Patch-ID# 105935-09 Keywords: security mail sims i18n mailadmin admin SMCS quotas Synopsis: Solstice Internet Mail Server 3.2: Misc. fixes Date: Oct/02/98 Solaris Release: 2.5.1, 2.6 SunOS Release: 5.5.1, 5.6 Unbundled Product: Solstice Internet Mail Server (SIMS) Unbundled Release: 3.2 Xref: This patch available for i386 as patch 105936 Topic: Solstice Internet Mail Server 3.2: Misc. fixes NOTE: To fully address the issues presented by bugIds 4126258 and 4126514, we recommend the following patches be installed: 105568-06 (or higher) /usr/lib/libthread.so.1 patch 105755-03 (or higher) in.named & libresolv patch 105181-04 (or higher) kernel update patch Relevant Architectures: sparc BugId's fixed with this patch: 4095052 4100478 4100856 4103283 4104263 4104280 4110642 4112078 4117304 4118176 4120402 4121032 4121710 4123645 4125119 4126258 4126282 4126514 4128236 4128320 4128332 4128831 4128896 4129257 4129494 4130579 4130835 4130840 4133563 4134160 4134174 4134180 4134184 4134860 4136203 4143940 4144053 4145657 4147251 4149763 4149975 4150428 4151340 4156563 4156585 4157758 4158523 4158992 4160991 4162605 4165622 4165952 4166553 Changes incorporated in this version: 4156563 4158992 4160991 4162605 4165622 4165952 4166553 Patches accumulated and obsoleted by this patch: Patches which conflict with this patch: Patches required with this patch: Obsoleted by: Files included with this patch: SUNWimadm /opt/SUNWmail/admin/lib/COM/Sun/sunsoft/sims/admin/ CHANNEL_TYPE.class /opt/SUNWmail/admin/lib/COM/Sun/sunsoft/sims/admin/gw/ Legacy.class UIResource.class UIResource_en.class ChannelValues.class LegacyImpl.class LegacyImpl_Stub.class LegacyImpl_Skel.class LegacyChannel.class LegacyChannelImpl.class LegacyChannelImpl_Stub.class LegacyChannelImpl_Skel.class LegacyChannelImpl$Values.class LegacyChPropertyBook.class AssociatedChannelSection.class GeneralSection.class TransportSection.class NJETransportSection.class DirectorySyncSection.class MailFormatsSection.class AskDialog.class SpecificationsDialog.class SMCSChFieldValidator.class /opt/SUNWmail/admin/lib/COM/Sun/sunsoft/sims/admin/mta/ MTAConfigFile.class MTAResourceBundle.class MTAResourceBundle_en.class HostnameValidator.class /opt/SUNWmail/admin/lib/COM/Sun/sunsoft/sims/admin/ds/ AddUserWizardManager.class GroupPropertyBook.class DSContentManagerImpl.class DSContentManagerImpl_Stub.class DSContentManagerImpl_Skel.class MailInfoSection.class MailQuotaControl.class Validator.class GeneralGroupInfoSection.class UserPropertyBook.class MultiValueSectionPanel.class ASCIIStringValidator.class DNSValidator.class NameComponentValidator.class RFC822Validator.class GroupDeliveryOptionSection.class DSResourceBundle_en.class DSResourceBundle.class MailAddrValidator.class /opt/SUNWmail/admin/lib/COM/Sun/sunsoft/sims/admin/ms/ UserQuotaDisplay.class MSUserFolderInfo.class MSResourceBundle.class MSResourceBundle_en.class UserQuotaRecord.class /opt/SUNWmail/admin/sbin/smcs /opt/SUNWmail/admin/man/man1m/smcs.1m /opt/SUNWmail/admin/lib/libpal.so.1 /opt/SUNWmail/cgi-bin/dirupdate.cgi /opt/SUNWmail/cgi-bin/forwupdate2.cgi /opt/SUNWmail/html/en/forwupdate2.html SUNWimims /opt/SUNWmail/ims/lib/libims.so.1 /opt/SUNWmail/ims/lib/libbackup.so.1 /opt/SUNWmail/ims/lib/ims_master /opt/SUNWmail/ims/lib/imaccessd SUNWimimu /opt/SUNWmail/ims/sbin/imbackup /opt/SUNWmail/ims/sbin/imrestore /opt/SUNWmail/ims/sbin/impurge /opt/SUNWmail/ims/sbin/imimportmbox /opt/SUNWmail/ims/sbin/iminitquota /opt/SUNWmail/ims/sbin/imcheck /opt/SUNWmail/ims/sbin/imsinit /opt/SUNWmail/ims/sbin/mkbackupdir SUNWimmta /etc/opt/SUNWmail/imta/internet.rules /opt/SUNWmail/imta/lib/imtaDirsync /opt/SUNWmail/imta/lib/libimtautil.so.1 /opt/SUNWmail/imta/lib/libimta.so.1 /opt/SUNWmail/imta/lib/tcp_smtp_client SUNWbbmta /etc/opt/SUNWmail/imta/internet.rules /opt/SUNWmail/imta/lib/imtaDirsync /opt/SUNWmail/imta/lib/libimtautil.so.1 /opt/SUNWmail/imta/lib/libimta.so.1 /opt/SUNWmail/imta/lib/dispatcher /opt/SUNWmail/imta/lib/tcp_smtp_client Problem Description: 4166553 Security Bug: LIST / * lists the entire filesystem 4165952 Core dumps in the IMAP FIND command 4165622 imrestore generates 'indexdir could not be read' errors. 4162605 The 'internet.rules' file does not contain all top level domains 4160991 Security Bug: Mail folder names starting with ../ incorrectly permitted. (The fix in the -08 patch was not complete.) 4158992 Forwarding lists greater than 252 characters lead to delivery problems. 4156563 Core dump in the LIST command. (From 105935-08) 4160991 Security Bug: Mail folder names starting with ../ incorrectly permitted. 4158523 Security Bug: CERT* Advisory CA-98.09 - Through a buffer overflow, it is possible to get privileged access. 4157758 imbackup binary has incorrect library search path 4156585 deadlock in SMTP client code. 4151340 dispatcher too slow when connected to the Internet. 4147251 imaccessd dumps core if /var/mail directory is full 4145657 SEEN flag always set on fetch TEXT/BODY[section] in EXAMINE mode 4144053 imrestore doesn't handle holes in messages backed-up 4143940 failed assert in imbackup 4128320 problem with bcc and certain clients (From 105935-07) 4149763 dirsync cannot handle more then 13 subdomains 4149975 imta dirsync creates distribution list containing itself 4150428 duplicate entries in aliases.usr - IMTA cannot restart (From 105935-06) 4136203 Users Quota List displays ambiguous status. 4134860 SEGV in ims_master when a subtype is nul 4134184 User quota file is not initialized correctly 4134180 Cannot change the default quota without updating every user's quota file 4134174 dirsync is not reliable in updating user quota files 4134160 imbackup core dump after session locking failed 4133563 When translating the indexed MIME description into the internal representation for the imaccessd a thread core faulted. 4128831 incremental dirsync doesn't update user quota properly 4095052 The LDAP directory is case insensitive, but the mail server is case sensitive. (From 105935-05) 4130579 Quota does not calculate messages delivered to the mailing list. 4129494 Authorized submitter to groups does not work (From 105935-04) 4130840 failed deliveries: mmap buffer too small 4130835 too many deferred deliveries too the message store 4129257 Problem with the user interface for mail forwarding 4128896 Searching/scanning a message with a deep mime recursions seg faults 4128332 User ids not unique. 4128236 Cannot set individual users' mail quotas. 4126514 libthread assert failure 4126282 Robust POP3 requires concurrent r/w access to the INBOX. 4126258 Assert failed: fi->tid == thr_self() || thr_main() 4125119 deeply nested MIME message (spam) breaks the SMTP server 4118176 IMTA icon doesn't show up admin console on ja environment. 4121032 inconsistent character case handling within SIMS 4123645 smcs.1m man page missing from distribution 4104263 mkbackupdir does not create new user directory under the DEFAULT directory (From 105935-03) 4121710 14,000+ addressees in the To or Cc can cause a thread to overflow its stack (From 105935-02) 4120402 POP3 sets 'seen' flag on TOP command if message content is sent (From 105935-01) 4117304 Incorrect Reply-To: field added to messages 4100478 smcs_purge does not remove .DEL files 4100856 Passwd confirmation should be done in a separate line in smcs init script (Usability issue) 4103283 smcs nightly script fails if BACKUP parameter is set to 1 4104280 When creating a new SMCS channel, the channel is started but the underlying transport isn't. 4110642 The imcheck date option -r is not working. 4112078 While creating 2nd to Nth CCMAIL channel, the gateway PO should be non-editable. Patch Installation Instructions: -------------------------------- Refer to the Install.info file for instructions on using the generic 'installpatch' and 'backoutpatch' scripts provided with each patch. Any other special or non-generic installation instructions should be described below as special instructions. Special instructions -------------------- Message Store Quota Files If the message store quota option is currently or has ever been turned on, your message store may contain corrupted mail quota files. You need to run the message store utility iminitquota(1m) with the -a option to fix all of echo the quota files. % /opt/SUNWmail/ims/sbin/iminitquota -a You may run iminitquota -u or the incremental dirsync to update the message store quota file after you update the user quota in the directory. You must run iminitquota -u to initialize the message store quota file after you create a new user in the directory. Reboot Required In order for the changes in this patch to take effect, the mail server must be stopped and restarted either with /etc/init.d/im.server [stop|start], or by rebooting the server. IMTA Configuration This patch, in order to fix bug ID 4162605, will replace the file '/etc/opt/SUNWmail/imta/internet.rules'. This effectively modifies a portion of the IMTA's current configuration. If you select the option in the SIMS Admin Console to restore the IMTA configuration from either the default, or the backup, this fix will be lost potentially causing routing problems to the .gg, .je, .im, and .ac domains (Guernsey, Jersey, Isle of Man and Ascension Islands respectively). The best thing to do, is to use the 'Backup IMTA Configuration' option on the Admin Console after applying this patch. If you need to use the restore IMTA configuration from default option, it is important to save off a copy of this file before performing the operation. After the restore from default operation, the saved off file should be copied back to it's original location (/etc/opt/SUNWmail/imta).