Patch-ID# 105401-47 Keywords: security rpcinfo lookup ypbind.pid clients rpc.nisd rpc buffer Synopsis: SunOS 5.6: libnsl and NIS+ commands patch Date: Aug/19/2003 Install Requirements: Additional instructions may be listed below Install in Single User Mode Reboot immediately after patch is installed See Special Install Instructions Solaris Release: 2.6 SunOS Release: 5.6 Unbundled Product: Unbundled Release: Xref: This patch available for x86 as patch 105402 Topic: SunOS 5.6: libnsl and NIS+ commands patch NOTE: Refer to Special Install Instructions section for IMPORTANT specific information on this patch. Relevant Architectures: sparc BugId's fixed with this patch: 1168376 1189481 1225430 1226166 4055704 4055715 4055724 4055727 4062999 4075462 4076999 4080264 4082712 4084813 4085079 4085394 4098943 4103308 4105286 4111288 4117516 4122273 4124715 4125365 4126638 4135388 4139126 4140617 4152002 4153703 4157559 4161969 4162879 4165775 4186012 4216240 4233192 4240463 4240833 4246959 4280714 4283726 4295834 4296198 4302436 4302592 4305859 4318294 4326943 4374142 4394576 4430473 4471041 4668699 4680691 4690775 4691127 4710928 4767276 4821245 4828271 4884824 Changes incorporated in this version: 4884824 Patches accumulated and obsoleted by this patch: 105524-01 Patches which conflict with this patch: Patches required with this patch: 105210-34 or greater 105564-05 or greater Obsoleted by: Files included with this patch: /etc/default/rpc.nisd /usr/bin/nismkdir /usr/bin/nistest /usr/include/rpc/rpc_com.h /usr/include/rpc/svc.h /usr/lib/libnisdb.a /usr/lib/libnisdb.so.2 /usr/lib/libnsl.a /usr/lib/libnsl.so.1 /usr/lib/nis/nisclient /usr/lib/nis/nisopaccess /usr/lib/nis/nisping /usr/lib/nis/nisupdkeys /usr/sbin/nis_cachemgr /usr/sbin/nisbackup /usr/sbin/nisinit /usr/sbin/nisrestore /usr/sbin/rpc.nisd /usr/ucblib/libdbm.a Problem Description: 4884824 patch 105401 doesn't preserve config file (from 105401-46) 4828271 clnt_create()/clnt_create_timed() don't timeout with unexpected UDP. (from 105401-45) 4821245 rpc.nisd does a core dump during checkpoint (from 105401-44) 4767276 rpcbind can be killed remotely (from 105401-43) 4668699 buffer overflow in dbm_open and dbminit (except the one in libc) (from 105401-42) 4710928 rpcbind exits with segv on both cluster node (from 105401-41) 4680691 doctored rpc calls over UDP can bring down machines through rpcbind (from 105401-40) 1226166 rpcbind does not bind with the correct network interface 4690775 nisplus_ldap_udt: rpcbind got killed and core dump during nisplus server setup (from 105401-39) 4691127 Possible type overflow in xdr_array (from 105401-38) 4240833 RPC AUTH_DES credentials stays on stack. (from 105401-37) 4471041 rpc.nisd should accept rpc records > 9K for non-blocking transfers 4394576 nisgrpadm intermittently fails to update NIS+ group (from 105401-36) 4430473 rpc.nisd: svc_getreqset: No transport handle for fd 291 (from 105401-35) 4302436 getgrgid() hangs on large group lookups to NIS+ 4283726 fsck hangs in phase 4 in getpwuid() call (from 105401-34) 4374142 RPC services using RPC_SVC_MT_AUTO can stop listening (from 105401-33) 4280714 rpc.nisd hangs and consumes a lot of memory 4302592 TLI library is not fork-safe 4326943 Gets hundreds of __directory_object: Failed to lookup ... no such name (from 105401-32) 4318294 Operations on NIS+ master slow when bug fix 4165775 is introduced (from 105401-31) 4125365 nisping -u exits with wrong return code when only getting master's update time (from 105401-30) 4295834 NETPATH security problem in libnsl 4296198 NIS_OPTIONS sh vars (libnsl) security problem (from 105401-29) 4305859 libnsl security bug. (from 105401-28) 4124715 Denial of Service in connection oriented Transports. (from 105401-27) 4246959 rpc.nispasswdd leaks memory during normal use (from 105401-26) 4153703 Issuing an rpcinfo -u causes the 1.2 daemon of pcnfs to hang 4233192 NIS+ stops responding to UDP requests 4240463 checkpoint completes, but does not clear master's transaction log (from 105401-25) 4165775 Replica servers may attempt to allocate huge amounts of memory (from 105401-24) 4216240 nisd patch 105401-20 generates irrelevant messages "isn't a directory" (from 105401-23) 4186012 NIS+ replicas may lose synchronization with the NIS+ master (from 105401-22) 4055704 NIS_CALLBACK not authenticated (reworked) 4055715 NIS_PING not authenticated (reworked) 4055724 NIS_CHECKPOINT not authenticated (reworked) 4055727 NIS_CPTIME not authenticated (reworked) (from 105401-21) 4055704 NIS_CALLBACK not authenticated 4055715 NIS_PING not authenticated 4055724 NIS_CHECKPOINT not authenticated 4055727 NIS_CPTIME not authenticated (from 105401-20) 4162879 After the TTL value of directory cache expires the subdomain client. root object (from 105401-19) 4152002 NIS+ groups do not work in the Solaris 2.6 (from 105401-18) 4157559 automountd won't retry the Null call to nfsd in pingnfs() (from 105401-17) 4122273 after a nisls -lgR the niscat -o "[],directory" does not work anymore (from 105401-16) 4105286 NIS master with DNS forwarding mode will hang up during system-reboot 4161969 passwd lookups via FOLLOW_LINK do not FOLLOW_PATH from linked table any further (from 105401-15) 4140617 serving list hosed by nis+ object with non-trailing-dot group owner name (from 105401-14) 4139126 libnsl buffer overflows (from 105401-13) 4084813 directory objects not refreshed after timeout. 4085079 nisshowcache -v doesn't show the TTL counter decrementing (from 105401-12) 4135388 rpc.nisd buffer overflow (from 105401-11) 4117516 Fix for 4056960 breaks NIS public key retrieval (from 105401-10) 4126638 nis cache manager does not invalidate cache (from 105401-09) This revision has been generated to workaround bug 4010430 -- installpatch should ignore a required patch when not applicable to a target system. The workaround is to include an empty root sparse patch package. This will allow patch dependency requirement to be met in a server/client configuration. (from 105401-08) 4111288 email with \" in the address causes nis_cachemgr to spin (from 105401-07) 4085394 TCP connections to rpcbind remain established if client is halted. 4062999 "Error in RPC subsystem" from nisstat, nisupdkeys with +10 NIS+ sub-domains (from 105401-06) 4098943 'yp_match' function not working in compatibility mode (from 105401-05) 4103308 fix for bug #1168376 is incomplete for 2.6 (from 105401-04) 1189481 automountd caches old ip address of nfs server and never refreshes (from 105401-03) 4082712 keylogin dumps core for nis+ client on 2.6 1168376 NIS+ servers should be allowed to be in the domain they serve. (from 105401-02) 4080264 ypbind.pid file not created for diskless clients 1225430 ypbind can get requests before it is ready for them (from 105401-01) 4076999 rpcinfo: RPC: Unable to receive; An event requires attention on Solaris 2.6. (from 105524-01) 4075462 nisd is not closing file descriptors. Patch Installation Instructions: -------------------------------- Refer to the Install.info file within the patch for instructions on using the generic 'installpatch' and 'backoutpatch' scripts provided with each patch. Any other special or non-generic installation instructions should be described below. Special Install Instructions: ----------------------------- Reboot system after patch installation. NOTE 1: To get the complete fix for 1225430 (ypbind can get requests before it is ready for them) and 4080264 (ypbind.pid file not created for diskless clients), one needs to install 105403-01 (or newer). NOTE 2: If you are installing this patch to fix the "non-root NIS+ server not living in domain it serves" problem, you will also need to install the chkey/keylogin patch (105562-01 or newer). You will also need to install the kernel/misc/rpcsec patch (105564-01 or newer) if you are installing this patch on a NIS+ server that is either a Secure NFS client or server. Instructions on how to set up the non-root NIS+ server to live in the domain it serves: Setting up an existing non-root NIS+ server: 1. Install this libnsl/NIS+ commands patch on the non-root NIS+ server. Also install the kernel/misc/rpcsec patch (105564-01 or newer) if this server is either a Secure NFS client or server. 2. Change the /etc/defaultdomain on the server to the domain it serves. 3. Reboot the server. Setting up a new non-root NIS+ server: 1. Set up the server as described in the NIS+ docs. 2. Install this libnsl/NIS+ commands patch on this new NIS+ server. Also install the kernel/misc/rpcsec patch (105564-01 or newer) if this server is either a Secure NFS client or server. 3. Change the /etc/defaultdomain on the server to the domain it serves. 4. Reboot the server. NOTE 3: To get the complete fix for 4085394 (TCP connections to rpcbind remain established if client is halted), one needs to install the /usr/sbin/rpcbind patch, 105216-03, or its newer revision. NOTE 4: To get the complete fix for bug 4246959 (rpc.nispasswdd leaks memory during normal use) we recommend installation of 108346-02 (or newer revisions). NOTE 5: To get the complete fix for bug 4124715 (Denial of Service in connection oriented Transports) we recommend installation of the following patches (or newer): 108346-03 (/usr/sbin/rpc.nispasswdd) 108895-01 (/usr/sbin/rpc.bootparamd) 108893-01 (/usr/lib/netsvc/yp/rpc.ypupdated) 108890-01 (/usr/lib/netsvc/yp/ypxfrd) 105552-03 (/usr/sbin/rpc.nisd_resolv) 105216-04 (/usr/sbin/rpcbind) 108307-02 (/usr/sbin/keyserv) 105403-03 (ypbind & ypserv) 106592-03 (/usr/lib/nfs/statd) 105615-08 (/usr/lib/nfs/mountd) NOTE 6: To get the complete fix for bug 4691127 (Possible type overflow in xdr_array), we recommend installation of 106639-07 (or newer revision). NOTE 7: To get the complete fix for bug 1226166 (rpcbind does not bind with the correct network interface) we recommend installation of the following patch (or newer): 105216-05 (/usr/sbin/rpcbind patch) NOTE 8: The fix for bugID# 4680691 uncovered a bug (4775198) in the SUNWjbcp package. A patch for this bug has been released as PatchID# 114150-01. This patch or a later revision of it has to be installed if you use the SUNWjbcp package. NOTE 9: To get the complete fix for bugid 4668699 (buffer overflow in dbm_open and dbminit (except the one in libc)) One needs to install patchID# 105377-06 (or newer). README -- Last modified date: Tuesday, August 19, 2003