[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

UNIRAS Brief - 819/06 - SUN(SM) ALERT WEEKLY SUMMARY REPORT - Week of 03-Dec-2006 - 09-Dec-2006



-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

______________________________________________________________________________

 UNIRAS (UK Government CERT) Briefing - 819/06 dated 12.12.06 time 13:45
 UNIRAS is part of NISCC (the UK National Infrastructure Security
 Co-ordination Centre)
______________________________________________________________________________

 UNIRAS material is available from the NISCC website at www.niscc.gov.uk
______________________________________________________________________________

Title
=====

SUN(SM) ALERT WEEKLY SUMMARY REPORT - Week of 03-Dec-2006 - 09-Dec-2006

Detail
======

Welcome to the Sun(SM) Alert Weekly Summary Report, the newsletter that provides you with a weekly listing of newly released and
updated Sun Alert Notifications.  It is being distributed to inform you about critical hardware and software issues that could
impact the availability, security, and data integrity of your computing environment.

==================================================================
ISSUE HIGHLIGHTS

* Newly Released Sun Alert Notifications

* Updated Sun Alert Notifications

* Additional Sun Alert Information

* Changes to Patch Access on SunSolve

==================================================================

- -------------------------------------------------------------------
Newly Released Sun Alert Notifications
- -------------------------------------------------------------------
(Total Released: 3)

Sun Alert ID:  102742
Synopsis:      Solaris 10 Audit Patches May Cause auditreduce(1M)
               to Fail
Product:       Solaris 10 Operating System
Category:      Availability
Date Released: 07-Dec-2006

To view this Sun Alert document please go to the following URL:
http://sunsolve.sun.com/search/document.do?assetkey=1-26-102742-1

- -------------------------------------------------------------------
Sun Alert ID:  102743 (RESOLVED)
Synopsis:      5210/5220/5310/5320 NAS Systems May Panic When
               "checkpoint" is Enabled
Product:       Sun StorEdge 5310 NAS Appliance, Sun StorageTek
               5320 NAS Appliance, Sun StorEdge 5210 NAS Appliance
Category:      Availability
Date Released: 06-Dec-2006
Date Closed:   06-Dec-2006

To view this Sun Alert document please go to the following URL:
http://sunsolve.sun.com/search/document.do?assetkey=1-26-102743-1

- -------------------------------------------------------------------
Sun Alert ID:  102744
Synopsis:      Security Vulnerability With RSA Signatures Affects
               OpenSSL Shipped With Solaris
Product:       Solaris 10 Operating System
Category:      Security
Date Released: 08-Dec-2006

To view this Sun Alert document please go to the following URL:
http://sunsolve.sun.com/search/document.do?assetkey=1-26-102744-1


- -------------------------------------------------------------------
Updated Sun Alert Notifications
- -------------------------------------------------------------------
(Total Updated: 8)

Sun Alert ID:  101658 (former 57746) (RESOLVED)
Synopsis:      Sun TCP Connections May Experience Performance
               Degradation If Certain ICMP Error Messages Are
               Received
Product:       Solaris 9 Operating System, Solaris 10 Operating
               System, Solaris 7 Operating System, Solaris 8
               Operating System
Category:      Security
Date Released: 12-Apr-2005, 07-Dec-2006
Date Closed:   07-Dec-2006

To view this Sun Alert document please go to the following URL:
http://sunsolve.sun.com/search/document.do?assetkey=1-26-101658-1

- -------------------------------------------------------------------
Sun Alert ID:  102347 (RESOLVED)
Synopsis:      Solaris Commands format(1M), clri(1M), swap(1M) and
               dumpadm(1M) May Fail If  libdiskmgt Library Patch
               Is Not Installed
Product:       Solaris 10 Operating System
Category:      Availability
Date Released: 11-May-2006, 07-Dec-2006
Date Closed:   07-Dec-2006

To view this Sun Alert document please go to the following URL:
http://sunsolve.sun.com/search/document.do?assetkey=1-26-102347-1

- -------------------------------------------------------------------
Sun Alert ID:  102458 (RESOLVED)
Synopsis:      Solaris 9 "pkginstall" patches 113713-22 and
               114568-21 Cause patchrm(1M) to Fail
Product:       Solaris 9 Operating System, Solaris 8 Operating
               System
Category:      Availability
Date Released: 09-Jun-2006, 05-Dec-2006
Date Closed:   05-Dec-2006

To view this Sun Alert document please go to the following URL:
http://sunsolve.sun.com/search/document.do?assetkey=1-26-102458-1

- -------------------------------------------------------------------
Sun Alert ID:  102511 (RESOLVED)
Synopsis:      Certain Kerberos V5 patches May Cause kadmin(1M) to
               Fail or Create Incorrect File Ownership on NFS
               Clients
Product:       Solaris 9 Operating System, Solaris 8 Operating
               System
Category:      Availability
Date Released: 12-Jul-2006, 07-Dec-2006
Date Closed:   07-Dec-2006

To view this Sun Alert document please go to the following URL:
http://sunsolve.sun.com/search/document.do?assetkey=1-26-102511-1

- -------------------------------------------------------------------
Sun Alert ID:  102579 (RESOLVED)
Synopsis:      T3/6120/6320/6920 Array firmware 3.2.4 WITHDRAWN 
Product:       Sun StorEdge 6120 Array, Sun StorEdge 6120/6320
               Controller Firmware 3.2, Sun StorEdge 6320 System,
               Sun StorEdge 6920 System
Category:      Data Loss, Availability, Availability
Date Released: 17-Aug-2006, 07-Dec-2006
Date Closed:   07-Dec-2006

To view this Sun Alert document please go to the following URL:
http://sunsolve.sun.com/search/document.do?assetkey=1-26-102579-1

- -------------------------------------------------------------------
Sun Alert ID:  102615 (RESOLVED)
Synopsis:      Sun Cluster 3.1 on Solaris 10 With Certain Patches
               Installed may Cause Cluster Nodes to Hang
Product:       Sun Cluster 3.1
Category:      Availability
Date Released: 12-Sep-2006, 04-Dec-2006
Date Closed:   04-Dec-2006

To view this Sun Alert document please go to the following URL:
http://sunsolve.sun.com/search/document.do?assetkey=1-26-102615-1

- -------------------------------------------------------------------
Sun Alert ID:  102657 (RESOLVED)
Synopsis:      Security Vulnerability With RSA Signature Affects
               the Sun Secure Global Desktop Software
Product:       Sun Secure Global Desktop Software 4.2
Category:      Security
Date Released: 06-Oct-2006, 07-Dec-2006
Date Closed:   07-Dec-2006

To view this Sun Alert document please go to the following URL:
http://sunsolve.sun.com/search/document.do?assetkey=1-26-102657-1

- -------------------------------------------------------------------
Sun Alert ID:  102663 (RESOLVED)
Synopsis:      Security Vulnerabilities in the Apache 1.3 Web
               Server "mod_rewrite" and "mod_imap" Modules
Product:       Solaris 9 Operating System, Solaris 10 Operating
               System, Solaris 8 Operating System
Category:      Security
Date Released: 11-Oct-2006, 04-Dec-2006
Date Closed:   04-Dec-2006

To view this Sun Alert document please go to the following URL:
http://sunsolve.sun.com/search/document.do?assetkey=1-26-102663-1

- ------------------------------------------------------------------
Additional Sun Alert Information
- ------------------------------------------------------------------

* Accessing Sun Alert Notifications

Sun Alert Notifications are accessed on http://sun.com/sunsolve under SunSolve Collections, Advanced Search, Browse Documents or
Security Sun Alerts


* Sun Alert Patch Report

http://sun.com/sunsolve/sunalert_patches.html

This is a comprehensive report of patches mentioned in the Resolution section of Sun Alert documents and is available from SunSolve
on the Patch Portal page. It is updated daily and organized by product.

- -------------------------------------------------------------------
*UPDATED* Changes to Patch Access on SunSolve
- -------------------------------------------------------------------

On Monday, September 18, 2006, customers will no longer be able to access Sun patches through Anonymous FTP. The ability to
transport large support files to Sun will remain via ftp or http://supportfiles.sun.com.

For more information, go to:

* http://sunsolve.sun.com/search/document.do?assetkey=1-9-82023-1

* http://sunsolve.sun.com/search/document.do?assetkey=1-9-83061-1

For questions, contact: patchpolicy@xxxxxxx


******************************************************************

Thanks for tuning in to the Sun Alert Weekly Summary Report!

Best regards,
Sun Alert Program Office
Sun Microsystems, Inc.


ALSO ON SUN.COM --------------------------------------------------
My Sun Connection:             http://sun.com/mysunconnection
Products & Services:           http://sun.com/products
Business & Industry Solutions: http://sun.com/solutions
Support & Training:            http://sun.com/supportraining/
Downloads:                     http://sun.com/download
Documentation:                 http://sun.com/documentation
Research:                      http://sun.com/research
News:                          http://sun.com/news
Sun[sm] Store:                 http://sun.com/store

Resources for
* Developers:                  http://sun.com/developers
* System Admins:               http://sun.com/bigadmin
* Partners:                    http://sun.com/partners
* Executives:                  http://sun.com/executives
* Investors:                   http://sun.com/investors
- ------------------------------------------------------------------

Copyright 2006 Sun Microsystems, Inc. All rights reserved.

Sun, Sun Microsystems, the Sun Logo, My Sun, iForce, Sun Fire, and Sun StorEdge are trademarks or registered trademarks of Sun
Microsystems, Inc. in the United States and other countries. All SPARC trademarks are used under license and are trademarks or
registered trademarks of SPARC International, Inc. in the United States and other countries. Products bearing SPARC trademarks are
based upon an architecture developed by Sun Microsystems, Inc.

:::::::::::::::::::::: We make the net work ::::::::::::::::::::::
_____________________________________________________________________________

NISCC values your feedback.

1. Which of the following most reflects the value of the briefing to you?
(Place an 'X' next to your choice)

Very useful:__ Useful:__ Not useful:__ 

2. If you did not find it useful, why not?


3. Any other comments? How could we improve our briefings?


Thank you for your contribution.
______________________________________________________________________________

For additional information or assistance, please contact our help desk
by telephone.  You may send Not Protectively Marked information via
e-mail to uniras@xxxxxxxxxxxxx

Office hours:

Mon - Fri: 08:30 - 17:00 hours
Tel: +44 (0) 870 487 0748 and follow the voice prompts
Fax: +44 (0) 870 487 0749

On-call duty officer outside office hours:
Tel: +44 (0) 870 487 0748 and follow the voice prompts

______________________________________________________________________________

UNIRAS wishes to acknowledge the contributions of Sun for the
information contained in this briefing.
______________________________________________________________________________

This notice contains information released by the original author.
Some of the information may have changed since it was released. If the
vulnerability affects you, it may be prudent to retrieve the advisory
from the site of the original source to ensure that you receive the most
current information concerning that problem.

Reference to any specific commercial product, process, or service by
trade name, trademark manufacturer, or otherwise, does not constitute or
imply its endorsement, recommendation, or favouring by UNIRAS or NISCC.
The views and opinions of authors expressed within this notice shall not
be used for advertising or product endorsement purposes.

Neither UNIRAS or NISCC shall also accept responsibility for any errors
or omissions contained within this briefing notice. In particular, they
shall not be liable for any loss or damage whatsoever, arising from or
in connection with the usage of information contained within this
notice.

UNIRAS is a member of the Forum of Incident Response and Security Teams
(FIRST) and has contacts with other international Incident Response
Teams (IRTs) in order to foster cooperation and coordination in incident
prevention, to prompt rapid reaction to incidents, and to promote
information sharing amongst its members and the community at large.
______________________________________________________________________________

<End of UNIRAS Briefing>

-----BEGIN PGP SIGNATURE-----
Version: PGP 8.1

iQA/AwUBRX60XGl7oeQsXfKvEQL6SACgva6yCz3Uq+ZYgvvdjmwp8ukceesAnR9U
Sv+UMDW+8SV7mH4Gmo5hor+o
=9M6m
-----END PGP SIGNATURE-----


______________________________________________________________________
This email has been scanned by the MessageLabs Email Security System.
For more information please visit http://www.messagelabs.com/email 
______________________________________________________________________

______________________________________________________________________
This email has been scanned by the MessageLabs Email Security System.
For more information please visit http://www.messagelabs.com/email 
______________________________________________________________________