OBSOLETE Patch-ID# 148310-08


Download this patch from My Oracle Support

Your use of the firmware, software and any other materials contained in this update is subject to My Oracle Support Terms of Use, which may be viewed at My Oracle Support.
For further information on patching best practices and resources, please see the following links:
Copyright (c) 2012, Oracle and/or its affiliates. All rights reserved.

Keywords: security buffer overflow crafted dhcp dhcpagent
Synopsis: Obsoleted by: 148310-09 SunOS 5.10_x86: dhcp patch
Date: Sep/06/2017


Install Requirements: Reboot after installing this patch to activate the changes delivered. An alternative may be specified in the Special Install Instructions.

Solaris Release: 10_x86

SunOS Release: 5.10_x86

Unbundled Product:

Unbundled Release:

Xref: This patch available for SPARC as patch 148309

Topic: SunOS 5.10_x86: dhcp patch

Relevant Architectures: i386

Bugs fixed with this patch:

Sun CR # Bug #
486793415161168
16042428
16807129
17003748
17624647
17899148
17904052
22386275
25942013
26726650
637059715306062
657301015405645
661939815432374
671380515486931
676465515518436
688399715591058
693252915627594
695983615648746
696397115652032
708011915736076
711167015754898
711656615757953
714432415772097
715744615782134


Changes incorporated in this version: 26726650

Patches accumulated and obsoleted by this patch: 138877-03 144545-01 146477-02

Patches which conflict with this patch:

Patches required with this patch: 120012-14 125504-02 139556-08 141445-09 142910-17 147003-01 150313-06 (or greater)

Obsoleted by:

Files included with this patch:

/etc/default/dhcpagent
/etc/dhcp/inittab
/lib/amd64/libinetutil.so.1
/lib/libdhcpagent.so.1
/lib/libdhcputil.so.1
/lib/libinetutil.so.1
/sbin/dhcpagent
/sbin/dhcpinfo
/usr/include/netinet/dhcp.h
/usr/lib/inet/in.dhcpd

Problem Description:

26726650 parts of dhcp patches 148309-07 & 148310-07 do not get installed
 
(from 148310-07)
 
15161168 request to implement RFC 3396; long options for DHCP
16042428 DHCPAGENT(client) dies on NAK, IP not updated
22386275 dhcpagent should support Classless Static Route Option (RFC 3442)
25942013 DHCP client not updating DHCP option information on lease renewal
 
(from 148310-06)
 
17899148 problem with dhcp/server service
 
(from 148310-05)
 
17624647 in.dhcpd spits SENDTO error while it's being restarted
 
(from 148310-04)
 
16807129 in.dhcpd assigns address a second time while lease is still valid
17003748 misleading uses of htonl() in dhcp.c
 
(from 148310-03)
 
7144324 in.dhcpd SEGV during termination
7157446 in.dhcpd SEGV at startup
 
(from 148310-02)
 
6764655 array overrun in dhcp_inittab.c
7111670 uninitialized variable in dsrvr_socktype
7116566 remove ITAB_CAT_COUNT in dhcp_inittab.h
 
(from 148310-01)
 
        This revision accumulates generic Sustaining patch 138877-03
        into Solaris S10U11 update.
 
(from 138877-03)
 
7080119 DHCPNAK larger than the minimum size for a DHCP response, the CD_END is not included
 
(from 138877-02)
 
6370597 in.dhcpd core dumps: double free on a DHCP network container record
6959836 DHCP server should set file limit even in debug mode
6963971 dhcpd needs to be hardened against the 32-bit fopen/255 problem
 
(from 138877-01)
 
6573010 DHCP server fails to lock newly created client record
6619398 [CVE-2007-5365] potential buffer overflow due to crafted requests
6713805 DHCP server should not care about the number of offers
 
(from 146477-02)
 
17904052 ZFS hangs on reboot with iSCSI traffic going via DHCP configured interface
 
(from 146477-01)
 
6932529 after applying 142910-05 to 32-bit x86 I get an iscsi ioctl error on every reboot
 
(from 144545-01)
 
6883997 CLIENT_ID is not sent when specified as NVT ASCII string is dhcpagent file


Patch Installation Instructions:
--------------------------------
 
Please refer to the man pages for instructions on using 'patchadd'
and 'patchrm' commands provided with Solaris.
 
The following example installs a patch to a standalone machine:
 
       example# patchadd /var/spool/patch/123456-07
 
The following example removes a patch from a standalone system:
 
       example# patchrm 123456-07
 
For additional examples please see the appropriate man pages. Any
other special or non-generic installation instructions should be
described below as special instructions.


Special Install Instructions:
-----------------------------
 
NOTE 1:  Reboot the system after patch installation.
 
         This patch may be activated without a reboot by restarting the
         DHCP server manually when convenient.
 
         Example 1. Restarting DHCP service (in.dhcpd) after installing
                    this patch:
 
                    svcadm restart svc:/network/dhcp-server:default
 
NOTE 2:  To get the complete fix for:
 
         15161168 request to implement RFC 3396; long options for DHCP
         16042428 DHCPAGENT(client) dies on NAK, IP not updated
         22386275 dhcpagent should support Classless Static Route Option
                  (RFC 3442)
         25942013 DHCP client not updating DHCP option information on
                  lease renewal
 
         please also install the following patches:
 
         150401-53 (or greater)  Kernel Patch
         150437-03 (or greater)  wanboot server patch
         152830-01 (or greater)  nfs_dlboot patch
 
NOTE 3:  The fix for bug 22386275 (dhcpagent should support Classless
         Static Route Option (RFC 3442)) will only be enabled after
         editing the PARAM_REQUEST_LIST in /etc/default/dhcpagent to
         add option 121 to the list before option 3.  For example:
 
         From:
         PARAM_REQUEST_LIST=1,3,6,12,15,28,43
 
         To:
         PARAM_REQUEST_LIST=1,121,3,6,12,15,28,43


README -- Last modified date: Friday, January 12, 2018