Patch-ID# 103469-06 Keywords: security statd RPC NUM_PROC_FDS creat buffer overflow automountd Synopsis: SunOS 5.5_x86: /usr/lib/nfs/statd patch Date: Apr/24/2001 Solaris Release: 2.5_x86 SunOS Release: 5.5_x86 Unbundled Product: Unbundled Release: Xref: This patch available for SPARC as patch 103468 Topic: SunOS 5.5_x86: /usr/lib/nfs/statd patch NOTE: Refer to Special Install Instructions Section for IMPORTANT specific information on this patch. Relevant Architectures: i386 BugId's fixed with this patch: 1196526 1243416 4034187 4124715 4159085 Changes incorporated in this version: 4124715 Patches accumulated and obsoleted by this patch: Patches which conflict with this patch: Patches required with this patch: 103188-43 or greater Obsoleted by: Files included with this patch: /usr/lib/nfs/statd Problem Description: 4124715 Denial of Service in connection oriented Transports. (from 103469-05) 4159085 statd allows indirect RPC calls (from 103469-04) 4034187 buffer overflow in statd allows root attack This patch revision was generated to fix a build problem which produced a bad binary. (from 103469-03) 4034187 buffer overflow in statd allows root attack (from 103469-02) 1196526 statd rpc.c define of NUM_PROC_FDS is too small, can cause creat to fail (from 103469-01) 1243416 statd security problem Patch Installation Instructions: -------------------------------- Refer to the Install.info file within the patch for instructions on using the generic 'installpatch' and 'backoutpatch' scripts provided with each patch. Any other special or non-generic installation instructions should be described below. Special Install Instructions: ----------------------------- To get the complete fix for bug 4124715 (DENIAL OF SERVICE IN CONNECTION ORIENTED TRANSPORTS), one also needs to install the following patches: 103188-44 (or newer) libc, libnsl, libucb, nis_cachemgr and rpc.nisd patch 104224-03 (or newer) /usr/lib/nfs/mountd patch 105170-03 (or newer) /usr/lib/netsvc/yp/ypbind patch 104358-07 (or newer) /usr/sbin/rpcbind patch 103709-03 (or newer) /usr/sbin/rpc.nisd_resolv patch 104001-02 (or newer) /usr/sbin/rpc.nispasswdd patch 108648-01 (or newer) /usr/sbin/keyserv patch 108650-01 (or newer) /usr/sbin/rpc.bootparamd patch README -- Last modified date: Tuesday, April 24, 2001