OBSOLETE Patch-ID# 127954-06

NOTE:
***********************************************************************
READ THE TERMS OF THE AGREEMENT ("AGREEMENT") IN THE LEGAL_LICENSE.TXT
FILE CAREFULLY BEFORE USING THIS SOFTWARE. BY USING THE SOFTWARE, YOU
AGREE TO THE TERMS OF THIS AGREEMENT. IF YOU DO NOT AGREE TO ALL OF THE
TERMS, PROMPTLY DESTROY THE UNUSED SOFTWARE.
***********************************************************************

Keywords: security libc libsldap core nscd
Synopsis: Obsoleted by: 127128-11 SunOS 5.10_x86: libc patch
Date: Feb/21/2008


Install Requirements: Reboot immediately after installing this patch on an active boot environment to bring the system to a consistent state. An alternative may be in specified in the Special Install Instructions.                      
                      Use Single User Mode (run level S) when installing this patch on an active boot environment.  An alternative may be specified in the Special Install Instructions.                      
                      
Solaris Release: 10_x86

SunOS Release: 5.10_x86

Unbundled Product: 

Unbundled Release: 

Xref: This patch available for SPARC as patch 127111

Topic: SunOS 5.10_x86: libc patch

Relevant Architectures: i386

BugId's fixed with this patch: 6271235 6287034 6293320 6299080 6392121 6402611 6406198 6496124 6496719 6507372 6508442 6514060 6519579 6520079 6531269 6532164 6540209 6541095 6543897 6552599 6555239 6556067 6557371 6562771 6566019 6570016 6577639 6586050 6587024 6590401 6591680 6593908 6599934 6602070 6608351 6609144 6609526 6609869 6610117 6612782 6616435 6617555 6620345 6620843 6628289

Changes incorporated in this version: 6287034 6508442 6609526

Patches accumulated and obsoleted by this patch: 127731-04 127758-01

Patches which conflict with this patch: 

Patches required with this patch: 118855-36 120012-14 (or greater)

Obsoleted by: 

Files included with this patch: 

/lib/amd64/libc.so.1
/lib/amd64/nss_dns.so.1
/lib/amd64/nss_nis.so.1
/lib/amd64/nss_nisplus.so.1
/lib/libc.so.1
/lib/nss_dns.so.1
/lib/nss_nis.so.1
/lib/nss_nisplus.so.1
/lib/svc/method/svc-nscd
/usr/lib/amd64/libsldap.so.1
/usr/lib/amd64/nss_ldap.so.1
/usr/lib/ldap/idsconfig
/usr/lib/ldap/ldap_cachemgr
/usr/lib/libc/libc_hwcap1.so.1
/usr/lib/libc/libc_hwcap2.so.1
/usr/lib/libsldap.so.1
/usr/lib/mdb/proc/amd64/libc.so
/usr/lib/mdb/proc/libc.so
/usr/lib/netsvc/yp/inityp2l
/usr/lib/nis/nissetup
/usr/lib/nss_ldap.so.1
/usr/sbin/nscd
/var/yp/Makefile

Problem Description:

6287034 crypt's getalgbyname() use of stdio is seen to be problematic
6508442 nscd hangs with with too many sockets open with AD
6609526 referrals are broken with sparks
 
(from 127954-05)
 
6293320 gettxt() is not MT-SAFE
 
(from 127954-04)
 
6271235 nd cmd/ldapcachemgr don't get along
6299080 nscd initialises name_service_door file with wrong permissions after JASS
6402611 "idsconfig" does not deny self-writes of auditing and RBAC attribute values.
6496124 nscd: Unable to login with pam_unix_auth error
6496719 connections should fall back to primary server after it comes back
6514060 nscd consumes all the memory that it can
6520079 getent fails to match networks entries from nis or nisplus
6531269 the nscd exploits dynamic linking a little too much
6532164 CR 6494262 should have included ypmake, inityp2l, nissetup and nscd
6541095 login denied when CA is expired and authentication method is set to "NS_LDAP_AUTH=tls:simple;simple
6543897 nscd deadlock after timeshift, not working failover
6552599 nscd may dereference a NULL pointer in nss_pgetent(), nscd core dump
6556067 storing FQDN in serverAddr of Connection can be problematic
6557371 ldap_cachemgr daemon crashes in getldap_lookup()
6566019 minor memory leak during connection failover
6577639 system/name-service-cache starting incorrectly on snv_67+
6587024 nscd fails to notice nsswitch.conf changes within a second of its start time
6608351 nss2 test cases expose memory problems in the nss_dns and nss_nisplus backends
6609144 ldap_cachemgr needs to work better
6609869 nscd has problems if an ip address resolves to an empty hostname
6610117 ldap_cachemgr caching mechanism has flaws
6612782 repeated msg "yp_all: failed to get server's name" on cluster node consoles
6616435 nscd process aborts and dumps core with S10U4
6617555 nscd debug mode broken in S10U4
6620345 since update to Patch 120011-14 (S10u4) nss_ldap_getent cores on LDAP client
6620843 new nscd rejects databases without a source in nsswitch.conf
6628289 svc.configd hangs in deadly embrace with nscd
 
(from 127954-03)
 
6602070 netgroup lookup should return NSS_UNAVAIL if only files backend is used
 
(from 127954-02)
 
6570016 patches 120037-19 and 120473-09 hang threaded app when it calls fork1() after pthread_atfork()
6590401 fixes for 6418491, 6518780 and 6570016 conspire to break Java
6593908 fixes for 6518780 cause more deadlocks
6599934 deadlock by atfork lock and user's mutex
 
(from 127954-01)
 
6392121 stack usage of __regexec_std may be reduced
6406198 regexec with REG_ICASE may not correctly work
6586050 bracket expression with REG_ICASE doesn't match in some locale
 
(from 127731-04)
 
6591680 users failed to log in at the first attempt but could log in at the second attempt
 
(from 127731-03)
 
6555239 pam_ldap is to take into account DS52p5 and following new encoding for Account Availability control
 
(from 127731-02)
 
6540209 nscd in nss_compat:ldap keeps a lot of memory
 
(from 127731-01)
 
6507372 SSD and attributemap in the profile is causing ldaplist, getent, login and nscd to core
 
(from 127758-01)
 
6519579 need name service configuration for labeled zone access to an isolated name space
6562771 getspnam(3C) requires more than all privs

Patch Installation Instructions:
--------------------------------
For Solaris 2.0-2.6 releases, refer to the Install.info file and/or
the README within the patch for instructions on using the generic
'installpatch' and 'backoutpatch' scripts provided with each patch.
 
For Solaris 7-10 releases, refer to the man pages for instructions
on using 'patchadd' and 'patchrm' scripts provided with Solaris.
Any other special or non-generic installation instructions should be
described below as special instructions.  The following example
installs a patch to a standalone machine:
 
       example# patchadd /var/spool/patch/104945-02
 
The following example removes a patch from a standalone system:
 
       example# patchrm 104945-02
 
For additional examples please see the appropriate man pages.

Special Install Instructions:
-----------------------------
 
NOTE 1: Install and uninstall this patch in single user mode.
        Reboot the system immediately after patch installation.
 
NOTE 2:  Before installing this patch, please install the latest patch
         utilities patches for your OS. This list of patches is defined
         at - http://sunsolve.sun.com
 
         Please use the pull down list which appears after the text:
         "Latest Patch Update: To ensure the correct functioning of the
         patching utilities on your system, stay up to date on the
         following patches"

README -- Last modified date:  Monday, April 28, 2008