http://sunsolve.sun.com/search/document.do?assetkey=1-66-231524-1
If this Sun Alert document is not publicly available, go to the
SunSpectrum Member Support Center at www.sun.com/support and
search for the Sun Alert ID above.



==================================================================

Thanks for tuning in to the Sun Alert Weekly Summary Report!

Best regards,
Sun Alert Program Office
Sun Microsystems, Inc.
sunalert-newsletter@sun.com


------------------------------------------------------------------
Copyright 2008 Sun Microsystems, Inc. All rights reserved.

Sun, Sun Microsystems, the Sun Logo, My Sun, iForce, Sun Fire, and
Sun StorEdge are trademarks or registered trademarks of Sun
Microsystems, Inc. in the United States and other countries. All
SPARC trademarks are used under license and are trademarks or
registered trademarks of SPARC International, Inc. in the United
States and other countries. Products bearing SPARC trademarks are
based upon an architecture developed by Sun Microsystems, Inc.

 

TOP