Resolved Issues with the DCS Solaris Agent version 6.9.0.459
Article ID: 383375
Updated On:
Products
Issue/Introduction
Environment
Solaris 11.4 running the Data Center Security 6.9.0.456 Agent with IPS feature enabled
Cause
In the 6.9.0.356 Solaris Agent the NULL pointer access while trying to discover processes on the Solaris machine. sisips has a list which contains the processes on the system. When doing a discovery of the processes on the system, we referenced a process which was no longer existing (maybe an ephemeral process). While trying to dereference the proc_t* of that node, we ended up accessing an invalid pointer, and this caused the panic.
Resolution
|
Issue
|
Resolution description
|
|---|---|
|
In a specific scenario, a kernel panic was observed on Solaris 11.4
|
While trying to get the command line of the process, check if the pointer is valid before dereferencing it.
|
Details on Agent installation can be found in the following online help page:
https://techdocs.broadcom.com/us/en/symantec-security-software/endpoint-security-and-management/data-center-security-(dcs)/6-9/installing-upgrading-v127913953-d3608e151987/installing-the-agent-on-a-unix-computer-v127943380-d3608e163692.html
Details on uninstalling the Agent can be found in the following KB document:
https://knowledge.broadcom.com/external/article/218724/uninstalling-data-center-security-server.html
Or in the following online help page: https://techdocs.broadcom.com/us/en/symantec-security-software/endpoint-security-and-management/data-center-security-(dcs)/6-9/installing-upgrading-v127913953-d3608e151987/uninstalling-agents-using-package-commands-v127943976-d3608e165404.html
Feedback
