OBSOLETE Patch-ID# 127954-06

Download this patch from My Oracle Support

Your use of the firmware, software and any other materials contained in this update is subject to My Oracle Support Terms of Use, which may be viewed at My Oracle Support.

For further information on patching best practices and resources, please see the following links:

Keywords: security libc libsldap core nscd
Synopsis: Obsoleted by: 127128-11 SunOS 5.10_x86: libc patch
Date: Feb/21/2008

Install Requirements: After installing this patch on an active boot environment, the system will be in a potentially inconsistent state until a reboot is performed. Unless
otherwise specified in the Special Install Instructions below, it is normally safe to apply further patches prior to initiating the reboot due to the relatively small footprint of the patch utilities. Normal operations must not be resumed until after the reboot is performed.
Use Single User Mode (run level S) when installing this patch on an active boot environment. An alternative may be specified in the Special Install Instructions.

Solaris Release: 10_x86

SunOS Release: 5.10_x86

Unbundled Product:

Unbundled Release:

Xref: This patch available for SPARC as patch 127111

Topic: SunOS 5.10_x86: libc patch

Relevant Architectures: i386

Bugs fixed with this patch:

Sun CR #	Bug #
6271235	15266169
6287034	15272263
6293320	15274874
6299080	15277169
6392121	15315742
6402611	15320891
6406198	15322478
6496124	15362529
6496719	15362855
6507372	15368619
6508442	15369118
6514060	15372632
6519579	15375738
6520079	15376024
6531269	15382212
6532164	15382666
6540209	15387255
6541095	15387707
6543897	15389233
6552599	15394045
6555239	15395654
6556067	15396209
6557371	15397103
6562771	15400104
6566019	15401877
6570016	15403977
6577639	15408221
6586050	15412870
6587024	15413411
6590401	15415285
6591680	15415940
6593908	15417249
6599934	15420690
6602070	15421869
6608351	15425564
6609144	15426076
6609526	15426209
6609869	15426373
6610117	15426552
6612782	15428237
6616435	15430490
6617555	15431194
6620345	15432939
6620843	15433252
6628289	15437633

Changes incorporated in this version: 6287034 6508442 6609526

Patches accumulated and obsoleted by this patch: 127731-04 127758-01

Patches which conflict with this patch:

Patches required with this patch: 118855-36 120012-14 (or greater)

Obsoleted by: 127128-11

Files included with this patch:

/lib/amd64/libc.so.1
/lib/amd64/nss_dns.so.1
/lib/amd64/nss_nis.so.1
/lib/amd64/nss_nisplus.so.1
/lib/libc.so.1
/lib/nss_dns.so.1
/lib/nss_nis.so.1
/lib/nss_nisplus.so.1
/lib/svc/method/svc-nscd
/usr/lib/amd64/libsldap.so.1
/usr/lib/amd64/nss_ldap.so.1
/usr/lib/ldap/idsconfig
/usr/lib/ldap/ldap_cachemgr
/usr/lib/libc/libc_hwcap1.so.1
/usr/lib/libc/libc_hwcap2.so.1
/usr/lib/libsldap.so.1
/usr/lib/mdb/proc/amd64/libc.so
/usr/lib/mdb/proc/libc.so
/usr/lib/netsvc/yp/inityp2l
/usr/lib/nis/nissetup
/usr/lib/nss_ldap.so.1
/usr/sbin/nscd
/var/yp/Makefile

Problem Description:

6287034 crypt's getalgbyname() use of stdio is seen to be problematic
6508442 nscd hangs with with too many sockets open with AD
6609526 referrals are broken with sparks
 
(from 127954-05)
 
6293320 gettxt() is not MT-SAFE
 
(from 127954-04)
 
6271235 nd cmd/ldapcachemgr don't get along
6299080 nscd initialises name_service_door file with wrong permissions after JASS
6402611 "idsconfig" does not deny self-writes of auditing and RBAC attribute values.
6496124 nscd: Unable to login with pam_unix_auth error
6496719 connections should fall back to primary server after it comes back
6514060 nscd consumes all the memory that it can
6520079 getent fails to match networks entries from nis or nisplus
6531269 the nscd exploits dynamic linking a little too much
6532164 CR 6494262 should have included ypmake, inityp2l, nissetup and nscd
6541095 login denied when CA is expired and authentication method is set to "NS_LDAP_AUTH=tls:simple;simple
6543897 nscd deadlock after timeshift, not working failover
6552599 nscd may dereference a NULL pointer in nss_pgetent(), nscd core dump
6556067 storing FQDN in serverAddr of Connection can be problematic
6557371 ldap_cachemgr daemon crashes in getldap_lookup()
6566019 minor memory leak during connection failover
6577639 system/name-service-cache starting incorrectly on snv_67+
6587024 nscd fails to notice nsswitch.conf changes within a second of its start time
6608351 nss2 test cases expose memory problems in the nss_dns and nss_nisplus backends
6609144 ldap_cachemgr needs to work better
6609869 nscd has problems if an ip address resolves to an empty hostname
6610117 ldap_cachemgr caching mechanism has flaws
6612782 repeated msg "yp_all: failed to get server's name" on cluster node consoles
6616435 nscd process aborts and dumps core with S10U4
6617555 nscd debug mode broken in S10U4
6620345 since update to Patch 120011-14 (S10u4) nss_ldap_getent cores on LDAP client
6620843 new nscd rejects databases without a source in nsswitch.conf
6628289 svc.configd hangs in deadly embrace with nscd
 
(from 127954-03)
 
6602070 netgroup lookup should return NSS_UNAVAIL if only files backend is used
 
(from 127954-02)
 
6570016 patches 120037-19 and 120473-09 hang threaded app when it calls fork1() after pthread_atfork()
6590401 fixes for 6418491, 6518780 and 6570016 conspire to break Java
6593908 fixes for 6518780 cause more deadlocks
6599934 deadlock by atfork lock and user's mutex
 
(from 127954-01)
 
6392121 stack usage of __regexec_std may be reduced
6406198 regexec with REG_ICASE may not correctly work
6586050 bracket expression with REG_ICASE doesn't match in some locale
 
(from 127731-04)
 
6591680 users failed to log in at the first attempt but could log in at the second attempt
 
(from 127731-03)
 
6555239 pam_ldap is to take into account DS52p5 and following new encoding for Account Availability control
 
(from 127731-02)
 
6540209 nscd in nss_compat:ldap keeps a lot of memory
 
(from 127731-01)
 
6507372 SSD and attributemap in the profile is causing ldaplist, getent, login and nscd to core
 
(from 127758-01)
 
6519579 need name service configuration for labeled zone access to an isolated name space
6562771 getspnam(3C) requires more than all privs

Patch Installation Instructions:

--------------------------------
For Solaris 2.0-2.6 releases, refer to the Install.info file and/or
the README within the patch for instructions on using the generic
'installpatch' and 'backoutpatch' scripts provided with each patch.
 
For Solaris 7-10 releases, refer to the man pages for instructions
on using 'patchadd' and 'patchrm' scripts provided with Solaris.
Any other special or non-generic installation instructions should be
described below as special instructions.  The following example
installs a patch to a standalone machine:
 
       example# patchadd /var/spool/patch/104945-02
 
The following example removes a patch from a standalone system:
 
       example# patchrm 104945-02
 
For additional examples please see the appropriate man pages.

Special Install Instructions:

-----------------------------
 
NOTE 1: Install and uninstall this patch in single user mode.
        Reboot the system immediately after patch installation.
 
NOTE 2:  Before installing this patch, please install the latest patch
         utilities patches for your OS. This list of patches is defined
         at - http://sunsolve.sun.com
 
         Please use the pull down list which appears after the text:
         "Latest Patch Update: To ensure the correct functioning of the
         patching utilities on your system, stay up to date on the
         following patches"

README -- Last modified date: Saturday, November 10, 2012