Home / mailings SUN ALERT WEEKLY SUMMARY REPORT
Posted on 30 March 2009
Sun AlertsWeek of 22-Mar-2009 to 28-Mar-2009
Welcome to the Sun Alert Weekly Summary Report, the newsletter
that provides you with a weekly listing of newly released and
updated Sun Alert Notifications. It is being distributed
to inform you about critical hardware and software issues that
could impact the availability, security, and data integrity of
your computing environment.
==================================================================
ISSUE HIGHLIGHTS
* New and Updated Sun Alerts for 3 Release Phases:
Preliminary, Workaround and Resolved
Note: To read past newsletters go to sunsolve.sun.com,
hit Accept, use Advanced Search with keywords "weekly
summary report newsletter", Sort by Date, and select the
Sun Alert Notifications collection.
Now Available: Databases / ServerVirtualization / Virtualization / Blueprint
Best Practices for Running Oracle Databases in Solaris Containers - blueprint
at: http://www.sun.com/offers/details/820-7195.html
=================================================================
New Preliminary Sun Alert Notifications
None
=================================================================
New Workaround Sun Alert Notifications
(Total Workaround: 1)
Sun Alert ID: 255948
Title: Limited Number of Sun Fire T2000 and SPARC Enterprise
T2000 Servers may Experience a Shutdown with SC Alert
"Chassis cover removed"
Product: Sun Fire T2000 Server, Sun SPARC Enterprise T2000 Server
Category: Availability
Release Phase: Workaround
Workaround Date: 27-Mar-2009
To view this Sun Alert document please go to the following URL:
http://sunsolve.sun.com/search/document.do?assetkey=1-66-255948-1
If this Sun Alert document is not publicly available, go to the
SunSpectrum Member Support Center at www.sun.com/support and
search for the Sun Alert ID above.
=================================================================
New Resolved Sun Alert Notifications
(Total Resolved: 9)
Sun Alert ID: 252767
Title: A Security Vulnerability in the Solaris Kerberos PAM
Module May Allow Use of a User Specified Kerberos
Configuration File, Leading to Escalation of Privileges
Product: Sun Enterprise Authentication Mechanism 1.0.1, Solaris 9
Operating System, Solaris 10 Operating System,
OpenSolaris
Category: Security
Release Phase: Resolved
Resolved Date: 25-Mar-2009
To view this Sun Alert document please go to the following URL:
http://sunsolve.sun.com/search/document.do?assetkey=1-66-252767-1
If this Sun Alert document is not publicly available, go to the
SunSpectrum Member Support Center at www.sun.com/support and
search for the Sun Alert ID above.
-----------------------------------------------------------------
Sun Alert ID: 254569
Title: Security Vulnerabilities in the Java Runtime Environment
(JRE) LDAP Implementation may Allow a Denial of Service
(DoS) and Malicious Code to be Executed
Product: Java Platform, Standard Edition (Java SE)
Category: Security
Release Phase: Resolved
Resolved Date: 24-Mar-2009
To view this Sun Alert document please go to the following URL:
http://sunsolve.sun.com/search/document.do?assetkey=1-66-254569-1
If this Sun Alert document is not publicly available, go to the
SunSpectrum Member Support Center at www.sun.com/support and
search for the Sun Alert ID above.
-----------------------------------------------------------------
Sun Alert ID: 254570
Title: Integer and Buffer Overflow Vulnerabilities in the Java
Runtime Environment (JRE) "unpack200" JAR Unpacking
Utility May Lead to Escalation of Privileges
Product: Java Platform, Standard Edition (Java SE)
Category: Security
Release Phase: Resolved
Resolved Date: 24-Mar-2009
To view this Sun Alert document please go to the following URL:
http://sunsolve.sun.com/search/document.do?assetkey=1-66-254570-1
If this Sun Alert document is not publicly available, go to the
SunSpectrum Member Support Center at www.sun.com/support and
search for the Sun Alert ID above.
-----------------------------------------------------------------
Sun Alert ID: 254571
Title: Buffer Overflow Vulnerabilities in the Java Runtime
Environment (JRE) with Processing Image Files and Fonts
may Allow Privileges to be Escalated
Product: Java Platform, Standard Edition (Java SE)
Category: Security
Release Phase: Resolved
Resolved Date: 24-Mar-2009
To view this Sun Alert document please go to the following URL:
http://sunsolve.sun.com/search/document.do?assetkey=1-66-254571-1
If this Sun Alert document is not publicly available, go to the
SunSpectrum Member Support Center at www.sun.com/support and
search for the Sun Alert ID above.
-----------------------------------------------------------------
Sun Alert ID: 254608
Title: Security Vulnerabilities in the Java Runtime Environment
(JRE) With Storing and Processing Font Files May Allow
Denial of Service (DOS)
Product: Java Platform, Standard Edition (Java SE)
Category: Security
Release Phase: Resolved
Resolved Date: 24-Mar-2009
To view this Sun Alert document please go to the following URL:
http://sunsolve.sun.com/search/document.do?assetkey=1-66-254608-1
If this Sun Alert document is not publicly available, go to the
SunSpectrum Member Support Center at www.sun.com/support and
search for the Sun Alert ID above.
-----------------------------------------------------------------
Sun Alert ID: 254609
Title: A Security Vulnerability in the Java Runtime Environment
(JRE) HTTP Server Implementation May Allow a Denial of
Service (DoS) Condition on a JAX-WS Service Endpoint
Product: Java Platform, Standard Edition (Java SE)
Category: Security
Release Phase: Resolved
Resolved Date: 24-Mar-2009
To view this Sun Alert document please go to the following URL:
http://sunsolve.sun.com/search/document.do?assetkey=1-66-254609-1
If this Sun Alert document is not publicly available, go to the
SunSpectrum Member Support Center at www.sun.com/support and
search for the Sun Alert ID above.
-----------------------------------------------------------------
Sun Alert ID: 254610
Title: A Security Vulnerability in the Java Runtime Environment
(JRE) Virtual Machine With Code Generation May Allow
Escalation of Privileges
Product: Java Platform, Standard Edition (Java SE)
Category: Security
Release Phase: Resolved
Resolved Date: 24-Mar-2009
To view this Sun Alert document please go to the following URL:
http://sunsolve.sun.com/search/document.do?assetkey=1-66-254610-1
If this Sun Alert document is not publicly available, go to the
SunSpectrum Member Support Center at www.sun.com/support and
search for the Sun Alert ID above.
-----------------------------------------------------------------
Sun Alert ID: 254611
Title: Multiple Security Vulnerabilities in Java Plug-in May
Allow Privileges to be Escalated
Product: Java Platform, Standard Edition (Java SE)
Category: Security
Release Phase: Resolved
Resolved Date: 24-Mar-2009
To view this Sun Alert document please go to the following URL:
http://sunsolve.sun.com/search/document.do?assetkey=1-66-254611-1
If this Sun Alert document is not publicly available, go to the
SunSpectrum Member Support Center at www.sun.com/support and
search for the Sun Alert ID above.
-----------------------------------------------------------------
Sun Alert ID: 255608
Title: A Security Vulnerability in OpenSolaris may Allow a
Privileged User Inside a non-global Zone to Execute
Arbitrary Code Within a Global Zone
Product: OpenSolaris
Category: Security
Release Phase: Resolved
Resolved Date: 26-Mar-2009
To view this Sun Alert document please go to the following URL:
http://sunsolve.sun.com/search/document.do?assetkey=1-66-255608-1
If this Sun Alert document is not publicly available, go to the
SunSpectrum Member Support Center at www.sun.com/support and
search for the Sun Alert ID above.
=================================================================
Updated Sun Alert Notifications
Total Updated: 2
Sun Alert ID: 234461 Previous ID: 201521
Title: Solaris Daylight Saving Time (DST) Update (Aug 2008, Oct
2008, Mar 2009)
Product: Solaris 8 Operating System, Solaris 9 Operating System,
Solaris 10 Operating System
Category: Availability
Release Phase: Resolved
Resolved Date: 07-Mar-2008
Last Updated: 24-Mar-2009
To view this Sun Alert document please go to the following URL:
http://sunsolve.sun.com/search/document.do?assetkey=1-66-234461-1
If this Sun Alert document is not publicly available, go to the
SunSpectrum Member Support Center at www.sun.com/support and
search for the Sun Alert ID above.
-----------------------------------------------------------------
Sun Alert ID: 244646
Title: Installing Certain Kernel Patches may Change the
Behavior of nanosleep(3RT)
Product: Solaris 9 Operating System, Solaris 10 Operating System,
OpenSolaris
Category: Availability
Release Phase: Workaround
Workaround Date: 29-Oct-2008
Last Updated: 26-Mar-2009
To view this Sun Alert document please go to the following URL:
http://sunsolve.sun.com/search/document.do?assetkey=1-66-244646-1
If this Sun Alert document is not publicly available, go to the
SunSpectrum Member Support Center at www.sun.com/support and
search for the Sun Alert ID above.
==================================================================
RSS Feed
http://www.sun.com/rss/?t=3&pgID=1&trss=Sun%20Alerts%20-%20New&uri=http:
//cds-srv.sun.com:8700/rss/insert/public/sunalert_insert.xml
Sun Alert Patch Report
This report is no longer available on SunSolve, however a new TEXT version is
available at:
https://supportuploads.sun.com/download?directory=downloads&file=SApatches%2dpub%2etxt
or go to http://supportfiles.sun.com/download and enter the following
file name, SApatches-pub.txt, from the directory named "downloads".
==================================================================
Thanks for tuning in to the Sun Alert Weekly Summary Report!
Best regards,
Sun Alert Program Office
Sun Microsystems, Inc.
sunalert-newsletter@sun.com
