Patch-ID# 107299-03 Keywords: security ntpdate -w xntpd in-kernel PLL Synopsis: SunOS 5.6_x86: ntpdate and xntpd patch Date: Oct/15/2001 Solaris Release: 2.6_x86 SunOS Release: 5.6_x86 Unbundled Product: Unbundled Release: Xref: This patch available for SPARC as patch 107298 Topic: SunOS 5.6_x86: ntpdate and xntpd patch Relevant Architectures: i386 BugId's fixed with this patch: 4201436 4247629 4279094 4379876 4434235 Changes incorporated in this version: 4379876 4434235 Patches accumulated and obsoleted by this patch: 109387-02 Patches which conflict with this patch: Patches required with this patch: Obsoleted by: Files included with this patch: /usr/lib/inet/xntpd /usr/sbin/ntpdate Problem Description: 4379876 The SLEWALWAYS option to xntpd needs to be user configurable. 4434235 *xntpd* contains a buffer overflow that can lead to root compromise (from 107299-02) 4279094 Time daemon (xntpd) step the system clock in an abrupt adjustment (from 107299-01) 4201436 ntpdate -w does not work correctly (from 109387-02) 4279094 Time daemon (xntpd) step the system clock in an abrupt adjustment (from 109387-01) 4247629 xntpd does not make use of in-kernel PLL Patch Installation Instructions: -------------------------------- Refer to the Install.info file within the patch for instructions on using the generic 'installpatch' and 'backoutpatch' scripts provided with each patch. Any other special or non-generic installation instructions should be described below. Special Install Instructions: ----------------------------- NOTE : This patch adds a new configuration option to the /etc/inet/ntp.conf file. The option is: slewalways yes | no If you turn this option on xntpd will try to always slew the time and will never make large steps backwards or forwards. It is advised that if you do turn on slewalways you also select: disable pll Without this option xntpd will not be able to correct time differences greater than 128ms. ---------------------------------------------------------------------- README -- Last modified date: Monday, October 15, 2001