Home / mailings SUN ALERT WEEKLY SUMMARY REPORT
Posted on 18 August 2008
Sun AlertsWeek of 10-Aug-2008 to 16-Aug-2008
Welcome to the Sun Alert Weekly Summary Report, the newsletter
that provides you with a weekly listing of newly released and
updated Sun Alert Notifications. It is being distributed
to inform you about critical hardware and software issues that
could impact the availability, security, and data integrity of
your computing environment.
==================================================================
ISSUE HIGHLIGHTS
* New and Updated Sun Alerts for 3 Release Phases:
Preliminary, Workaround and Resolved
==================================================================
New Preliminary Sun Alert Notifications
(Total Preliminary: 1)
Sun Alert ID: 240708
Title: Multiple Security Vulnerabilities in rdesktop may lead
to Execution of Arbitrary Code or Denial of Service
(DOS)
Product: OpenSolaris
Category: Security
Release Phase: Preliminary
Premiminary Date: 15-Aug-2008
To view this Sun Alert document please go to the following URL:
http://sunsolve.sun.com/search/document.do?assetkey=1-66-240708-1
If this Sun Alert document is not publicly available, go to the
SunSpectrum Member Support Center at www.sun.com/support and
search for the Sun Alert ID above.
=================================================================
New Workaround Sun Alert Notifications
(Total Workaround: 2)
Sun Alert ID: 240325
Title: Power Supply Unit (PSU) for External I/O Expansion Unit
Does Not Power On after Power Source Interruption
Product: Sun External I/O Expansion Unit
Category: Availability
Release Phase: Workaround
Workaround Date: 14-Aug-2008
To view this Sun Alert document please go to the following URL:
http://sunsolve.sun.com/search/document.do?assetkey=1-66-240325-1
If this Sun Alert document is not publicly available, go to the
SunSpectrum Member Support Center at www.sun.com/support and
search for the Sun Alert ID above.
-----------------------------------------------------------------
Sun Alert ID: 240586
Title: Adding or removing a PCI card with a PCI-PCI bridge may
change Device Paths on Solaris X86 Systems
Product: Solaris 8 Operating System, Solaris 9 Operating System,
Solaris 10 Operating System, OpenSolaris
Category: Availability
Release Phase: Workaround
Workaround Date: 14-Aug-2008
To view this Sun Alert document please go to the following URL:
http://sunsolve.sun.com/search/document.do?assetkey=1-66-240586-1
If this Sun Alert document is not publicly available, go to the
SunSpectrum Member Support Center at www.sun.com/support and
search for the Sun Alert ID above.
=================================================================
New Resolved Sun Alert Notifications
(Total Resolved: 4)
Sun Alert ID: 231581
Title: Completing the SCSI Command When There is a Data
Underrun Error Condition May Result in Data Integrity
Issues
Product: Storage Network Foundation Software Driver
Category: Data Loss
Release Phase: Resolved
Resolved Date: 13-Aug-2008
To view this Sun Alert document please go to the following URL:
http://sunsolve.sun.com/search/document.do?assetkey=1-66-231581-1
If this Sun Alert document is not publicly available, go to the
SunSpectrum Member Support Center at www.sun.com/support and
search for the Sun Alert ID above.
-----------------------------------------------------------------
Sun Alert ID: 239006
Title: Multiple Security Vulnerabilities in the FreeType2
library for Printer Font Binary (PFB) or TrueType Font
(TTF) format font files may lead to a Denial of Service
(DoS) or allow Execution of Arbitrary Code
Product: Solaris 8 Operating System, Solaris 9 Operating System,
Solaris 10 Operating System, OpenSolaris
Category: Security
Release Phase: Resolved
Resolved Date: 12-Aug-2008
To view this Sun Alert document please go to the following URL:
http://sunsolve.sun.com/search/document.do?assetkey=1-66-239006-1
If this Sun Alert document is not publicly available, go to the
SunSpectrum Member Support Center at www.sun.com/support and
search for the Sun Alert ID above.
-----------------------------------------------------------------
Sun Alert ID: 239308
Title: Cross Site Scripting (XSS) Vulnerability in Sun Java
System Portal Server's Portlets may Lead to Execution
of Arbitrary Code
Product: Sun Java System Portal Server 7.0, Sun Java System
Portal Server 7.1
Category: Security
Release Phase: Resolved
Resolved Date: 15-Aug-2008
To view this Sun Alert document please go to the following URL:
http://sunsolve.sun.com/search/document.do?assetkey=1-66-239308-1
If this Sun Alert document is not publicly available, go to the
SunSpectrum Member Support Center at www.sun.com/support and
search for the Sun Alert ID above.
-----------------------------------------------------------------
Sun Alert ID: 240327
Title: A Security Vulnerability in the ftp Subsystem of Sun
Java System Web Proxy Server 4.0 May Lead to a Denial
of Service (DoS)
Product: Sun Java System Web Proxy Server 4.0
Category: Security
Release Phase: Resolved
Resolved Date: 12-Aug-2008
To view this Sun Alert document please go to the following URL:
http://sunsolve.sun.com/search/document.do?assetkey=1-66-240327-1
If this Sun Alert document is not publicly available, go to the
SunSpectrum Member Support Center at www.sun.com/support and
search for the Sun Alert ID above.
=================================================================
Updated Sun Alert Notifications
(Total Updated: 2)
Sun Alert ID: 200810 Previous ID: 101393
Title: TCP Port Conflict Between Sun Cluster for OPS/RAC and
Solaris Secure Shell Server, and Possible Denial of
Service Attack by Unprivileged Users Upon Sun Cluster
Product:
Category: Availability, Security
Release Phase: Resolved
Resolved Date: 25-Nov-2003
Last Updated: 13-Aug-2008
To view this Sun Alert document please go to the following URL:
http://sunsolve.sun.com/search/document.do?assetkey=1-66-200810-1
If this Sun Alert document is not publicly available, go to the
SunSpectrum Member Support Center at www.sun.com/support and
search for the Sun Alert ID above.
-----------------------------------------------------------------
Sun Alert ID: 240088
Title: mem_cache Kernel Module May Cause Panic When Receiving
an Invalid Ioctl
Product: Solaris 10 Operating System, OpenSolaris
Category: Availability
Release Phase: Workaround
Workaround Date: 31-Jul-2008
Last Updated: 12-Aug-2008
To view this Sun Alert document please go to the following URL:
http://sunsolve.sun.com/search/document.do?assetkey=1-66-240088-1
If this Sun Alert document is not publicly available, go to the
SunSpectrum Member Support Center at www.sun.com/support and
search for the Sun Alert ID above.
==================================================================
* NEW RSS Feed:
http://www.sun.com/rss/?t=3&pgID=1&trss=Sun%20Alerts%20-%20New&uri=http:
//cds-srv.sun.com:8700/rss/insert/public/sunalert_insert.xml
* Sun Alert Patch Report
This report is no longer available on SunSolve, however a new TEXT version is
available at:
https://supportuploads.sun.com/download?directory=downloads&file=SApatches%2dpub%2etxt
or go to http://supportfiles.sun.com/download and enter the following
file name, SApatches-pub.txt, from the directory named "downloads".
==================================================================
Thanks for tuning in to the Sun Alert Weekly Summary Report!
Best regards,
Sun Alert Program Office
Sun Microsystems, Inc.
sunalert-newsletter@sun.com
