Patch-ID# 102480-07 Keywords: security DNS libresolv.so.2 CERT BIND 4.9.3 in.named named-xfer Synopsis: SunOS 5.4_x86: fixes for memory leak, nslookup, dns cache corruption Date: Aug/14/97 Solaris Release: 2.4_x86 SunOS Release: 5.4_x86 Unbundled Product: Unbundled Release: Xref: This patch available on SPARC as patch 102479 Topic: SunOS 5.4_x86: fixes for memory leak, nslookup, dns cache corruption BugId's fixed with this patch: 1178808 1238679 1247019 1265838 4008451 4018620 4037068 4038360 Changes incorporated in this version: 4037068 4038360 Relevant Architectures: i386 Patches accumulated and obsoleted by this patch: Patches which conflict with this patch: Patches required with this patch: Obsoleted by: Files included with this patch: usr/include/netdb.h usr/include/resolv.h usr/include/arpa/nameser.h usr/lib/libresolv.so.1 usr/lib/libresolv.so.2 usr/lib/nslookup.help usr/sbin/in.named usr/sbin/named-xfer usr/sbin/nslookup usr/sbin/nstest Problem Description: 4038360 Applications linked against libresolv.so.1 and running w/ 103663-05 fail 4037068 libresolv does not reread resolv.conf (from 102480-06) 4008451 in.named should have a configurable listen(3N) backlog (from 102480-05) 4018620 DNS server cache corruption and lost of root server A records. (from 102480-04) 1265838 nslookup takes to long to fail if /etc/resolv.conf is missing (from 102480-03) 1247019 nslookup takes 90 seconds if /etc/resolv.conf file is missing (from 102480-02) 1238679 DNS spoofing is possible per Cern ca-96.02 (from 102480-01) 1178808 memory leak/mismanagement in in.named Patch Installation Instructions: -------------------------------- Refer to the Install.info file within the patch for instructions on using the generic 'installpatch' and 'backoutpatch' scripts provided with each patch. Any other special or non-generic installation instructions should be described below. Special Install Instructions: ----------------------------- Please refer to the file called BIND_493 that came with this patch. This document will describe the difference between libresolv.so.1 and libresolv.so.2 and it should provide the BIND 4.9.3 man pages. It is recommended to install the following patches: 102064-10 (or newer) sendmail patch 102166-03 (or newer) nss_dns.so.1 rebuild for BIND 4.9.3 103707-01 (or newer) rpc.nisd_resolv rebuild for BIND 4.9.3