Home / mailings SUN ALERT WEEKLY SUMMARY REPORT
Posted on 18 May 2009
Sun AlertsWeek of 10-May-2009 to 16-May-2009
Welcome to the Sun Alert Weekly Summary Report, the newsletter
that provides you with a weekly listing of newly released and
updated Sun Alert Notifications. It is being distributed
to inform you about critical hardware and software issues that
could impact the availability, security, and data integrity of
your computing environment.
==================================================================
ISSUE HIGHLIGHTS
* New and Updated Sun Alerts for 3 Release Phases:
Preliminary, Workaround and Resolved
Note: To read past newsletters go to sunsolve.sun.com,
hit Accept, use Advanced Search with keywords "weekly
summary report newsletter", Sort by Date, and select the
Sun Alert Notifications collection.
=================================================================
New Preliminary Sun Alert Notifications
None
=================================================================
New Workaround Sun Alert Notifications
(Total Workaround: 5)
Sun Alert ID: 201294 Previous ID: 102772
Title: Third-party Applications Using GSS-API May Be Vulnerable
to Compromise
Product: Solaris 9 Operating System, Solaris 10 Operating System,
Solaris 8 Operating System
Category: Security
Release Phase: Workaround
Preliminary Date: 09-Jan-2007
Workaround Date: 14-May-2009
To view this Sun Alert document please go to the following URL:
http://sunsolve.sun.com/search/document.do?assetkey=1-66-201294-1
If this Sun Alert document is not publicly available, go to the
SunSpectrum Member Support Center at www.sun.com/support and
search for the Sun Alert ID above.
-----------------------------------------------------------------
Sun Alert ID: 258528
Title: Cross-Site Scripting (XSS) Vulnerabilities in Sun
GlassFish Enterprise Server and Sun Java System
Application Server May Allow Execution of JavaScript
Code
Product: Sun GlassFish Enterprise Server v2.1, Sun Java System
Application Server Platform Edition 9.1
Category: Security
Release Phase: Workaround
Workaround Date: 11-May-2009
To view this Sun Alert document please go to the following URL:
http://sunsolve.sun.com/search/document.do?assetkey=1-66-258528-1
If this Sun Alert document is not publicly available, go to the
SunSpectrum Member Support Center at www.sun.com/support and
search for the Sun Alert ID above.
-----------------------------------------------------------------
Sun Alert ID: 258808
Title: Security Vulnerability in PostgreSQL Shipped with
Solaris may Allow a Denial of Service (DoS)
Product: Solaris 10, OpenSolaris
Category: Security
Release Phase: Workaround
Workaround Date: 13-May-2009
To view this Sun Alert document please go to the following URL:
http://sunsolve.sun.com/search/document.do?assetkey=1-66-258808-1
If this Sun Alert document is not publicly available, go to the
SunSpectrum Member Support Center at www.sun.com/support and
search for the Sun Alert ID above.
-----------------------------------------------------------------
Sun Alert ID: 259028
Title: Multiple Security Vulnerabilities in Adobe Reader for
Solaris 10 May Allow Execution of Arbitrary Code or
Cause Denial of Service (DoS)
Product: Solaris 10 Operating System
Category: Security
Release Phase: Workaround
Workaround Date: 13-May-2009
To view this Sun Alert document please go to the following URL:
http://sunsolve.sun.com/search/document.do?assetkey=1-66-259028-1
If this Sun Alert document is not publicly available, go to the
SunSpectrum Member Support Center at www.sun.com/support and
search for the Sun Alert ID above.
-----------------------------------------------------------------
Sun Alert ID: 259148
Title: Security Vulnerability in the Solaris Simple
Authentication and Security Layer (SASL) Library (see
libsasl(3LIB)) Routine sasl_encode64(3SASL) may Allow
Unprivileged Users to Crash Applications Using this
Function
Product: Solaris 10 Operating System, OpenSolaris
Category: Security
Release Phase: Workaround
Workaround Date: 14-May-2009
To view this Sun Alert document please go to the following URL:
http://sunsolve.sun.com/search/document.do?assetkey=1-66-259148-1
If this Sun Alert document is not publicly available, go to the
SunSpectrum Member Support Center at www.sun.com/support and
search for the Sun Alert ID above.
=================================================================
New Resolved Sun Alert Notifications
(Total Resolved: 4)
Sun Alert ID: 251446
Title: Netra T2000 With PCI Tray 371-1959-02 and Netra X4200 M2
With PCI Tray 371-2368-03 Do Not Configure 1x or 4x
PCIE Cards
Product: Netra T2000 Server, Netra X4200 M2 Server
Category: Availability
Release Phase: Resolved
Resolved Date: 13-May-2009
To view this Sun Alert document please go to the following URL:
http://sunsolve.sun.com/search/document.do?assetkey=1-66-251446-1
If this Sun Alert document is not publicly available, go to the
SunSpectrum Member Support Center at www.sun.com/support and
search for the Sun Alert ID above.
-----------------------------------------------------------------
Sun Alert ID: 257988
Title: Security Vulnerability in Solaris 9 fstat(2) System Call
May Lead to a System Panic, Resulting in a Denial of
Service (DoS)
Product: Solaris 9 Operating System
Category: Security
Release Phase: Resolved
Resolved Date: 14-May-2009
To view this Sun Alert document please go to the following URL:
http://sunsolve.sun.com/search/document.do?assetkey=1-66-257988-1
If this Sun Alert document is not publicly available, go to the
SunSpectrum Member Support Center at www.sun.com/support and
search for the Sun Alert ID above.
-----------------------------------------------------------------
Sun Alert ID: 258548
Title: ifconfig(1M) may Cause Solaris Systems Using a GLDv3
Interface Network Driver to Hang
Product: Solaris 10 Operating System, OpenSolaris
Category: Availability
Release Phase: Resolved
Resolved Date: 11-May-2009
To view this Sun Alert document please go to the following URL:
http://sunsolve.sun.com/search/document.do?assetkey=1-66-258548-1
If this Sun Alert document is not publicly available, go to the
SunSpectrum Member Support Center at www.sun.com/support and
search for the Sun Alert ID above.
-----------------------------------------------------------------
Sun Alert ID: 258748
Title: Multiple Security Vulnerabilities in Mozilla Thunderbird
Versions Prior to 2.0.0.19 May Allow Execution of
Arbitrary Code or Unauthorized Access to Data
Product: Mozilla Thunderbird v2.0, Solaris 10 Operating System,
OpenSolaris
Category: Security
Release Phase: Resolved
Resolved Date: 13-May-2009
To view this Sun Alert document please go to the following URL:
http://sunsolve.sun.com/search/document.do?assetkey=1-66-258748-1
If this Sun Alert document is not publicly available, go to the
SunSpectrum Member Support Center at www.sun.com/support and
search for the Sun Alert ID above.
=================================================================
Updated Sun Alert Notifications
Total Updated: 1
Sun Alert ID: 258408
Title: Some Sun Fire, SPARC Enterprise, and Sun Storage Systems
Using Power Supply Units Within a Certain Date Code
Range May Experience a Thermal Event Upon PSU Failure
Product: Sun Fire X4240 Server, Sun Fire X4250 Server, Sun Fire
X4440 Server, Sun Fire X4450 Server, Sun SPARC
Enterprise T5240 Server, Sun SPARC Enterprise T5220
Server, Sun Storage 7110 Unified Storage System, Sun
Storage 7410 Unified Storage System
Category: Availability
Release Phase: Preliminary
Preliminary Date: 05-May-2009
Last Updated: 14-May-2009
To view this Sun Alert document please go to the following URL:
http://sunsolve.sun.com/search/document.do?assetkey=1-66-258408-1
If this Sun Alert document is not publicly available, go to the
SunSpectrum Member Support Center at www.sun.com/support and
search for the Sun Alert ID above.
==================================================================
RSS Feed
http://www.sun.com/rss/?t=3&pgID=1&trss=Sun%20Alerts%20-%20New&uri=http:
//cds-srv.sun.com:8700/rss/insert/public/sunalert_insert.xml
Sun Alert Patch Report
This report is no longer available on SunSolve, however a new TEXT version is
available at:
https://supportuploads.sun.com/download?directory=downloads&file=SApatches%2dpub%2etxt
or go to http://supportfiles.sun.com/download and enter the following
file name, SApatches-pub.txt, from the directory named "downloads".
==================================================================
Thanks for tuning in to the Sun Alert Weekly Summary Report!
Best regards,
Sun Alert Program Office
Sun Microsystems, Inc.
sunalert-newsletter@sun.com
