Patch-ID# 105723-07 Keywords: security ufsdump 2GB ufsrestore Synopsis: SunOS 5.6_x86: /usr/lib/fs/ufs/ufsdump and ufsrestore patch Date: Jun/13/2001 Solaris Release: 2.6_x86 SunOS Release: 5.6_x86 Unbundled Product: Unbundled Release: Xref: This patch available for SPARC as patch 105724 Topic: SunOS 5.6_x86: /usr/lib/fs/ufs/ufsdump and ufsrestore patch Relevant Architectures: i386 BugId's fixed with this patch: 4090210 4095387 4132365 4232405 4232413 4240566 4297558 4302943 4339366 4366956 4375449 Changes incorporated in this version: 4366956 4375449 Patches accumulated and obsoleted by this patch: 105725-01 Patches which conflict with this patch: Patches required with this patch: Obsoleted by: Files included with this patch: /usr/lib/fs/ufs/ufsdump /usr/lib/fs/ufs/ufsrestore Problem Description: 4366956 NLSPATH gettext introduces problems when used printf format specifier 4375449 dtmail crashes when calling catgets with NULL default message (from 105723-06) 4339366 Security vulnerability in ufsrestore allows root compromise. 4132365 Security vulnerability on ufsdump and restore in 2.6 and 2.6 x86 (from 105723-05) 4232413 ufsdump -W does function like it should after patch 105722-02 installed 4302943 ufsrestore doesn't handle ACLs correctly (from 105723-04) 4232405 DUMP: Unsupported condition detected: /dev/vx/rdsk/rootdg/vol01 must be owned by 4297558 ufsrestore(1M) gives error "xtrmap: too many map entries" in s28_32d (from 105723-03) 4240566 security: LC_MESSAGES buffer overflow (from 105723-02) 4132365 Security vulnerability on ufsdump and restore (from 105723-01) 4090210 ufsdump to a file fails at 2Gb, asking to change the tape (from 105725-01) 4095387 ufsrestore doesn't work with the fix to bugid 4090210 Patch Installation Instructions: -------------------------------- Refer to the Install.info file within the patch for instructions on using the generic 'installpatch' and 'backoutpatch' scripts provided with each patch. Any other special or non-generic installation instructions should be described below. Special Install Instructions: ----------------------------- Note for bugid 4162365: This patch disables the no longer supported hmsdump and hmsrestore specific options (Metamucil) which may be used by Backup Copilot, Online Backup or Online Disksuite. NOTE 1: To get the complete fix for 4240566 (security: LC_MESSAGES buffer overflow), we recommend installing the following patches: 105211-22 (or newer) /usr/lib/libc.a /usr/lib/libc.so.1 /usr/lib/libp/libc.a /usr/lib/pics/libc_pic.a 107992-01 (or newer) /usr/sbin/static/rcp patch NOTE 2: To get the complete fix for 4366956 (NLSPATH gettext introduces problems when used printf format specifier), we recommend installing the following patches: 107992-02 (or newer) /usr/sbin/static/rcp patch 105211-37 (or newer) /usr/lib/libc.a /usr/lib/libc.so.1 /usr/lib/libp/libc.a /usr/lib/pics/libc_pic.a 106050-02 (or newer) /usr/sbin/in.telnetd README -- Last modified date: Wednesday, June 13, 2001