March 2007
SUN(SM) ALERT WEEKLY SUMMARY REPORT - Week of 25-Feb-2007 - 03-Mar-2007
ID: 84
Ref: 026/2007
Date: 07 March 2007:19:27:22
Version: 1
Title: SUN(SM) ALERT WEEKLY SUMMARY REPORT - Week of 25-Feb-2007 - 03-Mar-2007
Abstract: Newly Released Sun Alert Notifications - a weekly listing of newly released and updated Sun Alert Notifications
Vendors affected: Sun
Operating systems affected: Sun
Welcome to the Sun(SM) Alert Weekly Summary Report, the newsletter that provides you with a weekly listing of newly released and updated Sun Alert Notifications.
It is being distributed to inform you about critical hardware and software issues that could impact the availability, security, and data integrity of your computing environment.
==================================================================
ISSUE HIGHLIGHTS
* Newly Released Sun Alert Notifications
* Updated Sun Alert Notifications
* Additional Sun Alert Information
* Changes to Patch Access on SunSolve
==================================================================
-------------------------------------------------------------------
Newly Released Sun Alert Notifications
-------------------------------------------------------------------
(Total Released: 5)
Sun Alert ID: 102788
Synopsis: DST Changes May Affect Switch Products From Brocade
( McDATA), Cisco, Qlogic, and Sun StorageTek
Product: Cisco MDS 9509, Brocade 3800 2 GB 16-Port Switch,
Brocade SilkWorm 3850 Fabric Switch, Brocade
SilkWorm 24000 Director, QLogic SANbox 5602 FC
Stackable Switch, Sun StorageTek 2 Gb 64-Port
Switch, Cisco MDS 9513, Brocade SilkWorm 3250
Fabric Switch, Brocade 12000 2 GB Switch, Brocade
2800 1 GB 16-Port Switch, McDATA Sphereon 4500
Fabric Switch, Sun StorageTek 2 Gb 8-Port Switch,
QLogic SANbox 5200 FC Stackable Switch, RoHS McData
1620 iSCSI to FC Bridge, Cisco MDS 9216i, McDATA
Intrepid 10000 Director, Sun StorageTek 1 GB
16-Port Switch, McDATA Intrepid 6140 Director,
Brocade 48000 Director, McDATA Sphereon 4300 Fabric
Switch, McDATA Intrepid 6064 Director, McDATA
Sphereon 4400 Fabric Switch, Cisco MDS 9506,
Brocade 4100 Switch, Brocade 6400 64-Port Switch,
Brocade SilkWorm 3900 Switch, Brocade SilkWorm 4900
Fibre Channel Switch, McDATA Sphereon 4700 Fabric
Switch, Cisco MDS 9216A
Category: Availability
Date Released: 28-Feb-2007
To view this Sun Alert document please go to the following URL:
http://sunsolve.sun.com/search/document.do?assetkey=1-26-102788-1
-------------------------------------------------------------------
Sun Alert ID: 102823
Synopsis: Certain Brocade Switches May Panic When Being
Monitored by Host Based SAN Monitoring Software
Product: Brocade SilkWorm 24000 Director, Brocade 12000 2 GB
Switch, Brocade 48000 Director, Brocade 4100
Switch, Brocade SilkWorm 3900 Switch, Brocade
SilkWorm 4900 Fibre Channel Switch
Category: Availability
Date Released: 02-Mar-2007
To view this Sun Alert document please go to the following URL:
http://sunsolve.sun.com/search/document.do?assetkey=1-26-102823-1
(before accessing this Sun Alert document please login to a SunSolve Online Account with a Sun Spectrum Support Contract at http://sunsolve.sun.com -> "Login")
-------------------------------------------------------------------
Sun Alert ID: 102825
Synopsis: Two Security Vulnerabilities in PostgreSQL May
Allow Denial of Service or Information Leakage
Product: Solaris 10 Operating System
Category: Security
Date Released: 27-Feb-2007
To view this Sun Alert document please go to the following URL:
http://sunsolve.sun.com/search/document.do?assetkey=1-26-102825-1
-------------------------------------------------------------------
Sun Alert ID: 102831
Synopsis: Apache 2 on Solaris 10 x86 Systems ( With Older
CPUs) Fails to Start if Patch 120544-08 Is
Installed
Product: Solaris 10 Operating System
Category: Availability
Date Released: 28-Feb-2007
To view this Sun Alert document please go to the following URL:
http://sunsolve.sun.com/search/document.do?assetkey=1-26-102831-1
-------------------------------------------------------------------
Sun Alert ID: 102832
Synopsis: Sun StorageTek 5210, Sun StorEdge 5220, Sun
StorEdge 5310 and Sun StorageTek 5320 NAS Systems
May Experience Extremely Long Recovery Times
Product: Sun StorageTek 5310 NAS Appliance, Sun StorageTek
5320 NAS Appliance, Sun StorageTek 5220 NAS
Appliance, Sun StorageTek 5210 NAS Appliance
Category: Availability
Date Released: 02-Mar-2007
To view this Sun Alert document please go to the following URL:
http://sunsolve.sun.com/search/document.do?assetkey=1-26-102832-1
(before accessing this Sun Alert document please login to a SunSolve Online Account with a Sun Spectrum Support Contract at http://sunsolve.sun.com -> "Login")
-------------------------------------------------------------------
Updated Sun Alert Notifications
-------------------------------------------------------------------
(Total Updated: 2)
Sun Alert ID: 102621 (RESOLVED)
Synopsis: Cross-site Scripting Vulnerability in Sun Java
System Access Manager
Product: Sun Java System Access Manager 6 2005Q1, Sun Java
System Access Manager 7 2005Q4
Category: Security
Date Released: 29-Jan-2007, 27-Feb-2007
Date Closed: 27-Feb-2007
To view this Sun Alert document please go to the following URL:
http://sunsolve.sun.com/search/document.do?assetkey=1-26-102621-1
-------------------------------------------------------------------
Sun Alert ID: 102802 (RESOLVED)
Synopsis: Security Vulnerability in the in.telnetd(1M) Daemon
May Allow Unauthorized Remote Users to Gain Access
to a Solaris Host
Product: Solaris 10 Operating System
Category: Security
Date Released: 12-Feb-2007, 13-Feb-2007, 28-Feb-2007
Date Closed: 13-Feb-2007
To view this Sun Alert document please go to the following URL:
http://sunsolve.sun.com/search/document.do?assetkey=1-26-102802-1
------------------------------------------------------------------
Additional Sun Alert Information
------------------------------------------------------------------
* Accessing Sun Alert Notifications
Sun Alert Notifications are accessed on http://sun.com/sunsolve under SunSolve Collections, Advanced Search, Browse Documents or Security Sun Alerts
* Sun Alert Patch Report
http://sun.com/sunsolve/sunalert_patches.html
This is a comprehensive report of patches mentioned in the Resolution
section of Sun Alert documents and is available from SunSolve on the
Patch Portal page. It is updated daily and organized by product.
-------------------------------------------------------------------
*IMPORTANT UPDATE* Changes to Solaris 8 and 9 Patch Access on SunSolve
-------------------------------------------------------------------
Beginning March 31, 2007, Sun is changing the way users will access Solaris 8 and 9 Software Updates (patches) to be consistent with
the way users access Solaris 10 Software Updates.
Users will still be required to have a Sun Online Account and accept a Software License Agreement in order to access any Software
Updates, but in addition users will be required to purchase a Solaris Subscription or Sun System Service Plan in order to access
Solaris 8 and 9 Software Updates.
No Solaris Subscription or Sun System Service Plan will be required for security patches and device drivers, which will remain
available without charge.
For more information, go to:
http://sunsolve.sun.com/search/document.do?assetkey=1-9-83061-1
For questions, contact: patchpolicy@sun.com
******************************************************************
Thanks for tuning in to the Sun Alert Weekly Summary Report!
Best regards,
Sun Alert Program Office
Sun Microsystems, Inc.
ALSO ON SUN.COM --------------------------------------------------
My Sun Connection: http://sun.com/mysunconnection
Products & Services: http://sun.com/products
Business & Industry Solutions: http://sun.com/solutions
Support & Training: http://sun.com/supportraining/
Downloads: http://sun.com/download
Documentation: http://sun.com/documentation
Research: http://sun.com/research
News: http://sun.com/news
Sun[sm] Store: http://sun.com/store
Resources for
* Developers: http://sun.com/developers
* System Admins: http://sun.com/bigadmin
* Partners: http://sun.com/partners
* Executives: http://sun.com/executives
* Investors: http://sun.com/investors
------------------------------------------------------------------
Copyright 2007 Sun Microsystems, Inc. All rights reserved.
Sun, Sun Microsystems, the Sun Logo, My Sun, iForce, Sun Fire, and Sun StorEdge are trademarks or registered trademarks of Sun
Microsystems, Inc. in the United States and other countries. All SPARC trademarks are used under license and are trademarks or
registered trademarks of SPARC International, Inc. in the United States and other countries. Products bearing SPARC trademarks are
based upon an architecture developed by Sun Microsystems, Inc.
:::::::::::::::::::::: We make the net work ::::::::::::::::::::::
PRIVACY STATEMENT:
Sun respects your online time and privacy (http://sun.com/privacy).
You have received this email because our records indicate you requested it from Sun. If you would prefer not to receive this
information, please follow the steps at the bottom of this message to unsubscribe.
HOW TO CONTACT US:
If you have questions or comments about this newsletter, please reply to this message or write to us at:
sunalert-newsletter@sun.com
HOW TO SUBSCRIBE OR UNSUBSCRIBE:
To subscribe or unsubscribe to Sun newsletters, visit:
http://sun.com/newsletters/
______________________________________________________________________________
CPNI values your feedback.
1. Which of the following most reflects the value of the advisory to you?
(Place an 'X' next to your choice)
Very useful:__ Useful:__ Not useful:__
2. If you did not find it useful, why not?
3. Any other comments? How could we improve our advisories?
Thank you for your contribution.
______________________________________________________________________________
CPNI wishes to acknowledge the contributions of Sun for the information contained in this advisory.
______________________________________________________________________________