CVE-2009-2135Race Condition in Opensolaris

CWE-362Race Condition3 documents3 sources
Severity
4.9MEDIUMNVD
EPSS
0.0%
top 88.49%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
SUN OpensolarisSUN Solaris
Timeline
PublishedJun 19
Latest updateMay 2

Description

Multiple race conditions in the Solaris Event Port API in Sun Solaris 10 and OpenSolaris before snv_107 allow local users to cause a denial of service (panic) via unspecified vectors related to a race between the port_dissociate and close functions.

CVSS vector

AV:L/AC:L/C:N/I:N/A:CExploitability: 3.9 | Impact: 6.9

Affected Packages2 packages

NVDsun/opensolarissnv_106+106
NVDsun/solaris10.0

Patches

Patch: sunsolve.sun.comPatch: sunsolve.sun.comPatch: sunsolve.sun.com

🔴Vulnerability Details

2
GHSA
GHSA-hjcv-v2w7-c97p: Multiple race conditions in the Solaris Event Port API in Sun Solaris 10 and OpenSolaris before snv_107 allow local users to cause a denial of service2022-05-02
CVEList
CVE-2009-2135: Multiple race conditions in the Solaris Event Port API in Sun Solaris 10 and OpenSolaris before snv_107 allow local users to cause a denial of service2009-06-19
CVE-2009-2135 — Race Condition in SUN Opensolaris | cvebase