Patch-ID# 105395-09 Keywords: security sendmail NIS lookup core SMTP denial-of-service vacation Synopsis: SunOS 5.6: /usr/lib/sendmail patch Date: Apr/08/2003 Install Requirements: None Solaris Release: 2.6 SunOS Release: 5.6 Unbundled Product: Unbundled Release: Xref: This patch available for x86 as patch 105396 Topic: SunOS 5.6: /usr/lib/sendmail patch NOTE: Refer to Special Install Instructions section for IMPORTANT specific information on this patch. Relevant Architectures: sparc BugId's fixed with this patch: 4069756 4069756 4072035 4072035 4086447 4086447 4087808 4087808 4132274 4132274 4167931 4167931 4167953 4167953 4171646 4171646 4175384 4175384 4204832 4204832 4214268 4214268 4215670 4215670 4251855 4251855 4809539 4809539 4835344 4835344 Changes incorporated in this version: 4835344 Patches accumulated and obsoleted by this patch: 105518-01 105736-01 Patches which conflict with this patch: Patches required with this patch: Obsoleted by: Files included with this patch: /etc/init.d/sendmail /etc/init.d/sendmail /etc/mail/main.cf /etc/mail/main.cf /etc/mail/sendmail.cf /etc/mail/sendmail.cf /etc/mail/sendmail.hf /etc/mail/sendmail.hf /etc/mail/subsidiary.cf /etc/mail/subsidiary.cf /etc/rc0.d/K57sendmail /etc/rc0.d/K57sendmail /etc/rc1.d/K57sendmail /etc/rc1.d/K57sendmail /etc/rc2.d/S88sendmail /etc/rc2.d/S88sendmail /usr/bin/aliasadm /usr/bin/aliasadm /usr/bin/mailcompat /usr/bin/mailcompat /usr/bin/mailstats /usr/bin/mailstats /usr/bin/mconnect /usr/bin/mconnect /usr/bin/vacation /usr/bin/vacation /usr/lib/mail.local /usr/lib/mail.local /usr/lib/mail/README /usr/lib/mail/README /usr/lib/mail/cf/main-v7sun.cf /usr/lib/mail/cf/main-v7sun.cf /usr/lib/mail/cf/main-v7sun.mc /usr/lib/mail/cf/main-v7sun.mc /usr/lib/mail/cf/subsidiary-v7sun.cf /usr/lib/mail/cf/subsidiary-v7sun.cf /usr/lib/mail/cf/subsidiary-v7sun.mc /usr/lib/mail/cf/subsidiary-v7sun.mc /usr/lib/mail/domain/generic.m4 /usr/lib/mail/domain/generic.m4 /usr/lib/mail/domain/solaris-generic.m4 /usr/lib/mail/domain/solaris-generic.m4 /usr/lib/mail/feature/allmasquerade.m4 /usr/lib/mail/feature/allmasquerade.m4 /usr/lib/mail/feature/always_add_domain.m4 /usr/lib/mail/feature/always_add_domain.m4 /usr/lib/mail/feature/bestmx_is_local.m4 /usr/lib/mail/feature/bestmx_is_local.m4 /usr/lib/mail/feature/bitdomain.m4 /usr/lib/mail/feature/bitdomain.m4 /usr/lib/mail/feature/domaintable.m4 /usr/lib/mail/feature/domaintable.m4 /usr/lib/mail/feature/generics_entire_domain.m4 /usr/lib/mail/feature/generics_entire_domain.m4 /usr/lib/mail/feature/genericstable.m4 /usr/lib/mail/feature/genericstable.m4 /usr/lib/mail/feature/limited_masquerade.m4 /usr/lib/mail/feature/limited_masquerade.m4 /usr/lib/mail/feature/mailertable.m4 /usr/lib/mail/feature/mailertable.m4 /usr/lib/mail/feature/masquerade_entire_domain.m4 /usr/lib/mail/feature/masquerade_entire_domain.m4 /usr/lib/mail/feature/masquerade_envelope.m4 /usr/lib/mail/feature/masquerade_envelope.m4 /usr/lib/mail/feature/nocanonify.m4 /usr/lib/mail/feature/nocanonify.m4 /usr/lib/mail/feature/nodns.m4 /usr/lib/mail/feature/nodns.m4 /usr/lib/mail/feature/notsticky.m4 /usr/lib/mail/feature/notsticky.m4 /usr/lib/mail/feature/nouucp.m4 /usr/lib/mail/feature/nouucp.m4 /usr/lib/mail/feature/nullclient.m4 /usr/lib/mail/feature/nullclient.m4 /usr/lib/mail/feature/redirect.m4 /usr/lib/mail/feature/redirect.m4 /usr/lib/mail/feature/remote_mode.m4 /usr/lib/mail/feature/remote_mode.m4 /usr/lib/mail/feature/smrsh.m4 /usr/lib/mail/feature/smrsh.m4 /usr/lib/mail/feature/stickyhost.m4 /usr/lib/mail/feature/stickyhost.m4 /usr/lib/mail/feature/sun_reverse_alias_files.m4 /usr/lib/mail/feature/sun_reverse_alias_files.m4 /usr/lib/mail/feature/sun_reverse_alias_nis.m4 /usr/lib/mail/feature/sun_reverse_alias_nis.m4 /usr/lib/mail/feature/sun_reverse_alias_nisplus.m4 /usr/lib/mail/feature/sun_reverse_alias_nisplus.m4 /usr/lib/mail/feature/use_ct_file.m4 /usr/lib/mail/feature/use_ct_file.m4 /usr/lib/mail/feature/use_cw_file.m4 /usr/lib/mail/feature/use_cw_file.m4 /usr/lib/mail/feature/uucpdomain.m4 /usr/lib/mail/feature/uucpdomain.m4 /usr/lib/mail/feature/virtusertable.m4 /usr/lib/mail/feature/virtusertable.m4 /usr/lib/mail/m4/cf.m4 /usr/lib/mail/m4/cf.m4 /usr/lib/mail/m4/cfhead.m4 /usr/lib/mail/m4/cfhead.m4 /usr/lib/mail/m4/nullrelay.m4 /usr/lib/mail/m4/nullrelay.m4 /usr/lib/mail/m4/proto.m4 /usr/lib/mail/m4/proto.m4 /usr/lib/mail/m4/version.m4 /usr/lib/mail/m4/version.m4 /usr/lib/mail/mailer/local.m4 /usr/lib/mail/mailer/local.m4 /usr/lib/mail/mailer/smtp.m4 /usr/lib/mail/mailer/smtp.m4 /usr/lib/mail/mailer/uucp.m4 /usr/lib/mail/mailer/uucp.m4 /usr/lib/mail/ostype/solaris2.m4 /usr/lib/mail/ostype/solaris2.m4 /usr/lib/mail/ostype/solaris2.ml.m4 /usr/lib/mail/ostype/solaris2.ml.m4 /usr/lib/mail/sh/makeinfo.sh /usr/lib/mail/sh/makeinfo.sh /usr/lib/sendmail /usr/lib/sendmail /usr/sbin/makemap /usr/sbin/makemap Problem Description: 4835344 address parsing issue (from 105395-08) 4809539 header parsing issue (from 105395-07) 4251855 sendmail patches should not install on top of SIMS (from 105395-06) 4215670 sendmail dumps core when converting multipart MIME message from 8bit to 7bit (from 105395-05) 4214268 upgrade sendmail 8.8.8+sun patch (2.5.1/2.6) with DontProbeInterfaces option (from 105395-04) 4167931 sendmail back/compat: off-by-one error in ${Xfoo$} look-ups 4167953 sendmail back/compat: new ${longmacro} syntax breaks old ${Xfoo$} look-ups 4171646 sendmail's old I option is deprecated; use dns on hosts line in nsswitch instead 4175384 host name can be qualified using NIS domain even if NIS not set in nsswitch.conf 4204832 sendmail occasionally incorrectly returns ECONNABORTED (from 105395-03) 4086447 current bundled sendmail is not secure against SPAM or mail bombs (from 105395-02) 4132274 security user can cause sendmail to core at will with formatted addr (from 105395-01) 4069756 "cannot bind to NIS domain" should not be a fatal error (from 105518-01) 4072035 security hole in vacation program. (from 105736-01) 4087808 /usr/lib/mail.local -d affects ownership of /var/mail/user Patch Installation Instructions: -------------------------------- Refer to the Install.info file within the patch for instructions on using the generic 'installpatch' and 'backoutpatch' scripts provided with each patch. Any other special or non-generic installation instructions should be described below. Special Install Instructions: ----------------------------- Refer to the file called SPECIAL_INSTRUCTIONS which came with this patch. It provides information about migration changes and new features in sendmail version 8.8.8+Sun. Note: It is necessary to restart sendmail after the patch installation in order to be running with the latest version of sendmail included in this patch. Execute the following commands as root: # /etc/init.d/sendmail stop # /etc/init.d/sendmail start If you have not modified the /etc/mail/sendmail.cf file then the patch installation will overwrite this file with the new version. If you no longer wish to use the default configuration then refer to the /usr/lib/mail/README file on how to customize this file. README -- Last modified date: Tuesday, April 8, 2003