Home / mailings SUN ALERT WEEKLY SUMMARY REPORT
Posted on 19 January 2009
Sun AlertsWeeks of 11-Jan-2009 to 17-Jan-2009
Please take a moment to fill in this survey on Sun Alerts.
https://www.surveymonkey.com/s.aspx?sm=YRAqK7rRj1vJvpmobvRYvw_3d_3d
Last day to take the survey will be Friday January 23, 2009
We appreciate your feedback.
Welcome to the Sun Alert Weekly Summary Report, the newsletter
that provides you with a weekly listing of newly released and
updated Sun Alert Notifications. It is being distributed
to inform you about critical hardware and software issues that
could impact the availability, security, and data integrity of
your computing environment.
==================================================================
ISSUE HIGHLIGHTS
* New and Updated Sun Alerts for 3 Release Phases:
Preliminary, Workaround and Resolved
Note: To read past newsletters go to sunsolve.sun.com,
hit Accept, use Advanced Search with keywords "weekly
summary report newsletter", Sort by Date, and select the
Sun Alert Notifications collection.
=================================================================
New Preliminary Sun Alert Notifications
None
=================================================================
New Workaround Sun Alert Notifications
(Total Workaround: 1)
Sun Alert ID: 248386
Title: Security vulnerability in Solaris Related to the Apache
1.3 mod_perl(3) Module Component "PerlRun.pm" may Lead
to Denial of Service (DoS)
Product: Solaris 8 Operating System, Solaris 9 Operating System,
Solaris 10 Operating System
Category: Security
Release Phase: Workaround
Workaround Date: 14-Jan-2009
To view this Sun Alert document please go to the following URL:
http://sunsolve.sun.com/search/document.do?assetkey=1-66-248386-1
If this Sun Alert document is not publicly available, go to the
SunSpectrum Member Support Center at www.sun.com/support and
search for the Sun Alert ID above.
=================================================================
New Resolved Sun Alert Notifications
(Total Resolved: 14)
Sun Alert ID: 237264
Title: 4Gb Single/Dual FC HBA May be Unable to SANboot After
Installing FCode 1.26 Patch 123305-03
Product: Sun StorageTek 4 Gb Fibre Channel PCIe HBA, QLogic, Dual
Port, Sun StorageTek 4 Gb Fibre Channel PCIe HBA,
QLogic, Single Port, Sun StorageTek Enterprise Class 4
Gb Fibre Channel PCI-X HBA, QLogic, Dual Port, Sun
StorageTek Enterprise Class 4 Gb Fibre Channel PCI-X
HBA, QLogic, Single Port
Category: Availability
Release Phase: Resolved
Resolved Date: 15-Jan-2009
To view this Sun Alert document please go to the following URL:
http://sunsolve.sun.com/search/document.do?assetkey=1-66-237264-1
If this Sun Alert document is not publicly available, go to the
SunSpectrum Member Support Center at www.sun.com/support and
search for the Sun Alert ID above.
-----------------------------------------------------------------
Sun Alert ID: 237684
Title: One or More Incorrect Storage Domain Licenses May be
Enabled on Sun StorageTek 25xx Arrays
Product: Sun StorageTek 2510 Array, Sun StorageTek 2530 Array,
Sun StorageTek 2540 Array
Category: Availability
Release Phase: Resolved
Resolved Date: 14-Jan-2009
To view this Sun Alert document please go to the following URL:
http://sunsolve.sun.com/search/document.do?assetkey=1-66-237684-1
If this Sun Alert document is not publicly available, go to the
SunSpectrum Member Support Center at www.sun.com/support and
search for the Sun Alert ID above.
-----------------------------------------------------------------
Sun Alert ID: 239647
Title: Sun SPARC Enterprise M4000/5000/8000/9000 Servers with
patch 127127-11 May Experience Random Panics
Product: Solaris 10 Operating System
Category: Availability
Release Phase: Resolved
Resolved Date: 16-Jan-2009
To view this Sun Alert document please go to the following URL:
http://sunsolve.sun.com/search/document.do?assetkey=1-66-239647-1
If this Sun Alert document is not publicly available, go to the
SunSpectrum Member Support Center at www.sun.com/support and
search for the Sun Alert ID above.
-----------------------------------------------------------------
Sun Alert ID: 242166
Title: Security Vulnerability in Sun Java System Access Manager
May Allow Unauthorized Access Through Revealed
Passwords
Product: Sun Java System Access Manager 7 2005Q4, Sun Java System
Identity Manager 7.1, Sun Java System Access Manager
6.3 2005Q1
Category: Security
Release Phase: Resolved
Resolved Date: 12-Jan-2009
To view this Sun Alert document please go to the following URL:
http://sunsolve.sun.com/search/document.do?assetkey=1-66-242166-1
If this Sun Alert document is not publicly available, go to the
SunSpectrum Member Support Center at www.sun.com/support and
search for the Sun Alert ID above.
-----------------------------------------------------------------
Sun Alert ID: 245626
Title: ZFS Pool Corruption May Occur With Sun Cluster 3.2
Running Solaris 10 with patch 137137-09 or 137138-09
Product: Solaris 10 Operating System, OpenSolaris
Category: Availability, Data Loss
Release Phase: Resolved
Resolved Date: 12-Jan-2009
To view this Sun Alert document please go to the following URL:
http://sunsolve.sun.com/search/document.do?assetkey=1-66-245626-1
If this Sun Alert document is not publicly available, go to the
SunSpectrum Member Support Center at www.sun.com/support and
search for the Sun Alert ID above.
-----------------------------------------------------------------
Sun Alert ID: 247346
Title: A Security Vulnerability in the libxml2 Library May Lead
to Denial of Service (DoS)
Product: Solaris 9 Operating System, Solaris 10 Operating System
Category: Security
Release Phase: Resolved
Resolved Date: 15-Jan-2009
To view this Sun Alert document please go to the following URL:
http://sunsolve.sun.com/search/document.do?assetkey=1-66-247346-1
If this Sun Alert document is not publicly available, go to the
SunSpectrum Member Support Center at www.sun.com/support and
search for the Sun Alert ID above.
-----------------------------------------------------------------
Sun Alert ID: 247986
Title: Security Vulnerability in aio_suspend(3RT) May Lead to a
System Panic, Resulting in a Denial of Service (DoS)
Product: Solaris 8 Operating System, Solaris 9 Operating System,
Solaris 10 Operating System, OpenSolaris
Category: Security
Release Phase: Resolved
Resolved Date: 12-Jan-2009
To view this Sun Alert document please go to the following URL:
http://sunsolve.sun.com/search/document.do?assetkey=1-66-247986-1
If this Sun Alert document is not publicly available, go to the
SunSpectrum Member Support Center at www.sun.com/support and
search for the Sun Alert ID above.
-----------------------------------------------------------------
Sun Alert ID: 248526
Title: A Security Vulnerability in the vncviewer(1) RFB
Protocol Validation May Allow Execution of Arbitrary
Code and Lead to a Denial of Service (DoS)
Product: Solaris 10 Operating System, OpenSolaris
Category: Security
Release Phase: Resolved
Resolved Date: 12-Jan-2009
To view this Sun Alert document please go to the following URL:
http://sunsolve.sun.com/search/document.do?assetkey=1-66-248526-1
If this Sun Alert document is not publicly available, go to the
SunSpectrum Member Support Center at www.sun.com/support and
search for the Sun Alert ID above.
-----------------------------------------------------------------
Sun Alert ID: 249086
Title: Security Vulnerability in samba(7) Specially Crafted
Packet May Allow Execution of Arbitrary Code With Root
Privileges
Product: Solaris 9 Operating System, Solaris 10 Operating System
Category: Security
Release Phase: Resolved
Resolved Date: 12-Jan-2009
To view this Sun Alert document please go to the following URL:
http://sunsolve.sun.com/search/document.do?assetkey=1-66-249086-1
If this Sun Alert document is not publicly available, go to the
SunSpectrum Member Support Center at www.sun.com/support and
search for the Sun Alert ID above.
-----------------------------------------------------------------
Sun Alert ID: 249106
Title: A Security Vulnerability in Sun Java System Access
Manager May Allow Privilege Escalation of Sub-Realm
Administrators
Product: Sun Java System Access Manager 7.1
Category: Security
Release Phase: Resolved
Resolved Date: 12-Jan-2009
To view this Sun Alert document please go to the following URL:
http://sunsolve.sun.com/search/document.do?assetkey=1-66-249106-1
If this Sun Alert document is not publicly available, go to the
SunSpectrum Member Support Center at www.sun.com/support and
search for the Sun Alert ID above.
-----------------------------------------------------------------
Sun Alert ID: 249126
Title: Incorrect Software Setting Prior to Shipping on Certain
Sun SPARC M4000/M5000 Servers May Allow Unauthorized
Access
Product: Sun SPARC Enterprise M4000 Server, Sun SPARC Enterprise
M5000 Server
Category: Availability, Security
Release Phase: Resolved
Resolved Date: 12-Jan-2009
To view this Sun Alert document please go to the following URL:
http://sunsolve.sun.com/search/document.do?assetkey=1-66-249126-1
If this Sun Alert document is not publicly available, go to the
SunSpectrum Member Support Center at www.sun.com/support and
search for the Sun Alert ID above.
-----------------------------------------------------------------
Sun Alert ID: 249306
Title: Security Vulnerabilities in the Solaris lpadmin(1M) and
ppdmgr(1M) Utilities May Lead to a Denial of Service
(DoS) Condition
Product: Solaris 10 Operating System, OpenSolaris
Category: Security
Release Phase: Resolved
Resolved Date: 13-Jan-2009
To view this Sun Alert document please go to the following URL:
http://sunsolve.sun.com/search/document.do?assetkey=1-66-249306-1
If this Sun Alert document is not publicly available, go to the
SunSpectrum Member Support Center at www.sun.com/support and
search for the Sun Alert ID above.
-----------------------------------------------------------------
Sun Alert ID: 249946
Title: Sun StorageTek 6140 Arrays May Cause Servers to Lose
Access to Data due to SCSI Timeouts
Product: Sun StorageTek 6140 Array
Category: Availability
Release Phase: Resolved
Resolved Date: 16-Jan-2009
To view this Sun Alert document please go to the following URL:
http://sunsolve.sun.com/search/document.do?assetkey=1-66-249946-1
If this Sun Alert document is not publicly available, go to the
SunSpectrum Member Support Center at www.sun.com/support and
search for the Sun Alert ID above.
-----------------------------------------------------------------
Sun Alert ID: 239188
Title: Security Vulnerability Relating to the
posix_fallocate(3C) System Call May Lead to a Denial of
Service (DoS)
Product: OpenSolaris
Category: Security
Release Phase: Resolved
Resolved Date: 13-Jan-2009
To view this Sun Alert document please go to the following URL:
http://sunsolve.sun.com/search/document.do?assetkey=1-66-239188-1
If this Sun Alert document is not publicly available, go to the
SunSpectrum Member Support Center at www.sun.com/support and
search for the Sun Alert ID above.
=================================================================
Updated Sun Alert Notifications
(Total Updated: 1)
Sun Alert ID: 242267
Title: Security Vulnerability in the ACL (acl(2))
Implementation for UFS File Systems May Allow a Local
User to Panic the System
Product: Solaris 8 Operating System, Solaris 9 Operating System,
Solaris 10 Operating System, OpenSolaris
Category: Security
Release Phase: Workaround
Preliminary Date: 18-Sep-2008
Last Updated: 15-Jan-2009
To view this Sun Alert document please go to the following URL:
http://sunsolve.sun.com/search/document.do?assetkey=1-66-242267-1
If this Sun Alert document is not publicly available, go to the
SunSpectrum Member Support Center at www.sun.com/support and
search for the Sun Alert ID above.
==================================================================
Thanks for tuning in to the Sun Alert Weekly Summary Report!
Best regards,
Sun Alert Program Office
Sun Microsystems, Inc.
sunalert-newsletter@sun.com
