Patch-ID# 119796-04


Download this patch from My Oracle Support

Your use of the firmware, software and any other materials contained in this update is subject to My Oracle Support Terms of Use, which may be viewed at My Oracle Support.
For further information on patching best practices and resources, please see the following links:
Copyright (c) 2012, Oracle and/or its affiliates. All rights reserved.

Keywords: security login.krb5 telnetd rshd rlogind kerberos
Synopsis: SEAM 1.0.2_x86: patch for Solaris 9_x86
Date: Apr/03/2007


Install Requirements: NA

Solaris Release: 9_x86

SunOS Release: 5.9_x86

Unbundled Product: Solaris Enterprise Authentication Mechanism

Unbundled Release: 1.0.2

Xref: This patch available for SPARC as patch 116462

Topic:

Relevant Architectures: i386

Bugs fixed with this patch:

Sun CR # Bug #
624857615257493
632762815288404
652937015381224


Changes incorporated in this version: 6529370

Patches accumulated and obsoleted by this patch:

Patches which conflict with this patch:

Patches required with this patch:

Obsoleted by:

Files included with this patch:

/usr/krb5/lib/telnetd

Problem Description:

6529370 SEAM telnetd (SUNWkr5sv) allows login as any user without a password [MITKRB5-SA-2007-001]
 
(from 119796-03)
 
6327628 SEAM patches require patchpro metadata
 
(from 119796-02)
 
        This revision was built to address a patch packaging issue.
 
(from 119796-01)
 
6248576 SEAM telnet client needs solaris fix 6234932 (buffer overflow)


Patch Installation Instructions:
-------------------------------- 
For Solaris 2.0-2.6 releases, refer to the Install.info file and/or
the README within the patch for instructions on using the generic
'installpatch' and 'backoutpatch' scripts provided with each patch.
 
For Solaris 7-9 releases, refer to the man pages for instructions
on using 'patchadd' and 'patchrm' scripts provided with Solaris.
Any other special or non-generic installation instructions should be
described below as special instructions.  The following example
installs a patch to a standalone machine:
 
       example# patchadd /var/spool/patch/104945-02
 
The following example removes a patch from a standalone system:
 
       example# patchrm 104945-02
 
For additional examples please see the appropriate man pages.


Special Install Instructions:
----------------------------- 
 
NOTE 1:  To get the complete fix for bugid 4836676 (Bounds checks not in place
         for princs in krbv5), please also install the following patches:
 
         113990-04 (or greater)  krb5 shared object patch
         116046-01 (or greater)  libkadm5 patch
         116045-01 (or greater)  krb5 usr/lib patch
         116044-01 (or greater)  ktutil kdb5_util kadmin patch
 
         Although 119796-01 and 113990-04, 116044-01, 116045-01 and 116046-01
         do not have a hard requirement or dependency on one another, the complete
         resolution for bugid 4836676 requires all of these patches to be installed.


README -- Last modified date: Saturday, November 10, 2012