Patch-ID# 102770-08 Keywords: security statd HADF dies Synopsis: SunOS 5.4_x86: statd fixes Date: Mar/30/2001 Solaris Release: 2.4_x86 SunOS Release: 5.4_x86 Unbundled Product: Unbundled Release: Xref: This patch available for SPARC as patch 102769 Topic: SunOS 5.4_x86: statd fixes Relevant Architectures: i386 BugId's fixed with this patch: 1100002 1218695 1243416 4034187 4124715 4159085 Changes incorporated in this version: 4124715 Patches accumulated and obsoleted by this patch: Patches which conflict with this patch: Patches required with this patch: 101946-54 or greater Obsoleted by: Files included with this patch: /usr/lib/nfs/statd Problem Description: 4124715 Denial of Service in connection oriented Transports. (from 102770-07) 4159085 statd allows indirect RPC calls (from 102770-06) 4159085 statd allows indirect RPC calls (from 102770-05) 4159085 statd allows indirect RPC calls (from 102770-04) 4034187 buffer overflow in statd allows root attack (from 102770-03) 1243416 statd security problem (from 102770-02) 1218695 statd dies intermittently - suspect same problem as 1151643 (from 102770-01) 1100002 statd requires enhancements in support of HADF Patch Installation Instructions: -------------------------------- Refer to the Install.info file within the patch for instructions on using the generic 'installpatch' and 'backoutpatch' scripts provided with each patch. Any other special or non-generic installation instructions should be described below. Special Install Instructions: ----------------------------- For 2.3-2.5.1, there is a one-way dependency for this fix on automountd fix 4028300 (patch 101946-54, or newer). That is, the fix for 4028300 (patch 101946-54, or newer) must be installed for this security fix (4159085) to work correctly. NOTE : To get the complete fix for bug 4124715 (Denial of Service in connection oriented Transports) we recommend installation of the following patches (or newer): 101974-38 (libnsl, ypbind & rpc.nisd) 103707-03 (/usr/sbin/rpc.nisd_resolv) 102071-07 (/usr/sbin/rpcbind) 109549-01 (/usr/sbin/keyserv) 102686-03 (/usr/lib/nfs/mountd) 109551-01 (/usr/sbin/rpc.bootparamd) README -- Last modified date: Friday, March 30, 2001