Patch-ID# 107298-03 Keywords: security ntpdate -w Time xntpd xntpd in-kernel PLL Synopsis: SunOS 5.6: ntpdate and xntpd patch Date: Oct/15/2001 Solaris Release: 2.6 SunOS Release: 5.6 Unbundled Product: Unbundled Release: Xref: This patch available for x86 as patch 107299 Topic: SunOS 5.6: ntpdate and xntpd patch Relevant Architectures: sparc BugId's fixed with this patch: 4201436 4247629 4279094 4379876 4434235 Changes incorporated in this version: 4379876 4434235 Patches accumulated and obsoleted by this patch: 109386-02 Patches which conflict with this patch: Patches required with this patch: Obsoleted by: Files included with this patch: /usr/lib/inet/xntpd /usr/sbin/ntpdate Problem Description: 4379876 The SLEWALWAYS option to xntpd needs to be user configurable. 4434235 *xntpd* contains a buffer overflow that can lead to root compromise (from 107298-02) 4279094 Time daemon (xntpd) step the system clock in an abrupt adjustment (from 107298-01) 4201436 ntpdate -w does not work correctly (from 109386-02) 4279094 Time daemon (xntpd) step the system clock in an abrupt adjustment (from 109386-01) 4247629 xntpd does not make use of in-kernel PLL Patch Installation Instructions: -------------------------------- Refer to the Install.info file within the patch for instructions on using the generic 'installpatch' and 'backoutpatch' scripts provided with each patch. Any other special or non-generic installation instructions should be described below. Special Install Instructions: ----------------------------- NOTE : This patch adds a new configuration option to the /etc/inet/ntp.conf file. The option is: slewalways yes | no If you turn this option on xntpd will try to always slew the time and will never make large steps backwards or forwards. It is advised that if you do turn on slewalways you also select: disable pll Without this option xntpd will not be able to correct time differences greater than 128ms. ---------------------------------------------------------------------- README -- Last modified date: Monday, October 15, 2001