Patch-ID# 104961-02 Keywords: security snoop 8192 IP SIOCGIFNUM snoop_capture Synopsis: SunOS 5.5.1_x86: usr/sbin/snoop patch Date: Dec/07/99 Solaris Release: 2.5.1_x86 SunOS Release: 5.5.1_x86 Unbundled Product: Unbundled Release: Xref: This patch available for SPARC as patch 104960 Topic: SunOS 5.5.1_x86: usr/sbin/snoop patch NOTE: Refer to Special Install Instructions section for IMPORTANT specific information on this patch. BugId's fixed with this patch: 4032089 4042550 4282985 Changes incorporated in this version: 4282985 Relevant Architectures: i386 Patches accumulated and obsoleted by this patch: Patches which conflict with this patch: NOTE:iss_x86-01 (or newer) Patches required with this patch: Obsoleted by: Files included with this patch: /usr/sbin/snoop Problem Description: 4282985 Snoop may be exploited to gain root access (from 104961-01) 4032089 snoop can not handle 8192 IP address - needs SIOCGIFNUM 4042550 Fix for BugId 4032089 which introduced a new bug - snoop_capture.c Patch Installation Instructions: -------------------------------- Refer to the Install.info file within the patch for instructions on using the generic 'installpatch' and 'backoutpatch' scripts provided with each patch. Any other special or non-generic installation instructions should be described below. Special Install Instructions: ----------------------------- NOTE: We recommend installing the following patches to get the complete support for large IP addresses: 103581-13 (or newer) kernel/drv/tcp patch 103595-10 (or newer) usr/lib/sendmail fixes 103631-08 (or newer) kernel/drv/ip patch 104332-03 (or newer) usr/sbin/rpcbind patch 104957-01 (or newer) usr/sbin/in.rarpd patch 104959-01 (or newer) usr/sbin/in.rdisc patch