Skip Navigation

  • Home
  • Contact us
  • FAQ
  • Glossary
  • Public key
  • Sitemap
  • Cymraeg
  • What's new
CPNI - Centre for the Protection of National Infastructure

Advanced search

  • About CPNI
  • The threats
  • Security planning
  • Methods of attack
  • Protecting your assets
  • Products and services
    • CSIRTUK advisories
      • Advisories archive
    • General protective security publications
    • InfoSec briefings
    • InfoSec technical notes
    • InfoSec vulnerability disclosures
    • Good practice guidelines
    • Viewpoints
    • Information exchanges
    • Risk Management Delivery Group
  • Research
Home > Products and services > CSIRTUK advisories > Advisories archive > April 2007 > SUN(SM) ALERT WEEKLY SUMMARY REPORT - Week of 15-Apr-2007 - 21-Apr-2007

April 2007

SUN(SM) ALERT WEEKLY SUMMARY REPORT - Week of 15-Apr-2007 - 21-Apr-2007

ID: 122
Ref: 064/2007
Date: 25 April 2007:15:23:33
Version: 1
Title: SUN(SM) ALERT WEEKLY SUMMARY REPORT - Week of 15-Apr-2007 - 21-Apr-2007
Abstract: A newsletter that provides a weekly listing of newly released and updated Sun Alert Notifications.
Vendors affected: Sun
Welcome to the Sun(SM) Alert Weekly Summary Report, the newsletter that provides you with a weekly listing of newly released and updated Sun Alert Notifications. It is being distributed to inform you about critical hardware and software issues that could impact the availability, security, and data integrity of your computing environment.

==================================================================
ISSUE HIGHLIGHTS

* Newly Released Sun Alert Notifications

* Updated Sun Alert Notifications

* Additional Sun Alert Information

* Please see Survey below - Your feedback is requested

==================================================================

-------------------------------------------------------------------
Newly Released Sun Alert Notifications
-------------------------------------------------------------------
(Total Released: 3)

Sun Alert ID: 102854 (RESOLVED)
Synopsis: Security Vulnerability in the Sun Java Web Console
May Allow Access to Privileged Data or Lead to
Denial of Service
Product: Sun Java Web Console 2.2.3, Solaris 10 Operating
System, Sun Java Web Console 2.2.5, Sun Java Web
Console 2.2.4, Sun Java Web Console 2.2.2
Category: Security
Date Released: 17-Apr-2007
Date Closed: 17-Apr-2007

To view this Sun Alert document please go to the following URL:
http://sunsolve.sun.com/search/document.do?assetkey=1-26-102854-1

-------------------------------------------------------------------
Sun Alert ID: 102877
Synopsis: Sun SPARC Enterprise M4000/5000/8000/9000 Servers
May Panic Due to Wrong sTLB Setting
Product: Solaris 10 Operating System
Category: Availability
Date Released: 17-Apr-2007

To view this Sun Alert document please go to the following URL:
http://sunsolve.sun.com/search/document.do?assetkey=1-26-102877-1

-------------------------------------------------------------------
Sun Alert ID: 102885
Synopsis: Multiple Security Vulnerabilities in Mozilla Layout
Engine for Solaris 8, 9 and 10
Product: Mozilla v1.7, Solaris 9 Operating System, Solaris
10 Operating System, Solaris 8 Operating System
Category: Security
Date Released: 18-Apr-2007

To view this Sun Alert document please go to the following URL:
http://sunsolve.sun.com/search/document.do?assetkey=1-26-102885-1


-------------------------------------------------------------------
Updated Sun Alert Notifications
-------------------------------------------------------------------
(Total Updated: 3)

Sun Alert ID: 101338 (former 56720) (RESOLVED)
Synopsis: GNOME 2.0 XScreenSaver Will Not Lock as Root
Product: Solaris 9 Operating System, Solaris 8 Operating
System
Category: Security
Date Released: 23-Sep-2003, 17-Apr-2007
Date Closed: 17-Apr-2007

To view this Sun Alert document please go to the following URL:
http://sunsolve.sun.com/search/document.do?assetkey=1-26-101338-1

-------------------------------------------------------------------
Sun Alert ID: 102846 (RESOLVED)
Synopsis: Security Vulnerability in the Mozilla js_dtoa()
Routine May Result in Denial of Service
Product: Mozilla v1.7, Solaris 9 Operating System, Solaris
10 Operating System, Solaris 8 Operating System
Category: Security
Date Released: 15-Mar-2007, 17-Apr-2007
Date Closed: 17-Apr-2007

To view this Sun Alert document please go to the following URL:
http://sunsolve.sun.com/search/document.do?assetkey=1-26-102846-1

-------------------------------------------------------------------
Sun Alert ID: 102865 (RESOLVED)
Synopsis: Security Vulnerability in Mozilla 1.7 JavaScript
Engine for Solaris
Product: Mozilla v1.7, Solaris 9 Operating System, Solaris
10 Operating System, Solaris 8 Operating System
Category: Security
Date Released: 30-Mar-2007, 17-Apr-2007
Date Closed: 17-Apr-2007

To view this Sun Alert document please go to the following URL:
http://sunsolve.sun.com/search/document.do?assetkey=1-26-102865-1



------------------------------------------------------------------
Additional Sun Alert Information
------------------------------------------------------------------

* Accessing Sun Alert Notifications

Sun Alert Notifications are accessed on http://sun.com/sunsolve under SunSolve Collections, Advanced Search, Browse Documents or Security Sun Alerts


* Sun Alert Patch Report

http://sun.com/sunsolve/sunalert_patches.html

This is a comprehensive report of patches mentioned in the Resolution section of Sun Alert documents and is available from SunSolve on the Patch Portal page. It is updated daily and organized by product.

Please let us know how often you use this report:

Frequency

[ ] daily/weekly
[ ] monthly
[ ] not very often

Importance

[ ] Please state the impact to your business if this report
is discontinued

Send your feedback to:

sunalert-newsletter@sun.com

******************************************************************

Thanks for tuning in to the Sun Alert Weekly Summary Report!

Best regards,
Sun Alert Program Office
Sun Microsystems, Inc.


ALSO ON SUN.COM --------------------------------------------------
My Sun Connection: http://sun.com/mysunconnection
Products & Services: http://sun.com/products
Business & Industry Solutions: http://sun.com/solutions
Support & Training: http://sun.com/supportraining/
Downloads: http://sun.com/download
Documentation: http://sun.com/documentation
Research: http://sun.com/research
News: http://sun.com/news
Sun[sm] Store: http://sun.com/store

Resources for
* Developers: http://sun.com/developers
* System Admins: http://sun.com/bigadmin
* Partners: http://sun.com/partners
* Executives: http://sun.com/executives
* Investors: http://sun.com/investors
------------------------------------------------------------------

Copyright 2007 Sun Microsystems, Inc. All rights reserved.

Sun, Sun Microsystems, the Sun Logo, My Sun, iForce, Sun Fire, and Sun StorEdge are trademarks or registered trademarks of Sun Microsystems, Inc. in the United States and other countries. All SPARC trademarks are used under license and are trademarks or registered trademarks of SPARC International, Inc. in the United States and other countries. Products bearing SPARC trademarks are based upon an architecture developed by Sun Microsystems, Inc.

:::::::::::::::::::::: We make the net work ::::::::::::::::::::::

______________________________________________________________________________

CPNI values your feedback.

1. Which of the following most reflects the value of the advisory to you?
(Place an 'X' next to your choice)

Very useful:__ Useful:__ Not useful:__

2. If you did not find it useful, why not?


3. Any other comments? How could we improve our advisories?


Thank you for your contribution.
______________________________________________________________________________
CPNI wishes to acknowledge the contributions of Sun for the Information contained in this advisory.
______________________________________________________________________________
  • Accessibility |
  • Terms and conditions |
  • Privacy statement |
  • Data protection act |
  • Freedom of information |