Patch-ID# 101359-10 Keywords: security DNS libresolv.so.2 CERT BIND 4.9.3 in.named named-xfer Synopsis: SunOS 5.3: libresolv, in.named, named-xfer, nslookup & nstest patch Date: Dec/14/98 Solaris Release: 2.3 SunOS Release: 5.3 Unbundled Product: Unbundled Release: Topic: SunOS 5.3: libresolv, in.named, named-xfer, nslookup & nstest patch BugId's fixed with this patch: 1143397 1238679 1263981 1266187 4008451 4018620 4056997 4068577 4071167 4127017 4127028 4133571 4134616 Changes incorporated in this version: 4134616 Relevant Architectures: sparc Patches accumulated and obsoleted by this patch: Patches which conflict with this patch: Patches required with this patch: Obsoleted by: Files included with this patch: /usr/include/netdb.h /usr/include/resolv.h /usr/include/arpa/nameser.h /usr/lib/libresolv.so.1 /usr/lib/libresolv.so.2 /usr/lib/nslookup.help /usr/sbin/in.named /usr/sbin/named-xfer /usr/sbin/nslookup /usr/sbin/nstest Problem Description: 4134616 in.named can hang when calling res_mkquery (from 101359-09) 4133571 BIND has /tmp vulnerabilities 4127028 BIND does not properly bounds check memory references in server and resolver 4127017 Inverse Query in BIND can crash system or give root access to an attacker 4068577 libresolv.so.2 buffer overflow vulnerability per SNI-12 bulletin (from 101359-08) 4056997 BIND spoofing vulnerability per SNI-12 bulletin. Also CERT CA-97.22 1266187 function declaration in netdb.h wrong for non-ansi for 4.9.3 (from 101359-07) 4071167 libresolv.so.1 can cause threaded applications to deadlock via nss_dns.so.1 (from 101359-06) 4008451 in.named should have a configurable listen(3N) backlog (from 101359-05) 4018620 DNS server cache corruption and lost of root server A records. (from 101359-04) 1263981 jumpstart install of patch 102479-02 fails due to the postpatch script (from 101359-03) 1238679 DNS spoofing is possible per Cern ca-96.02 (from 101359-02) 1238679 DNS spoofing is possible per Cern ca-96.02 (from 101359-01) 1143397 nslookup -all dumps core nslookup dumps core when "-all" option is specified at the command line. Patch Installation Instructions: -------------------------------- Refer to the Install.info file within the patch for instructions on using the generic 'installpatch' and 'backoutpatch' scripts provided with each patch. Any other special or non-generic installation instructions should be described below. Special Install Instructions: ----------------------------- Please refer to the file called BIND_493 that came with this patch. This document will describe the difference between libresolv.so.1 and libresolv.so.2 and it should provide the BIND 4.9.3 man pages. It is recommended to install the following patches, or their newer versions: 101782-02 or newer sendmail patch 102167-03 or newer nss_dns.so.1 rebuild for BIND 4.9.3 103705-01 or newer rpc.nisd_resolv rebuild for BIND 4.9.3