A security vulnerability in the Solaris libsldap library may allow a local unprivileged user to disable the Name Service Caching Daemon (see nscd(1M)) causing name service lookups to be slower (as caching will not occur), therefore causing a Denial of Service (DoS) condition.

This issue can occur in the following releases:

SPARC Platform

• Solaris 8 without patch 126373-02
• Solaris 9 without patch 112960-40
• Solaris 10 without patch 120036-07

x86 Platform

• Solaris 8 without patch 126374-02
• Solaris 9 without patch 114242-27
• Solaris 10 without patch 120037-07

Note: This issue only affects hosts which are configured as LDAP clients. The existence of the ldap_cachemgr(1M) process indicates that a host is configured as an LDAP client. This can be determined by using the following command:

    $ pgrep ldap_cachemgr || echo "system is not an LDAP client

On Solaris 8 and 9, the nscd(1M) daemon will core dump and stop running. On Solaris 10, the nscd(1M) daemon will core dump and will be restarted automatically by Service Management Facility (SMF - see smf(5)).

There is no workaround for this issue. Please see the Resolution section below.

This issue is addressed in the following releases:

SPARC Platform

• Solaris 8 with patch 126373-02 or later
• Solaris 9 with patch 112960-40 or later
• Solaris 10 with patch 120036-07 or later

x86 Platform

• Solaris 8 with patch 126374-02 or later
• Solaris 9 with patch 114242-27 or later
• Solaris 10 with patch 120037-07 or later

This solution has no attachment