Patch-ID# 112970-07 Keywords: security libresolv.so.2 leaks memory multi-threaded fd Synopsis: SunOS 5.9: patch libresolv Date: Mar/17/2004 Install Requirements: Install in Single User Mode Reboot after installation Solaris Release: 9 SunOS Release: 5.9 Unbundled Product: Unbundled Release: Xref: This patch available for x86 as patch 114354 Topic: SunOS 5.9: patch libresolv Relevant Architectures: sparc BugId's fixed with this patch: 4353836 4646349 4700305 4708913 4777715 4793327 4796596 4805812 4810893 4863307 4928758 Changes incorporated in this version: 4863307 Patches accumulated and obsoleted by this patch: Patches which conflict with this patch: Patches required with this patch: 113319-12 or greater Obsoleted by: Files included with this patch: /usr/include/arpa/nameser.h /usr/include/arpa/nameser_compat.h /usr/include/netdb.h /usr/include/resolv.h /usr/lib/abi/abi_libresolv.so.2 /usr/lib/abi/sparcv9/abi_libresolv.so.2 /usr/lib/dns/cylink.so.1 /usr/lib/dns/dnssafe.so.1 /usr/lib/dns/irs.so.1 /usr/lib/dns/sparcv9/cylink.so.1 /usr/lib/dns/sparcv9/dnssafe.so.1 /usr/lib/dns/sparcv9/irs.so.1 /usr/lib/libresolv.so.2 /usr/lib/llib-lresolv /usr/lib/llib-lresolv.ln /usr/lib/sparcv9/libresolv.so.2 /usr/lib/sparcv9/llib-lresolv.ln /usr/sbin/dig /usr/sbin/dnskeygen /usr/sbin/in.named /usr/sbin/named-xfer /usr/sbin/ndc /usr/sbin/nslookup /usr/sbin/nsupdate Problem Description: 4863307 nsupdate fails with more than 14 NS records for Bind 8.2.2 and 8.2.4 (from 112970-06) 4928758 Negative Cache Poison Attack (from 112970-05) 4353836 if more than 255 file descriptors are already open then gethostbyname fails (from 112970-04) 4793327 BIND needs to be upgraded to BIND 8.3 to support IPv6 4796596 BIND 8.3.3 server handling of TSIG HMAC-MD5 broken 4805812 in.named version needs to reflect putback of BIND 8.3.3 4810893 UNIX98: *netdb.h* VSU test fails due to violation of X/Open namespace (from 112970-03) 4777715 Multiple Remote Vulnerabilities in BIND - CERT Advisory CA-2002-31 4700305 nslookup does not follow its 'srchlist' under some circumstances (from 112970-02) 4708913 CERT Advisory CA-2002-19 Buffer Overflow in Multiple DNS Resolver Libraries (from 112970-01) 4646349 libresolv.so.2 leaks memory in multi-threaded programs Patch Installation Instructions: -------------------------------- For Solaris 2.0-2.6 releases, refer to the Install.info file and/or the README within the patch for instructions on using the generic 'installpatch' and 'backoutpatch' scripts provided with each patch. For Solaris 7-9 releases, refer to the man pages for instructions on using 'patchadd' and 'patchrm' scripts provided with Solaris. Any other special or non-generic installation instructions should be described below as special instructions. The following example installs a patch to a standalone machine: example# patchadd /var/spool/patch/104945-02 The following example removes a patch from a standalone system: example# patchrm 104945-02 For additional examples please see the appropriate man pages. Special Install Instructions: ----------------------------- NOTE: To get the complete fix for the bugid 4353836, please install the following patches, in addition to this patch: 112874-16 (oe newer) libc patch (must be the 1st patch to be installed) 113319-12 (or newer) libnsl patch (must be the 2nd patch to be installed) 115545-01 (or newer) nss_files patch 115542-01 (or newer) nss_user patch 115544-01 (or newer) nss_compat patch README -- Last modified date: Wednesday, March 17, 2004