Patch-ID# 105216-05 Keywords: security rpcbind indirect daemons CALLIT tmp Synopsis: SunOS 5.6: /usr/sbin/rpcbind patch Date: Sep/19/2002 Install Requirements: Reboot after installation Solaris Release: 2.6 SunOS Release: 5.6 Unbundled Product: Unbundled Release: Xref: This patch available for x86 as patch 105217 Topic: SunOS 5.6: /usr/sbin/rpcbind patch Relevant Architectures: sparc BugId's fixed with this patch: 1226166 4066019 4070261 4073327 4085394 4124715 4690775 Changes incorporated in this version: 1226166 4690775 Patches accumulated and obsoleted by this patch: Patches which conflict with this patch: Patches required with this patch: 105401-40 or greater Obsoleted by: Files included with this patch: /usr/sbin/rpcbind Problem Description: 1226166 rpcbind does not bind with the correct network interface 4690775 nisplus_ldap_udt: rpcbind got killed and core dump during nisplus server setup (from 105216-04) 4124715 Denial of Service in connection oriented Transports. (from 105216-03) 4085394 TCP connections to rpcbind remain established if client is halted. 4073327 rpcbind /tmp file security vulnerability (from 105216-02) 4070261 predictable RPC XIDs when forwarding CALLIT RPCs (from 105216-01) 4066019 security bug with indirect calls Patch Installation Instructions: -------------------------------- Refer to the Install.info file within the patch for instructions on using the generic 'installpatch' and 'backoutpatch' scripts provided with each patch. Any other special or non-generic installation instructions should be described below. Special Install Instructions: ----------------------------- Reboot system after patch installation. NOTE 1: To get the complete fix for bug 4124715 (Denial of Service in connection oriented Transports) we recommend installation of the following patches (or newer): 105401-28 (libnsl and NIS+ commands patch) 108346-03 (/usr/sbin/rpc.nispasswdd) 108895-01 (/usr/sbin/rpc.bootparamd) 108893-01 (/usr/lib/netsvc/yp/rpc.ypupdated) 108890-01 (/usr/lib/netsvc/yp/ypxfrd) 105552-03 (/usr/sbin/rpc.nisd_resolv) 108307-02 (/usr/sbin/keyserv) 105403-03 (ypbind & ypserv) 106592-03 (/usr/lib/nfs/statd) 105615-08 (/usr/lib/nfs/mountd) NOTE 2: To get the complete fix for bug 1226166 (rpcbind does not bind with the correct network interface) we recommend installation of the following patch (or newer): 105401-40 (libnsl and NIS+ commands patch) README -- Last modified date: Thursday, September 19, 2002