CVE-2009-2297

Name of the Vulnerable Software and Affected Versions Sun Solaris versions 10, and OpenSolaris snv 90 through snv 108

Description The issue is related to an unspecified vulnerability in the udp subsystem in the kernel when Solaris Trusted Extensions is enabled. This allows remote attackers to cause a denial of service (panic) via unspecified vectors involving the crgetlabel function, which is related to a "TX panic." The problem exists due to a regression in earlier kernel patches.

Recommendations For Sun Solaris versions 10, and OpenSolaris snv 90 through snv 108, consider disabling Solaris Trusted Extensions as a temporary workaround to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.