OBSOLETE Patch-ID# 107019-03 Keywords: security res_mkquery libresolv __confcheck in.named Synopsis: Obsoleted by: 106939-07 SunOS 5.7_x86: /usr/sbin/in.named patch Date: Apr/25/2001 Install Requirements: See Special Install Instructions Solaris Release: 7_x86 SunOS Release: 5.7_x86 Unbundled Product: Unbundled Release: Xref: This patch available for SPARC as patch 107018 Topic: SunOS 5.7_x86: /usr/sbin/in.named patch NOTE: Refer to Special Install Instructions section for IMPORTANT specific information on this patch. Relevant Architectures: i386 BugId's fixed with this patch: 4134616 4299852 4409676 Changes incorporated in this version: 4409676 Patches accumulated and obsoleted by this patch: Patches which conflict with this patch: Patches required with this patch: Obsoleted by: 106939-07 Files included with this patch: /usr/sbin/in.named Problem Description: 4409676 CERT Advisory CA-2001-02/Solaris dns (bind) (from 107019-02) 4299852 Four vulnerabilities have been found in BIND. (from 107019-01) 4134616 in.named can hang when calling res_mkquery Patch Installation Instructions: -------------------------------- For Solaris 2.0-2.6 releases, refer to the Install.info file and/or the README within the patch for instructions on using the generic 'installpatch' and 'backoutpatch' scripts provided with each patch. For Solaris 7-8 releases, refer to the man pages for instructions on using 'patchadd' and 'patchrm' scripts provided with Solaris. Any other special or non-generic installation instructions should be described below as special instructions. The following example installs a patch to a standalone machine: example# patchadd /var/spool/patch/104945-02 The following example removes a patch from a standalone system: example# patchrm 104945-02 For additional examples please see the appropriate man pages. Special Install Instructions: ----------------------------- NOTE 1: To get the complete fix for 4134616 (in.named can hang when calling res_mkquery), one needs to install the libresolv patch, 106939-01 or newer. NOTE 2: To get the complete fix for 4299852 (four vulnerabilities in BIND) one needs to install the libresolv patch, 106939-03 or newer. README -- Last modified date: Wednesday, February 26, 2003