Home / mailings SUN ALERT WEEKLY SUMMARY REPORT
Posted on 25 January 2010
Sun AlertsWeek of 17-Jan-2010 to 23-Jan-2010
Welcome to the Sun Alert Weekly Summary Report, the newsletter
that provides you with a weekly listing of newly released and
updated Sun Alert Notifications. It is being distributed
to inform you about critical hardware and software issues that
could impact the availability, security, and data integrity of
your computing environment.
==================================================================
ISSUE HIGHLIGHTS - New http://wikis.sun.com/x/EAF9B
* New and Updated Sun Alerts for 3 Release Phases:
Preliminary, Workaround and Resolved
Note: To read past newsletters go to sunsolve.sun.com,
hit Accept, use Advanced Search with keywords "weekly
summary report newsletter", Sort by Date, and select the
Sun Alert Notifications collection.
=================================================================
New Preliminary Sun Alert Notifications
(Total: 1)
Sun Alert ID: 275711
Title: Security Vulnerability in the Sun Java System Directory Server May Allow Crafted LDAP Search Requests
To Cause A Denial Of Service (DoS) Condition
Product: Sun Directory Server Enterprise Edition, Sun Java System Directory Server Enterprise Edition 6.3
Sun Java System Directory Server Enterprise Edition 6.2, Sun Java System Directory Server Enterprise Edition 6.1
Sun Java System Directory Server Enterprise Edition 6.0, Sun Java System Directory Server 5.2
Category: Security
Release Phase: Preliminary
Preliminary Date: 20-Jan-2010
To view this Sun Alert document please go to the following URL:
http://sunsolve.sun.com/search/document.do?assetkey=1-66-275711-1
=================================================================
New Workaround Sun Alert Notifications
(Total : 4)
Sun Alert ID: 275870
Title: A Security Vulnerability Relating to Certificate Handling in sendmail(1M) Versions Prior to 8.14.4
May Allow Server Identification Forgery
Product: Solaris 10 Operating System, OpenSolaris
Category: Security
Release Phase: Workaround
Workaround Date: 20-Jan-2010
To view this Sun Alert document please go to the following URL:
http://sunsolve.sun.com/search/document.do?assetkey=1-66-275870-1
-----------------------------------------------------------------
Sun Alert ID: 275850
Title: Multiple security vulnerabilities in the HTTP TRACE, WebDAV and Digest Authentication Methods in the
Sun Java System Web Server and Sun Java System Web Proxy Server
Product: Sun Java System Web Server 6.1, Sun Java System Web Server 7.0, Sun Java System Web Proxy Server 4.0
Category: Security
Release Phase: Workaround
Workaround Date: 20-Jan-2-10
To view this Sun Alert document please go to the following URL:
http://sunsolve.sun.com/search/document.do?assetkey=1-66-275850-1
-----------------------------------------------------------------
Sun Alert ID: 275890
Title: Multiple Security Vulnerabilities in BIND DNSSEC Software Shipped
With Solaris May Cause Bogus NXDOMAIN Responses
Product: Solaris 9 Operating System, Solaris 10 Operating System, OpenSolaris
Category: Security
Release Phase: Workaround
Workaround Date: 21-Jan-2010
To view this Sun Alert document please go to the following URL:
http://sunsolve.sun.com/search/document.do?assetkey=1-66-275890-1
-----------------------------------------------------------------
Sun Alert ID: 276010
Title: Performing Zpool Upgrade of the Root Pool After Applying Solaris 10 x86
Kernel Patch 141445-09 May Cause Systems to Fail to Boot
Product: Solaris 10 Operating System
Category: Availability
Release Phase: Workaround
Workaround Date: 22-Jan-2010
To view this Sun Alert document please go to the following URL:
http://sunsolve.sun.com/search/document.do?assetkey=1-66-276010-1
=================================================================
New Resolved Sun Alert Notifications
(Total : 1 )
Sun Alert ID: 275650
Title: A Race Condition Security Vulnerability in the OpenSolaris "automake" Utility may Allow Modification
of Package Files or Execution of Arbitrary Code
Product: OpenSolaris
Category: Security
Release Phase: Resolved
Resolved Date: 22-Jan-2010
To view this Sun Alert document please go to the following URL:
http://sunsolve.sun.com/search/document.do?assetkey=1-66-275650-1
=================================================================
Updated Sun Alert Notifications
(Total : 1 )
Sun Alert ID: 274870
Title: Security Vulnerabilities in PostgreSQL Shipped With Solaris May Allow Escalation of Privileges or
Man-in-the-Middle on SSL Connections
Product: Solaris 10 Operating System, OpenSolaris
Category: Security
Release Phase: Resolved
Last Updated: 24-Dec-2009
Resolved Date: 19-Jan-2010
To view this Sun Alert document please go to the following URL:
http://sunsolve.sun.com/search/document.do?assetkey=1-66-274870-1
==================================================================
For more information on the Sun Alert program, please visit:
http://wikis.sun.com/x/EAF9B
RSS Feed :
http://www.sun.com/rss/?t=3&pgID=1&trss=Sun%20Alerts%20-%20New&uri=http:
//cds-srv.sun.com:8700/rss/insert/public/sunalert_insert.xml
Sun Alert Patch Report -- TEXT version is available at:
https://supportuploads.sun.com/download?directory=downloads&file=SApatches%2dpub%2etxt
or go to http://supportfiles.sun.com/download and enter the following
file name, SApatches-pub.txt, from the directory named "downloads".
==================================================================
Thanks for tuning in to the Sun Alert Weekly Summary Report!
Best regards,
Sun Alert Program Office
Sun Microsystems, Inc.
sunalert-newsletter@sun.com
