[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

UNIRAS Brief - 295/04 - Sun - ALERT WEEKLY SUMMARY REPORT 06-Jun-2004 - 12-Jun-2004



 
-----BEGIN PGP SIGNED MESSAGE-----

- ----------------------------------------------------------------------------------
   UNIRAS (UK Govt CERT) Briefing Notice - 295/04 dated 15.06.04  Time: 22:32
  UNIRAS is part of NISCC (National Infrastructure Security Co-ordination Centre)
- ---------------------------------------------------------------------------------- 
  UNIRAS material is also available from its website at www.uniras.gov.uk and
         Information about NISCC is available from www.niscc.gov.uk
- ----------------------------------------------------------------------------------

Title
=====
SUN(SM) ALERT WEEKLY SUMMARY REPORT
Week of 06-Jun-2004 - 12-Jun-2004

Detail
====== 
================================================================
SUN(SM) ALERT WEEKLY SUMMARY REPORT
Week of 06-Jun-2004 - 12-Jun-2004


Welcome to the Sun(SM) Alert Weekly Summary Report, the newsletter 
that provides you with a weekly listing of newly released and 
updated Sun Alert Notifications.  It is being distributed 
to inform you about critical hardware and software issues that 
could impact the availability, security, and data integrity of 
your computing environment.


==================================================================
ISSUE HIGHLIGHTS

* Newly Released Sun Alert Notifications

* Updated Sun Alert Notifications

* Additional Sun Alert Information

==================================================================
                 
- -------------------------------------------------------------------
Newly Released Sun Alert Notifications
- -------------------------------------------------------------------
(Total Released: 7)

Sun Alert ID:  57575
Synopsis:      Sun Ray Server Software Patch 114880-04 May Break
               Multihead Functionality
Date Released: 08-Jun-2004

To view this Sun Alert document please go to the following 
URL: http://sunsolve.Sun.COM/private-cgi/retrieve.pl?doc=salert%2F57575
(accessing this Sun Alert document requires a Sun Spectrum Support 
Contract and SunSolve Online Account)

- -------------------------------------------------------------------
Sun Alert ID:  57576 (RESOLVED)
Synopsis:      For Sun StorEdge L700 Tape Drives, robottool(1M) or
               samtool(1M) May Export a Different Tape Than
               Originally Requested
Date Released: 08-Jun-2004
Date Closed:   08-Jun-2004

To view this Sun Alert document please go to the following 
URL: http://sunsolve.Sun.COM/pub-cgi/retrieve.pl?doc=fsalert%2F57576

- -------------------------------------------------------------------
Sun Alert ID:  57577 (RESOLVED)
Synopsis:      Solaris 8 and Solaris 9 Systems May Hang When Power
               Management Facility Deadlocks
Date Released: 11-Jun-2004
Date Closed:   11-Jun-2004

To view this Sun Alert document please go to the following 
URL: http://sunsolve.Sun.COM/pub-cgi/retrieve.pl?doc=fsalert%2F57577

- -------------------------------------------------------------------
Sun Alert ID:  57578
Synopsis:      Installation of Patch 113679-06 On Any Platform
               Other Than Sun Fire V210, V240, V250, V440 or Netra
               240 May Cause a System Panic
Date Released: 10-Jun-2004

To view this Sun Alert document please go to the following 
URL: http://sunsolve.Sun.COM/pub-cgi/retrieve.pl?doc=fsalert%2F57578

- -------------------------------------------------------------------
Sun Alert ID:  57579
Synopsis:      Multi-Reader and Read-Only File System
               Functionality May Be Disabled in Sun QFS and SAM-FS
               Version 4.1
Date Released: 09-Jun-2004

To view this Sun Alert document please go to the following 
URL: http://sunsolve.Sun.COM/private-cgi/retrieve.pl?doc=salert%2F57579
(accessing this Sun Alert document requires a Sun Spectrum Support 
Contract and SunSolve Online Account)

- -------------------------------------------------------------------
Sun Alert ID:  57580
Synopsis:      Solaris/SEAM Kerberos 5 Vulnerability Due To Buffer
               Overflows In krb5_aname_to_localname()
Date Released: 10-Jun-2004

To view this Sun Alert document please go to the following 
URL: http://sunsolve.Sun.COM/pub-cgi/retrieve.pl?doc=fsalert%2F57580

- -------------------------------------------------------------------
Sun Alert ID:  57582
Synopsis:      Sun Ray Server Software Patch 114880-04 May Impact
               Wheel Scrolling on Certain Wheel Mice
Date Released: 10-Jun-2004

To view this Sun Alert document please go to the following 
URL: http://sunsolve.Sun.COM/private-cgi/retrieve.pl?doc=salert%2F57582
(accessing this Sun Alert document requires a Sun Spectrum Support 
Contract and SunSolve Online Account)


- -------------------------------------------------------------------
Updated Sun Alert Notifications
- -------------------------------------------------------------------
(Total Updated: 6)

Sun Alert ID:  57420
Synopsis:      Patches For XVR-1200 Graphics Accelerator May Cause
               Performance Degradation
Date Released: 12-Nov-2003
Date Modified: 18-May-2004, 11-Jun-2004

To view this Sun Alert document please go to the following 
URL: http://sunsolve.Sun.COM/private-cgi/retrieve.pl?doc=salert%2F57420
(accessing this Sun Alert document requires a Sun Spectrum Support 
Contract and SunSolve Online Account)

- -------------------------------------------------------------------
Sun Alert ID:  57481 (RESOLVED)
Synopsis:      VERITAS Volume Manager 3.5 With Sun Patch 112392-06
               May Not Execute Hardware Path Failover
Date Released: 19-Mar-2004, 07-Jun-2004
Date Modified: 07-Jun-2004
Date Closed:   07-Jun-2004

To view this Sun Alert document please go to the following 
URL: http://sunsolve.Sun.COM/pub-cgi/retrieve.pl?doc=fsalert%2F57481

- -------------------------------------------------------------------
Sun Alert ID:  57516
Synopsis:      Sun Systems Equipped With Schizo ASICs Version 2.3
               or Higher May Experience Either Domain Stop
               (Dstop), Domain Pause or FATAL RESET Under Heavy
               I/O
Date Released: 13-Apr-2004, 28-May-2004
Date Modified: 28-May-2004, 08-Jun-2004

To view this Sun Alert document please go to the following 
URL: http://sunsolve.Sun.COM/private-cgi/retrieve.pl?doc=salert%2F57516
(accessing this Sun Alert document requires a Sun Spectrum Support 
Contract and SunSolve Online Account)

- -------------------------------------------------------------------
Sun Alert ID:  57524 (RESOLVED)
Synopsis:      Potential SSL Vulnerabilities in Sun Products
Date Released: 16-Mar-2004
Date Modified: 23-Mar-2004, 26-Mar-2004, 07-Jun-2004
Date Closed:   23-Mar-2004

To view this Sun Alert document please go to the following 
URL: http://sunsolve.Sun.COM/pub-cgi/retrieve.pl?doc=fsalert%2F57524

- -------------------------------------------------------------------
Sun Alert ID:  57539
Synopsis:      Security Vulnerability Involving the Common Desktop
               Environment (CDE) dtlogin(1X) Command When Parsing
               XDMCP Requests (CERT VU#179804)
Date Released: 07-May-2004
Date Modified: 10-May-2004, 11-Jun-2004

To view this Sun Alert document please go to the following 
URL: http://sunsolve.Sun.COM/pub-cgi/retrieve.pl?doc=fsalert%2F57539

- -------------------------------------------------------------------
Sun Alert ID:  57571 (RESOLVED)
Synopsis:      Sun Crypto Accelerator 4000 v1.0 Software May be
               Susceptible to OpenSSL Security Vulnerabilities 
Date Released: 01-Jun-2004 Date Modified: 07-Jun-2004
Date Closed:   01-Jun-2004

To view this Sun Alert document please go to the following 
URL: http://sunsolve.Sun.COM/pub-cgi/retrieve.pl?doc=fsalert%2F57571


- --------------------------------
Additional Sun Alert Information
- --------------------------------

* Accessing Sun Alert Notifications

Sun Alert Notifications are accessed on http://sun.com/sunsolve under 
SunSolve Collections, Advanced Search, Browse Documents or 
Security Sun Alerts
        

* Sun Alert Patch Report

http://sun.com/sunsolve/sunalert_patches.html

This is a comprehensive report of patches mentioned in the Resolution 
section of Sun Alert documents and is available from SunSolve on the 
Patch Portal page. It is updated daily and organized by product.


******************************************************************

Thanks for tuning in to the Sun Alert Weekly Summary Report!

Best regards,
Sun Alert Program Office
Sun Microsystems, Inc.



ALSO ON SUN.COM --------------------------------------------------
My Sun[sm] Portal:             http://sun.com/MySun
Products & Services:           http://sun.com/products
Business & Industry Solutions: http://sun.com/solutions
Support & Training:            http://sun.com/supportraining/
Downloads:                     http://sun.com/download
Documentation:                 http://sun.com/documentation
Research:                      http://sun.com/research
News:                          http://sun.com/news
Sun[sm] Store:                 http://sun.com/store

Resources for
* Developers:                  http://sun.com/developers
* System Admins:               http://sun.com/bigadmin
* Partners:                    http://sun.com/partners
* Executives:                  http://sun.com/executives
* Investors:                   http://sun.com/investors
- ------------------------------------------------------------------


Copyright 2004 Sun Microsystems, Inc. All rights reserved. 

Sun, Sun Microsystems, the Sun Logo, My Sun, iForce, Sun Fire, and 
Sun StorEdge are trademarks or registered trademarks of Sun 
Microsystems, Inc. in the United States and other countries. All 
SPARC trademarks are used under license and are trademarks or 
registered trademarks of SPARC International, Inc. in the United 
States and other countries. Products bearing SPARC trademarks are 
based upon an architecture developed by Sun Microsystems, Inc.

- ----------------------------------------------------------------------------------

For additional information or assistance, please contact the HELP Desk by 
telephone or Not Protectively Marked information may be sent via 
EMail to: uniras@xxxxxxxxxxxx

Office Hours:
Mon - Fri: 08:30 - 17:00 Hrs
Tel: +44 (0) 20 7821 1330 Ext 4511
Fax: +44 (0) 20 7821 1686

Outside of Office Hours:
On Call Duty Officer:
Tel: +44 (0) 20 7821 1330 and follow the prompts

- ----------------------------------------------------------------------------------
UNIRAS wishes to acknowledge the contributions of Sun Microsystems, Inc. for the 
information contained in this Briefing. 
- ----------------------------------------------------------------------------------
This Briefing contains the information released by the original author. Some 
of the information may have changed since it was released. If the vulnerability 
affects you, it may be prudent to retrieve the advisory from the canonical site 
to ensure that you receive the most current information concerning that problem.

Reference to any specific commercial product, process, or service by trade 
name, trademark manufacturer, or otherwise, does not constitute or imply 
its endorsement, recommendation, or favouring by UNIRAS or NISCC.  The views 
and opinions of authors expressed within this notice shall not be used for 
advertising or product endorsement purposes.

Neither UNIRAS or NISCC shall also accept responsibility for any errors 
or omissions contained within this briefing notice. In particular, they shall 
not be liable for any loss or damage whatsoever, arising from or in connection 
with the usage of information contained within this notice.

UNIRAS is a member of the Forum of Incident Response and Security Teams (FIRST) 
and has contacts with other international Incident Response Teams (IRTs) in 
order to foster cooperation and coordination in incident prevention, to prompt 
rapid reaction to incidents, and to promote information sharing amongst its 
members and the community at large. 
- ----------------------------------------------------------------------------------
<End of UNIRAS Briefing>

-----BEGIN PGP SIGNATURE-----
Version: PGP 8.0.2

iQCVAwUBQM9rRIpao72zK539AQFrlwP9Enox/AWKCJJCxcMCQFVNifUkzeOQ0dBn
0xeSjvCdBXmgKSweCfT9Lp+1a4hKY8pT6MGBQBFHViY/4FIoX7d47qEQB2HOx9L+
AZ/djok7hEbEI3kVtk/Js5rkC8abkEXbsHP7dU1O4i1nmV8rdPkB63G1bAELZuFH
I8TJhV3RnzQ=
=d0Nb
-----END PGP SIGNATURE-----