Home / mailingsPDF  

SUN ALERT WEEKLY SUMMARY REPORT

Posted on 28 September 2009
Sun Alerts

Week of 20-Sep-2009 to 26-Sep-2009

Welcome to the Sun Alert Weekly Summary Report, the newsletter
that provides you with a weekly listing of newly released and
updated Sun Alert Notifications. It is being distributed
to inform you about critical hardware and software issues that
could impact the availability, security, and data integrity of
your computing environment.

==================================================================
ISSUE HIGHLIGHTS - New http://wikis.sun.com/x/EAF9B

* New and Updated Sun Alerts for 3 Release Phases:

Preliminary, Workaround and Resolved

Note: To read past newsletters go to sunsolve.sun.com,
hit Accept, use Advanced Search with keywords "weekly
summary report newsletter", Sort by Date, and select the
Sun Alert Notifications collection.

=================================================================
New Preliminary Sun Alert Notifications
None


=================================================================
New Workaround Sun Alert Notifications
(Total Workaround: 3)

Sun Alert ID: 264048
Title: Security Vulnerability in the Solaris XScreenSaver
(xscreensaver(1)) Program May Allow Unauthorized Access
to Sensitive Information
Product: Solaris 8, Solaris 9, Solaris 10 , OpenSolaris Operating
Systems
Category: Security
Release Phase: Workaround
Preliminary Date: 17-Jul-2009
Workaround Date: 22-Sep-2009

To view this Sun Alert document please go to the following URL:
http://sunsolve.sun.com/search/document.do?assetkey=1-66-264048-1

-----------------------------------------------------------------

Sun Alert ID: 267628
Title: Security Vulnerability in Samba (SAMBA(7)) May Allow
Unauthorized Changes to Access Control Lists (ACL)
Product: Solaris 9 Operating System, Solaris 10 Operating System,
OpenSolaris
Category: Security
Release Phase: Workaround
Workaround Date: 24-Sep-2009

To view this Sun Alert document please go to the following URL:
http://sunsolve.sun.com/search/document.do?assetkey=1-66-267628-1

-----------------------------------------------------------------

Sun Alert ID: 267808
Title: Buffer Underflow Vulnerability in the Solaris Tag Image
File Format Library libtiff(3) may Lead to a Denial of
Service (DoS) Condition
Product: Solaris 8 Operating System, Solaris 9 Operating System,
Solaris 10 Operating System, OpenSolaris
Category: Security
Release Phase: Workaround
Workaround Date: 22-Sep-2009

To view this Sun Alert document please go to the following URL:
http://sunsolve.sun.com/search/document.do?assetkey=1-66-267808-1


=================================================================
New Resolved Sun Alert Notifications
(Total Resolved: 5)

Sun Alert ID: 249646
Title: A Security Vulnerability in xscreensaver(1) May Display
Portions of a Locked Desktop if the Screen is Resized
Product: Solaris 10 Operating System, OpenSolaris
Category: Security
Release Phase: Resolved
Resolved Date: 22-Sep-2009

To view this Sun Alert document please go to the following URL:
http://sunsolve.sun.com/search/document.do?assetkey=1-66-249646-1

-----------------------------------------------------------------

Sun Alert ID: 261849
Title: A Security Vulnerability in the Solaris iSCSI Management
Commands (iscsiadm(1M) and iscsitadm(1M)) may Allow
Privilege Escalation
Product: Solaris 10 Operating System, OpenSolaris
Category: Security
Release Phase: Resolved
Resolved Date: 21-Sep-2009

To view this Sun Alert document please go to the following URL:
http://sunsolve.sun.com/search/document.do?assetkey=1-66-261849-1

-----------------------------------------------------------------

Sun Alert ID: 267148
Title: A Security Vulnerability in Solaris Cluster 3.2
Configuration Utility (clsetup(1CL)) may Lead to
Escalation of Privileges
Product: Solaris Cluster 3.2
Category: Security
Release Phase: Resolved
Resolved Date: 22-Sep-2009

To view this Sun Alert document please go to the following URL:
http://sunsolve.sun.com/search/document.do?assetkey=1-66-267148-1

-----------------------------------------------------------------

Sun Alert ID: 267488
Title: Security Vulnerabilities in Solaris Trusted Extensions
Common Desktop Environment (CDE) may allow Privilege
Escalation or Mandatory Access Control (MAC) Policy
Violation
Product: Solaris 10 Operating System
Category: Security
Release Phase: Resolved
Resolved Date: 23-Sep-2009

To view this Sun Alert document please go to the following URL:
http://sunsolve.sun.com/search/document.do?assetkey=1-66-267488-1

-----------------------------------------------------------------

Sun Alert ID: 267948
Title: Installing mpt Driver Patches 141736-02 through -04
(SPARC) or 141737-02 through -04 (X86) WITHDRAWN, may
cause I/O Performance Degradation
Product: Solaris 10 Operating System
Category: Availability
Release Phase: Resolved
Resolved Date: 25-Sep-2009

To view this Sun Alert document please go to the following URL:
http://sunsolve.sun.com/search/document.do?assetkey=1-66-267948-1


=================================================================
Updated Sun Alert Notifications
(Total Updated: 1)

Sun Alert ID: 265608
Title: Security Vulnerability with the Solaris IPv6 Networking
Stack Involving the Cassini Gigabit-Ethernet Device
Driver and Jumbo Frames
Product: Solaris 10 Operating System, OpenSolaris
Category: Security, Availability
Release Phase: Resolved
Resolved Date: 02-Sep-2009
Last Updated: 25-Sep-2009

To view this Sun Alert document please go to the following URL:
http://sunsolve.sun.com/search/document.do?assetkey=1-66-265608-1



==================================================================
For more information on the Sun Alert program, please visit:

http://wikis.sun.com/x/EAF9B

RSS Feed :

http://www.sun.com/rss/?t=3&pgID=1&trss=Sun%20Alerts%20-%20New&uri=http:
//cds-srv.sun.com:8700/rss/insert/public/sunalert_insert.xml


Sun Alert Patch Report -- TEXT version is available at:

https://supportuploads.sun.com/download?directory=downloads&file=SApatches%2dpub%2etxt

or go to http://supportfiles.sun.com/download and enter the following
file name, SApatches-pub.txt, from the directory named "downloads".


==================================================================
Thanks for tuning in to the Sun Alert Weekly Summary Report!

Best regards,
Sun Alert Program Office
Sun Microsystems, Inc.
sunalert-newsletter@sun.com

 

TOP