[Sun] Schwachstelle in der Unterstuetzung fuer das SCTP-Protokoll in Sun Solaris – 253608

[Sun] Schwachstelle in der Unterstuetzung fuer das SCTP-Protokoll in Sun Solaris - 253608

Von

—–BEGIN PGP SIGNED MESSAGE—–
Hash: SHA1

Liebe Kolleginnen und Kollegen,

soeben erreichte uns nachfolgendes Sun Security Advisory. Wir geben
diese Informationen unveraendert an Sie weiter.

6766767 – Schwachstelle in der SCTP-Unterstuetzung des Solaris
Betriebssystemkernels

Der Betriebssystemkernel von Sun Solaris 10 und OpenSolaris enthaelt
eine bisher nicht naeher beschriebene Schwachstelle bei der
Unterstuetzung des SCTP Protokolls. Sendet ein entfernter Angreifer
ein manipuliertes SCTP-Paket an ein Anfaelliges System, so loest dies
eine Kernel Panic aus (Denial of Service).

Betroffen sind die folgenden Software Pakete und Plattformen:

Solaris 10
OpenSolaris

SPARC Plattform
* Solaris 10 ohne Patch 141414-01
* OpenSolaris basierend auf den Builds snv_01 bis snv_119

x86 Plattform
* Solaris 10 ohne Patch 141415-01
* OpenSolaris basierend auf den Builds snv_01 bis snv_119

Vom Hersteller werden ueberarbeitete Pakete zur Verfuegung gestellt.

Hersteller Advisory:
http://sunsolve.sun.com/search/document.do?assetkey=1-66-253608-1

(c) der deutschen Zusammenfassung bei DFN-CERT Services GmbH; die
Verbreitung, auch auszugsweise, ist nur unter Hinweis auf den Urheber,
DFN-CERT Services GmbH, und nur zu nicht kommerziellen Zwecken
gestattet.

Mit freundlichen Gruessen,
Michael Groening, DFN-CERT
– —

Michael Groening (Incident Response Team)

DFN-CERT Services GmbH, https://www.dfn-cert.de, Phone +49 40 808077-555
Sitz / Register: Hamburg, AG Hamburg, HRB 88805, Ust-IdNr.: DE 232129737
Sachsenstrasse 5, 20097 Hamburg/Germany, CEO: Dr. Klaus-Peter Kossakowski

Automatische Warnmeldungen https://www.cert.dfn.de/autowarn

Solution Type Sun Alert
Solution 253608 : A Security Vulnerability in the Solaris SCTP
Packet Processing may Lead to a System Panic Resulting in a Denial of
Service (DoS)
Related Categories

* Home>Content>Sun Alert Criteria Categories>Security
* Home>Content>Sun Alert Release Phase>Resolved

Bug ID
6766767

Product
Solaris 10 Operating System
OpenSolaris

Date of Resolved Release
15-Jul-2009

SA Document Body
A security vulnerability in the Solaris SCTP packet processing may lead to a sy
stem panic:

1. Impact
A security vulnerability in Solaris 10 SCTP packet processing (see
sctp(7P)) may allow a privileged remote user to panic the system,
resulting in a Denial of Service (DoS).
2. Contributing Factors
This issue can occur in the following releases:
SPARC Platform
* Solaris 10 without patch 141414-01
* OpenSolaris based upon builds snv_01 through snv_119

x86 Platform
* Solaris 10 without patch 141415-01
* OpenSolaris based upon builds snv_01 through snv_119

Note 1: Solaris 8 and Solaris 9 are not impacted by this issue.
Note 2: OpenSolaris distributions may include additional bug fixes
above and beyond the build from which it was derived. To determine the
base build of OpenSolaris, the following command can be used:
$ uname -v
snv_86

3. Symptoms
If the described issue is exploited to cause a Denial of Service (DoS),
the system may panic with a stack trace similar to the following:
sctp_got_sack
sctp_input_data
sctp_input
ip_sctp_input

4. Workaround
There is no workaround for this issue. Please see the Resolution
section below.
5. Resolution
This issue is addressed in the following releases:
SPARC Platform
* Solaris 10 with patch 141414-01 or later
* OpenSolaris based upon builds snv_120 or later

x86 Platform
* Solaris 10 with patch 141415-01 or later
* OpenSolaris based upon builds snv_120 or later

For more information on Security Sun Alerts, see Technical Instruction
ID 213557.
This Sun Alert notification is being provided to you on an “AS IS”
basis. This Sun Alert notification may contain information provided by
third parties. The issues described in this Sun Alert notification may
or may not impact your system(s). Sun makes no representations,
warranties, or guarantees as to the information contained herein. ANY
AND ALL WARRANTIES, EXPRESS OR IMPLIED, INCLUDING WITHOUT LIMITATION
WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE, OR
NON-INFRINGEMENT, ARE HEREBY DISCLAIMED. BY ACCESSING THIS DOCUMENT YOU
ACKNOWLEDGE THAT SUN SHALL IN NO EVENT BE LIABLE FOR ANY DIRECT,
INDIRECT, INCIDENTAL, PUNITIVE, OR CONSEQUENTIAL DAMAGES THAT ARISE OUT
OF YOUR USE OR FAILURE TO USE THE INFORMATION CONTAINED HEREIN. This
Sun Alert notification contains Sun proprietary and confidential
information. It is being provided to you pursuant to the provisions of
your agreement to purchase services from Sun, or, if you do not have
such an agreement, the Sun.com Terms of Use. This Sun Alert
notification may only be used for the purposes contemplated by these
agreements.
Copyright 2000-2009 Sun Microsystems, Inc., 4150 Network Circle, Santa
Clara, CA 95054 U.S.A. All rights reserved.
Attachments
This solution has no attachment

—–BEGIN PGP SIGNATURE—–
Version: GnuPG v1.4.2 (GNU/Linux)

iD8DBQFKXzjSk0kIxZMiiQ8RAsXVAJ9Gd0murRdPaRB3Ef5IjtQLpxX1NwCglrNa
0d2RCMmS81W74s1ZCIJvFm4=
=YmvQ
—–END PGP SIGNATURE—–

© COMPUTEC MEDIA GmbH
Nach oben