Potential Solaris system crash vulnerablity
We have identified a scenario in which there is a potential for Oracle Solaris system kernel panic. The root cause is an issue identified as a Solaris system internal bug (15819899), reported as “network hang when running tshark on an interface with some traffic".
According to Solaris support, this issue can happen with any software that interfaces with the pcap driver, such as tcpdump or tshark. The Guardium S-TAP / K-TAP agent also provides an ability to communicate with pcap driver, and therefore requires Solaris system remediation to eliminate this vulnerability.
A newer release of Solaris 11 Update 1 SRU 4.5 provides a fix to this vulnerability. All customers using Oracle on Solaris 11.1 configuration, are strongly encouraged to update their system to Solaris 11 Update 1 SRU 4.5 (or higher).
There is no action required if the system is already upgraded to recommended level.
|Affected Operating Systems||Solaris 11|
|Affected Guardium Versions||All|
|Fixed in revision||Solaris 11 Update 1 SRU 4.5 (or higher)|