Patch-ID# 104797-02 Keywords: security eeprom buffer-overflow hwupdate y2000 Synopsis: SunOS 5.3: eeprom patch Date: Sep/03/97 Solaris Release: 2.3 SunOS Release: 5.3 Unbundled Product: Unbundled Release: Topic: SunOS 5.3: eeprom patch NOTE: We recommend installing all the following bundled Solaris 2.3 OS/Networking patches which contain the Y2000 fixes: 101317-22 (or higher revs) lp jumbo patch 101318-88 (or higher revs) kernel jumbo patch 101331-08 (or higher revs) fixes for package utilities 101343-03 (or higher revs) troff macro patch 101572-07 (or higher revs) cron and at fixes 101767-02 (or higher revs) usr/bin/passwd patch 103941-02 (or higher revs) accounting patch 104797-02 (or higher revs) eeprom patch 104877-01 (or higher revs) usr/sbin/sar patch 104878-01 (or higher revs) usr/bin/date patch 104880-01 (or higher revs) usr/bin/uustat patch 104882-01 (or higher revs) usr/lib/saf/listen patch 104883-01 (or higher revs) ufsdump and ufsrestore patch 104884-01 (or higher revs) usr/vmsys/bin/initial patch 105013-01 (or higher revs) usr/lib/libkrb.a and usr/lib/libkrb.so.1 patch BugId's fixed with this patch: 4043234 4043537 Changes incorporated in this version: 4043537 Relevant Architectures: sparc Patches accumulated and obsoleted by this patch: Patches which conflict with this patch: Patches required with this patch: Obsoleted by: Files included with this patch: usr/kvm/eeprom Problem Description: 4043537 eeprom fails when updating hwupdate variable to years > 2000 (from 104797-01) 4043234 eeprom(1M) buffer-overflow vulnerability (security) Patch Installation Instructions: -------------------------------- Refer to the Install.info file within the patch for instructions on using the generic 'installpatch' and 'backoutpatch' scripts provided with each patch. Any other special or non-generic installation instructions should be described below. Special Install Instructions: ----------------------------- NOTE: We recommend installing all the following bundled Solaris 2.3 OS/Networking patches which contain the Y2000 fixes: 101317-22 (or higher revs) lp jumbo patch 101318-88 (or higher revs) kernel jumbo patch 101331-08 (or higher revs) fixes for package utilities 101343-03 (or higher revs) troff macro patch 101572-07 (or higher revs) cron and at fixes 101767-02 (or higher revs) usr/bin/passwd patch 103941-02 (or higher revs) accounting patch 104797-02 (or higher revs) eeprom patch 104877-01 (or higher revs) usr/sbin/sar patch 104878-01 (or higher revs) usr/bin/date patch 104880-01 (or higher revs) usr/bin/uustat patch 104882-01 (or higher revs) usr/lib/saf/listen patch 104883-01 (or higher revs) ufsdump and ufsrestore patch 104884-01 (or higher revs) usr/vmsys/bin/initial patch 105013-01 (or higher revs) usr/lib/libkrb.a and usr/lib/libkrb.so.1 patch