Patch-ID# 103468-05 Keywords: security statd RPC NUM_PROC_FDS creat buffer overflow automountd Synopsis: SunOS 5.5: /usr/lib/nfs/statd patch Date: Apr/24/2001 Solaris Release: 2.5 SunOS Release: 5.5 Unbundled Product: Unbundled Release: Xref: This patch available for x86 as patch 103469 Topic: SunOS 5.5: /usr/lib/nfs/statd patch NOTE: Refer to Special Install Instructions Section for IMPORTANT specific information on this patch. Relevant Architectures: sparc BugId's fixed with this patch: 1196526 1243416 4034187 4124715 4159085 Changes incorporated in this version: 4124715 Patches accumulated and obsoleted by this patch: Patches which conflict with this patch: Patches required with this patch: 103187-43 or greater Obsoleted by: Files included with this patch: /usr/lib/nfs/statd Problem Description: 4124715 Denial of Service in connection oriented Transports. (from 103468-04) 4159085 statd allows indirect RPC calls (from 103468-03) 4034187 buffer overflow in statd allows root attack (from 103468-02) 1196526 statd rpc.c define of NUM_PROC_FDS is too small, can cause creat to fail (from 103468-01) 1243416 statd security problem Patch Installation Instructions: -------------------------------- Refer to the Install.info file within the patch for instructions on using the generic 'installpatch' and 'backoutpatch' scripts provided with each patch. Any other special or non-generic installation instructions should be described below. Special Install Instructions: ----------------------------- To get the complete fix for bug 4124715 (DENIAL OF SERVICE IN CONNECTION ORIENTED TRANSPORTS), one also needs to install the following patches: 103187-44 (or newer) libc, libnsl, libucb, nis_cachemgr and rpc.nisd patch 104223-03 (or newer) /usr/lib/nfs/mountd patch 105169-03 (or newer) /usr/lib/netsvc/yp/ypbind patch 104357-07 (or newer) /usr/sbin/rpcbind patch 103708-03 (or newer) /usr/sbin/rpc.nisd_resolv patch 104000-02 (or newer) /usr/sbin/rpc.nispasswdd patch 108647-01 (or newer) /usr/sbin/keyserv patch 108649-01 (or newer) /usr/sbin/rpc.bootparamd patch README -- Last modified date: Tuesday, April 24, 2001