Patch-ID# 108869-27 Keywords: security snmpxdmid snmpdx libssasnmp dmi libdmi libdmici dmispd Synopsis: SunOS 5.8: snmp/mibiisa/libssasnmp/snmplib patch Date: Oct/22/2004 Install Requirements: None Solaris Release: 8 SunOS Release: 5.8 Unbundled Product: Unbundled Release: Xref: This patch available for x86 as patch 108870 Topic: SunOS 5.8: snmp/mibiisa/libssasnmp/snmplib patch Relevant Architectures: sparc BugId's fixed with this patch: 4299328 4301970 4309416 4330039 4333417 4359519 4361619 4368330 4377219 4382247 4390382 4391717 4392164 4395096 4402954 4404944 4412996 4414237 4449305 4451002 4451572 4452076 4469841 4489974 4493259 4513567 4515555 4563124 4625817 4633918 4639285 4639509 4639515 4639581 4640211 4640230 4643121 4691177 4706022 4743605 4782625 4787450 4870467 4889976 4935739 4940928 4955967 4958796 4959348 5053265 Changes incorporated in this version: 4782625 Patches accumulated and obsoleted by this patch: Patches which conflict with this patch: Patches required with this patch: Obsoleted by: Files included with this patch: /usr/lib/dmi/dmispd /usr/lib/dmi/snmpXdmid /usr/lib/libdmi.so.1 /usr/lib/libdmici.so.1 /usr/lib/libdmimi.so.1 /usr/lib/libssagent.so.1 /usr/lib/libssasnmp.so.1 /usr/lib/snmp/mibiisa /usr/lib/snmp/snmpdx /usr/lib/sparcv9/libdmi.so.1 /usr/lib/sparcv9/libdmici.so.1 /usr/lib/sparcv9/libdmimi.so.1 /usr/lib/sparcv9/libssagent.so.1 /usr/lib/sparcv9/libssasnmp.so.1 /usr/sbin/snmp_trapsend /var/snmp/mib/sun.mib Problem Description: 4782625 community strings with leading dots are not working in acl lists (from 108869-26) 5053265 /var/adm/messages filled due to bad community string (from 108869-25) 4743605 SEA1.0.3; snmpdx sends get_request PDU to snmp-trap port (162/udp) (from 108869-24) 4955967 SET operation is failed with noSuchName (from 108869-23) 4889976 mibiisa unable to send traps to snmpdx 4935739 snmpdx receives the traps with community string "public" 4940928 mibiisa uses enterprise OID as 1.3.6.1.4.1.42.2.1.1 4958796 system services OID is not correct 4959348 master agent doesn't recognize other than "public" in the snmpd.conf (from 108869-22) 4870467 snmpdx dies after receiving 2nd -HUP signal (from 108869-21) 4706022 Intermittent delay of up to 30 minutes invoking agent_loop for the first time (from 108869-20) 4787450 incorrect response to GETNEXT for multiple instances of a columnar object (from 108869-19) 4691177 snmpdx fails while encoding pdu whose OID is greater than 32bits (from 108869-18) 4643121 support of kstat variable "link_up" for SNMP 4395096 supported traps within SEA 1.0.3 (from 108869-17) 4625817 ifInUcastPkts and ifOutUcastPkts include broadcast and multicast packets 4633918 Unable to generate trap with NULL (empty) string BER encoding x'0400' (from 108869-16) 4640230 SNMP relay agent has format/buffer overflow bugs. 4640211 SNMP relay agent may spin pegging CPU 4639581 SNMP relay agent corrupts memory 4639285 mibiisa has a buffer overflow 4639509 mibiisa suffers a memory leak. 4639515 snmp relay agent stops forwarding if mibiisa drops requests. (from 108869-15) This patch was created to exclude bug fix 4395096 that was introduced in rev 13 of this patch. 4515555 mibiisa - core dump on process table get if uid not in passwd file 4563124 buffer overflow in snmpdx allows remote root compromise (from 108869-14) 4563124 buffer overflow in snmpdx allows remote root compromise (from 108869-13) REMOVED 4395096 supported traps within SEA 1.0.3 4515555 mibiisa - core dump on process table get if uid not in passwd file (from 108869-12) 4489974 select fails due to invalid timeout parameter 4513567 4489974 putback causing CPU spinning (from 108869-11) 4493259 snmp is not returning correct ifOuterrors (from 108869-10) 4469841 mibiisa has 2 open file descriptors on /var/adm/utmpx it doesn't call endutxent (from 108869-09) 4449305 SNMP agent returns stale information (from 108869-08) 4382247 sun.mib does not comply, this line sun-snmp DEFINITIONS ::= BEGIN needs SUN-SNMP 4451572 SEA 1.0.3: community strings with leading numerals are not working in acl lists (from 108869-07) 4392164 snmp subagent developed with SDK dying intermittently 4402954 ifspeed of logical I/F is mistaken. 4391717 snmp_trapsend command returns ambiguous status when exit() is done 4451002 snmpXdmid still core dumps after fix for 4412996 4452076 ifOperStatus from SEA always gives 2 (ie. down) for virtual interfaces (from 108869-06) 4412996 Buffer overflow in snmpXdmi allows remote root compromise. (from 108869-05) 4404944 libssasnmp changes the syslog message format (from 108869-04) 4414237 hard coded security strings are clearly visible (from 108869-03) 4377219 fully qualified names choke when specified in acl lists 4390382 snmp request from an unauthorized manager echoes "End of MIB view" 4368330 avoid the access of managers to agents 4359519 Authentication trap occur only 6 counts 4361619 use of an assigned port by SNMPXdmid daemon (S77 dn start up file) 4330039 snmp_trapsend: -c option does not work (from 108869-02) 4333417 varbinds with type TimeTicks are skipped (from 108869-01) 4299328 snmpXdmid stops sending traps after reboot 4309416 mibiisa reports incorrect ifOperStatus on network interface 4301970 snmpdx create "defunct process" continuously when use SIMS3.5 on Solaris Patch Installation Instructions: -------------------------------- For Solaris 2.0-2.6 releases, refer to the Install.info file and/or the README within the patch for instructions on using the generic 'installpatch' and 'backoutpatch' scripts provided with each patch. For Solaris 7-9 releases, refer to the man pages for instructions on using 'patchadd' and 'patchrm' scripts provided with Solaris. Any other special or non-generic installation instructions should be described below as special instructions. The following example installs a patch to a standalone machine: example# patchadd /var/spool/patch/104945-02 The following example removes a patch from a standalone system: example# patchrm 104945-02 For additional examples please see the appropriate man pages. Special Install Instructions: ----------------------------- None. README -- Last modified date: Friday, October 22, 2004