Home / mailings SUN ALERT WEEKLY SUMMARY REPORT
Posted on 16 June 2008
Sun AlertsWeek of 08-Jun-2008 to 14-Jun-2008
Welcome to the Sun Alert Weekly Summary Report, the newsletter
that provides you with a weekly listing of newly released and
updated Sun Alert Notifications. It is being distributed
to inform you about critical hardware and software issues that
could impact the availability, security, and data integrity of
your computing environment.
==================================================================
ISSUE HIGHLIGHTS
* Newly Released Sun Alerts for 3 Release Phases:
Preliminary, Workaround and Resolved
* NEW Information on the availability of the Sun Alert Patch Report
The Patch Report is not this report but a list of patches
that are in the Resolution section of a Sun Alert (if applicable) .
This report is no longer available on SunSolve, however
a new TEXT version is available at:
https://supportuploads.sun.com/download?directory=downloads&file=SApatches%2dpub%2etxt
or go to http://supportfiles.sun.com/download and enter the following
file name, SApatches-pub.txt, from the directory named "downloads".
Please reply to http://sun.com/newsletters/ with comments on this
new alternative Sun Alert Patch report.
=================================================================
Sun Alert Newsletter for 08-Jun-2008 to 14-Jun-2008
=================================================================
New Preliminary Sun Alert Notifications
(Total Preliminary: 1)
Sun Alert ID: 238746
Title: Sun Fire Server with Solaris 10 may Panic or Reset with
lpost message, asynchronous event, fail to stop CPU or
send_mondo timeout
Product: Sun Fire E2900, Sun Fire E4900/E6900 Server, Sun Fire
E4800/6800 Server, Sun FireV1280, Netra 1280/1290,
Solaris 10 Operating System
Category: Availability
Release Phase: Preliminary
Premiminary Date: 12-Jun-2008
To view this Sun Alert document please go to the following URL:
http://sunsolve.sun.com/search/document.do?assetkey=1-66-238746-1
If this Sun Alert document is not publicly available, go to the
SunSpectrum Member Support Center at www.sun.com/support and
search for the Sun Alert ID above.
=================================================================
New Workaround Sun Alert Notifications
(Total Workaround: 5)
Sun Alert ID: 238416
Title: A Vulnerability in Access Manager 7.1 may Allow
Unauthorized Access to Resources
Product: Sun Java System Access Manager 7.1
Category: Security
Release Phase: Workaround
Workaround Date: 11-Jun-2008
To view this Sun Alert document please go to the following URL:
http://sunsolve.sun.com/search/document.do?assetkey=1-66-238416-1
If this Sun Alert document is not publicly available, go to the
SunSpectrum Member Support Center at www.sun.com/support and
search for the Sun Alert ID above.
-----------------------------------------------------------------
Sun Alert ID: 238630
Title: Installing Solaris 10 Fibre Channel Device Driver
patches without an immediate reboot may cause a System
Panic
Product: Solaris 10 Operating System
Category: Availability
Release Phase: Workaround
Workaround Date: 11-Jun-2008
To view this Sun Alert document please go to the following URL:
http://sunsolve.sun.com/search/document.do?assetkey=1-66-238630-1
If this Sun Alert document is not publicly available, go to the
SunSpectrum Member Support Center at www.sun.com/support and
search for the Sun Alert ID above.
-----------------------------------------------------------------
Sun Alert ID: 238686
Title: Multiple security vulnerabilities in the Solaris X
Server Extensions may lead to a Denial of Service (DoS)
condition or allow Execution of Arbitrary Code
Product: Solaris 8 Operating System, Solaris 9 Operating System,
Solaris 10 Operating System, OpenSolaris
Category: Security
Release Phase: Workaround
Workaround Date: 12-Jun-2008
To view this Sun Alert document please go to the following URL:
http://sunsolve.sun.com/search/document.do?assetkey=1-66-238686-1
If this Sun Alert document is not publicly available, go to the
SunSpectrum Member Support Center at www.sun.com/support and
search for the Sun Alert ID above.
-----------------------------------------------------------------
Sun Alert ID: 238865
Title: SNMPv3 Authentication Bypass Vulnerability in snmpd(1M)
Product: Solaris 10 Operating System, OpenSolaris
Category: Security
Release Phase: Workaround
Workaround Date: 12-Jun-2008
To view this Sun Alert document please go to the following URL:
http://sunsolve.sun.com/search/document.do?assetkey=1-66-238865-1
If this Sun Alert document is not publicly available, go to the
SunSpectrum Member Support Center at www.sun.com/support and
search for the Sun Alert ID above.
-----------------------------------------------------------------
Sun Alert ID: 238887
Title: Solaris 10 Patches Cause ARP to Erroneously Detect
Duplicate Network Address Which Leaves the Affected
Interface in an Unusable State
Product: Solaris 10 Operating System
Category: Availability
Release Phase: Workaround
Last Updated: 13-Jun-2008
To view this Sun Alert document please go to the following URL:
http://sunsolve.sun.com/search/document.do?assetkey=1-66-238887-1
If this Sun Alert document is not publicly available, go to the
SunSpectrum Member Support Center at www.sun.com/support and
search for the Sun Alert ID above.
=================================================================
New Resolved Sun Alert Notifications
(Total Resolved: 14)
Sun Alert ID: 200027 Previous ID: 103187
Title: On Solaris 10 Systems, the KSSL Kernel Module may
Corrupt Incoming Data
Product: Solaris 10 Operating System
Category: Data Loss
Release Phase: Resolved
Resolved Date: 11-Jun-2008
To view this Sun Alert document please go to the following URL:
http://sunsolve.sun.com/search/document.do?assetkey=1-66-200027-1
If this Sun Alert document is not publicly available, go to the
SunSpectrum Member Support Center at www.sun.com/support and
search for the Sun Alert ID above.
-----------------------------------------------------------------
Sun Alert ID: 234601
Title: Solaris 10 Under Certain Conditions, Dynamic
Reconfiguration (DR) "deleteboard" and "moveboard"
Operations May Hang on a SPARC Enterprise
M4000/M5000/M8000/M9000
Product: SPARC Enterprise M4000, SPARC Enterprise M5000, SPARC
Enterprise M8000, SPARC Enterprise M9000, Solaris 10
Operating System
Category: Availability
Release Phase: Resolved
Resolved Date: 11-Jun-2008
To view this Sun Alert document please go to the following URL:
http://sunsolve.sun.com/search/document.do?assetkey=1-66-234601-1
If this Sun Alert document is not publicly available, go to the
SunSpectrum Member Support Center at www.sun.com/support and
search for the Sun Alert ID above.
-----------------------------------------------------------------
Sun Alert ID: 235041
Title: Systems With UltraSPARC IV+ Processors Running Solaris 9
or 10 May Experience "send mondo timeout" Panic
Product: Solaris 9 Operating System, Solaris 10 Operating System
Category: Availability
Release Phase: Resolved
Resolved Date: 13-Jun-2008
To view this Sun Alert document please go to the following URL:
http://sunsolve.sun.com/search/document.do?assetkey=1-66-235041-1
If this Sun Alert document is not publicly available, go to the
SunSpectrum Member Support Center at www.sun.com/support and
search for the Sun Alert ID above.
-----------------------------------------------------------------
Sun Alert ID: 235122
Title: Vulnerability in the Solaris 10 Event Port
Implementation May Lead to a System Panic, Resulting in
a Denial of Service (DoS)
Product: Solaris 10 Operating System
Category: Security
Release Phase: Resolved
Resolved Date: 11-Jun-2008
To view this Sun Alert document please go to the following URL:
http://sunsolve.sun.com/search/document.do?assetkey=1-66-235122-1
If this Sun Alert document is not publicly available, go to the
SunSpectrum Member Support Center at www.sun.com/support and
search for the Sun Alert ID above.
-----------------------------------------------------------------
Sun Alert ID: 235521
Title: A Security Vulnerability in Sun Java System Calendar
Server May Allow Denial of Service (DoS) When Access
Logging is Enabled
Product: Sun Java System Calendar Server 6.3, Sun Java System
Calendar Server 6 2005Q4,Sun Java System Calendar
Server 6 2005Q1, Sun Java System Calendar Server 6
2004Q2, Sun ONE Calendar Server 6.0
Category: Security
Release Phase: Resolved
Resolved Date: 13-Jun-2008
To view this Sun Alert document please go to the following URL:
http://sunsolve.sun.com/search/document.do?assetkey=1-66-235521-1
If this Sun Alert document is not publicly available, go to the
SunSpectrum Member Support Center at www.sun.com/support and
search for the Sun Alert ID above.
-----------------------------------------------------------------
Sun Alert ID: 236641
Title: Unsupported changes to system files may cause
patchadd(1M) to fail partway through a Patch
Installation
Product: Solaris 10 Operating System
Category: Availability
Release Phase: Resolved
Resolved Date: 13-Jun-2008
To view this Sun Alert document please go to the following URL:
http://sunsolve.sun.com/search/document.do?assetkey=1-66-236641-1
If this Sun Alert document is not publicly available, go to the
SunSpectrum Member Support Center at www.sun.com/support and
search for the Sun Alert ID above.
-----------------------------------------------------------------
Sun Alert ID: 237764
Title: Two Security Vulnerabilities in samba(7) WINS Server
Daemon (nmbd) May Allow Execution of Arbitrary Code or
Lead to a Denial of Service (DoS) Condition
Product: Solaris 9 Operating System, Solaris 10 Operating System
Category: Security
Release Phase: Resolved
Resolved Date: 11-Jun-2008
To view this Sun Alert document please go to the following URL:
http://sunsolve.sun.com/search/document.do?assetkey=1-66-237764-1
If this Sun Alert document is not publicly available, go to the
SunSpectrum Member Support Center at www.sun.com/support and
search for the Sun Alert ID above.
-----------------------------------------------------------------
Sun Alert ID: 237944
Title: A Security Vulnerability in StarOffice/StarSuite 8 may
allow file manipulation and Arbitrary Code execution
Product: StarOffice 8, StarSuite 8
Category: Security
Release Phase: Resolved
Resolved Date: 11-Jun-2008
To view this Sun Alert document please go to the following URL:
http://sunsolve.sun.com/search/document.do?assetkey=1-66-237944-1
If this Sun Alert document is not publicly available, go to the
SunSpectrum Member Support Center at www.sun.com/support and
search for the Sun Alert ID above.
-----------------------------------------------------------------
Sun Alert ID: 237965
Title: A Security Vulnerability in IP Multicast Filter
processing of Sockets may lead to a system panic or
possible execution of Arbitrary Code
Product: Solaris 10 Operating System, OpenSolaris
Category: Security
Release Phase: Resolved
Resolved Date: 12-Jun-2008
To view this Sun Alert document please go to the following URL:
http://sunsolve.sun.com/search/document.do?assetkey=1-66-237965-1
If this Sun Alert document is not publicly available, go to the
SunSpectrum Member Support Center at www.sun.com/support and
search for the Sun Alert ID above.
-----------------------------------------------------------------
Sun Alert ID: 238250
Title: Denial of Service (DoS) Vulnerability in the Solaris
e1000g(7D) Gigabit Ethernet Driver
Product: Solaris 10 Operating System, OpenSolaris
Category: Security
Release Phase: Resolved
Resolved Date: 13-Jun-2008
To view this Sun Alert document please go to the following URL:
http://sunsolve.sun.com/search/document.do?assetkey=1-66-238250-1
If this Sun Alert document is not publicly available, go to the
SunSpectrum Member Support Center at www.sun.com/support and
search for the Sun Alert ID above.
-----------------------------------------------------------------
Sun Alert ID: 238251
Title: A Security Vulnerability in samba(7) Domain logons may
allow execution of Arbitrary code with Root privileges
Product: Solaris 9 Operating System, Solaris 10 Operating System,
SAMBA 3.0.0, SAMBA 3.0.27
Category: Security
Release Phase: Resolved
Resolved Date: 11-Jun-2008
To view this Sun Alert document please go to the following URL:
http://sunsolve.sun.com/search/document.do?assetkey=1-66-238251-1
If this Sun Alert document is not publicly available, go to the
SunSpectrum Member Support Center at www.sun.com/support and
search for the Sun Alert ID above.
-----------------------------------------------------------------
Sun Alert ID: 238492
Title: Multiple Security Vulnerabilities in Solaris 10 Firefox
may Allow Execution of Arbitrary Code and Access to
Unauthorized Data
Product: Firefox v2.0, Solaris 10 Operating System
Category: Security
Release Phase: Resolved
Resolved Date: 09-Jun-2008
To view this Sun Alert document please go to the following URL:
http://sunsolve.sun.com/search/document.do?assetkey=1-66-238492-1
If this Sun Alert document is not publicly available, go to the
SunSpectrum Member Support Center at www.sun.com/support and
search for the Sun Alert ID above.
-----------------------------------------------------------------
Sun Alert ID: 238493
Title: Security Vulnerability in inet_network() Library Routine
May Allow Denial of Service (DoS) to Applications
Product: Solaris 8 Operating System, Solaris 9 Operating System,
Solaris 10 Operating System, OpenSolaris
Category: Security
Release Phase: Resolved
Resolved Date: 09-Jun-2008
To view this Sun Alert document please go to the following URL:
http://sunsolve.sun.com/search/document.do?assetkey=1-66-238493-1
If this Sun Alert document is not publicly available, go to the
SunSpectrum Member Support Center at www.sun.com/support and
search for the Sun Alert ID above.
-----------------------------------------------------------------
Sun Alert ID: 238688
Title: Kernel Security Vulnerability on Solaris Systems Using
the Sun UltraSPARC T2 and UltraSPARC T2+ Processors May
Allow Denial of Service (DoS)
Product: Solaris 10 Operating System, OpenSolaris
Category: Security
Release Phase: Resolved
Resolved Date: 11-Jun-2008
To view this Sun Alert document please go to the following URL:
http://sunsolve.sun.com/search/document.do?assetkey=1-66-238688-1
If this Sun Alert document is not publicly available, go to the
SunSpectrum Member Support Center at www.sun.com/support and
search for the Sun Alert ID above.
=================================================================
Updated Sun Alert Notifications
(Total Updated: 1 )
Sun Alert ID: 200824 Previous ID: 101102
Title: Under Rare Conditions Sun Fire Servers may Experience
"send_mondo timeout" Panics
Product: Solaris 9 Operating System, Solaris 8 Operating System
Category: Availability
Release Phase: Resolved
Resolved Date: 07-May-2003
Last Updated: 10-Jun-2008
To view this Sun Alert document please go to the following URL:
http://sunsolve.sun.com/search/document.do?assetkey=1-66-200824-1
If this Sun Alert document is not publicly available, go to the
SunSpectrum Member Support Center at www.sun.com/support and
search for the Sun Alert ID above.
==================================================================
Thanks for tuning in to the Sun Alert Weekly Summary Report!
Best regards,
Sun Alert Program Office
Sun Microsystems, Inc.
sunalert-newsletter@sun.com
