Home / mailings SUN ALERT WEEKLY SUMMARY REPORT
Posted on 08 September 2008
Sun AlertsWeek of 31-Aug-2008 to 06-Sep-2008
Welcome to the Sun Alert Weekly Summary Report, the newsletter
that provides you with a weekly listing of newly released and
updated Sun Alert Notifications. It is being distributed
to inform you about critical hardware and software issues that
could impact the availability, security, and data integrity of
your computing environment.
==================================================================
ISSUE HIGHLIGHTS
* New and Updated Sun Alerts for 3 Release Phases:
Preliminary, Workaround and Resolved
=================================================================
New Preliminary Sun Alert Notifications
None
=================================================================
New Workaround Sun Alert Notifications
None
=================================================================
New Resolved Sun Alert Notifications
(Total Resolved: 8)
Sun Alert ID: 200041 Previous ID: 103078
Title: Security Vulnerabilities in Java Runtime Environment May
Allow Network Access Restrictions to be Circumvented
Product: Java 2 Platform, Standard Edition
Category: Security
Release Phase: Resolved
Resolved Date: 05-Sep-2008
To view this Sun Alert document please go to the following URL:
http://sunsolve.sun.com/search/document.do?assetkey=1-66-200041-1
If this Sun Alert document is not publicly available, go to the
SunSpectrum Member Support Center at www.sun.com/support and
search for the Sun Alert ID above.
-----------------------------------------------------------------
Sun Alert ID: 201331 Previous ID: 103160
Title: Security Vulnerabilities in libtiff(3) May Allow Denial
of Service (DoS) or Privilege Elevation
Product: Solaris 8 Operating System, Solaris 9 Operating System,
Solaris 10 Operating System
Category: Security
Release Phase: Resolved
Resolved Date: 02-Sep-2008
To view this Sun Alert document please go to the following URL:
http://sunsolve.sun.com/search/document.do?assetkey=1-66-201331-1
If this Sun Alert document is not publicly available, go to the
SunSpectrum Member Support Center at www.sun.com/support and
search for the Sun Alert ID above.
-----------------------------------------------------------------
Sun Alert ID: 201332 Previous ID: 103099
Title: Multiple Security Vulnerabilities in the Solaris Tag
Image File Format Library libtiff(3)
Product: Solaris 9 Operating System, Solaris 10 Operating System,
Solaris 8 Operating System
Category: Security
Release Phase: Resolved
Resolved Date: 03-Sep-2008
To view this Sun Alert document please go to the following URL:
http://sunsolve.sun.com/search/document.do?assetkey=1-66-201332-1
If this Sun Alert document is not publicly available, go to the
SunSpectrum Member Support Center at www.sun.com/support and
search for the Sun Alert ID above.
-----------------------------------------------------------------
Sun Alert ID: 201335 Previous ID: 103139
Title: Multiple Security Vulnerabilities in the JavaScript
Engine in Mozilla 1.7 for Solaris 8, 9 and 10
Product: Mozilla v1.7, Solaris 9 Operating System, Solaris 10
Operating System, Solaris 8 Operating System
Category: Security
Release Phase: Resolved
Resolved Date: 03-Sep-2008
To view this Sun Alert document please go to the following URL:
http://sunsolve.sun.com/search/document.do?assetkey=1-66-201335-1
If this Sun Alert document is not publicly available, go to the
SunSpectrum Member Support Center at www.sun.com/support and
search for the Sun Alert ID above.
-----------------------------------------------------------------
Sun Alert ID: 201505 Previous ID: 103125
Title: Multiple Security Vulnerabilities in JavaScript Engine
in Mozilla 1.7 for Solaris 8, 9 and 10
Product: Mozilla v1.7, Solaris 9 Operating System, Solaris 10
Operating System, Solaris 8 Operating System
Category: Security
Release Phase: Resolved
Resolved Date: 03-Sep-2008
To view this Sun Alert document please go to the following URL:
http://sunsolve.sun.com/search/document.do?assetkey=1-66-201505-1
If this Sun Alert document is not publicly available, go to the
SunSpectrum Member Support Center at www.sun.com/support and
search for the Sun Alert ID above.
-----------------------------------------------------------------
Sun Alert ID: 201519 Previous ID: 103079
Title: Security Vulnerability in Java Runtime Environment With
Applet Caching May Allow Network Access Restrictions to
be Circumvented
Product: Java 2 Platform, Standard Edition
Category: Security
Release Phase: Resolved
Resolved Date: 05-Sep-2008
To view this Sun Alert document please go to the following URL:
http://sunsolve.sun.com/search/document.do?assetkey=1-66-201519-1
If this Sun Alert document is not publicly available, go to the
SunSpectrum Member Support Center at www.sun.com/support and
search for the Sun Alert ID above.
-----------------------------------------------------------------
Sun Alert ID: 239312
Title: Security Vulnerabilities in Tomcat 4.0 Shipped with
Solaris 9 and 10
Product: Solaris 9 Operating System, Solaris 10 Operating System
Category: Security
Release Phase: Resolved
Resolved Date: 04-Sep-2008
To view this Sun Alert document please go to the following URL:
http://sunsolve.sun.com/search/document.do?assetkey=1-66-239312-1
If this Sun Alert document is not publicly available, go to the
SunSpectrum Member Support Center at www.sun.com/support and
search for the Sun Alert ID above.
-----------------------------------------------------------------
Sun Alert ID: 240786
Title: On Certain Platforms, Sun Explorer Data Collector
Version 5.12 Improperly Removes Collected Data and
"sed: command garbled"
Product: Sun Explorer Data Collector version 5.12
Category: Availability
Release Phase: Resolved
Resolved Date: 02-Sep-2008
To view this Sun Alert document please go to the following URL:
http://sunsolve.sun.com/search/document.do?assetkey=1-66-240786-1
If this Sun Alert document is not publicly available, go to the
SunSpectrum Member Support Center at www.sun.com/support and
search for the Sun Alert ID above.
=================================================================
Updated Sun Alert Notifications
(Total Updated: 3)
Sun Alert ID: 200810 Previous ID: 101393
Title: TCP Port Conflict Between Sun Cluster for OPS/RAC and
Solaris Secure Shell Server, and Possible Denial of
Service Attack by Unprivileged Users Upon Sun Cluster
Product: Sun Cluster 2.2, Sun Cluster 3.0, Sun Cluster 3.1, Sun
Cluster 3.2
Category: Availability, Security
Release Phase: Resolved
Resolved Date: 25-Nov-2003
Last Updated: 04-Sep-2008
To view this Sun Alert document please go to the following URL:
http://sunsolve.sun.com/search/document.do?assetkey=1-66-200810-1
If this Sun Alert document is not publicly available, go to the
SunSpectrum Member Support Center at www.sun.com/support and
search for the Sun Alert ID above.
-----------------------------------------------------------------
Sun Alert ID: 200871 Previous ID: 102987
Title: libpng(3) Contains a Denial of Service (DoS)
Vulnerability
Product: Solaris 9 Operating System, Solaris 10 Operating System,
Solaris 8 Operating System
Category: Security
Release Phase: Workaround
Workaround Date: 28-Jun-2007
Last Updated: 02-Sep-2008
To view this Sun Alert document please go to the following URL:
http://sunsolve.sun.com/search/document.do?assetkey=1-66-200871-1
If this Sun Alert document is not publicly available, go to the
SunSpectrum Member Support Center at www.sun.com/support and
search for the Sun Alert ID above.
-----------------------------------------------------------------
Sun Alert ID: 240866
Title: Security Vulnerability in Solaris 10 NFS Remote
Procedure Calls (RPCs) May Allow a Denial of Service
(DoS) or Data Integrity Issues for Non-Global Zones
Product: Solaris 10 Operating System, OpenSolaris
Category: Security
Release Phase: Resolved
Resolved Date: 25-Aug-2008
Last Updated: 02-Sep-2008
To view this Sun Alert document please go to the following URL:
http://sunsolve.sun.com/search/document.do?assetkey=1-66-240866-1
If this Sun Alert document is not publicly available, go to the
SunSpectrum Member Support Center at www.sun.com/support and
search for the Sun Alert ID above.
==================================================================
* NEW RSS Feed:
http://www.sun.com/rss/?t=3&pgID=1&trss=Sun%20Alerts%20-%20New&uri=http:
//cds-srv.sun.com:8700/rss/insert/public/sunalert_insert.xml
* Sun Alert Patch Report
This report is no longer available on SunSolve, however a new TEXT version is
available at:
https://supportuploads.sun.com/download?directory=downloads&file=SApatches%2dpub%2etxt
or go to http://supportfiles.sun.com/download and enter the following
file name, SApatches-pub.txt, from the directory named "downloads".
==================================================================
Thanks for tuning in to the Sun Alert Weekly Summary Report!
Best regards,
Sun Alert Program Office
Sun Microsystems, Inc.
sunalert-newsletter@sun.com
