Patch-ID# 105466-02
Keywords: security y2000 sendmail V8
Synopsis: SunOS 4.1.4: Sendmail Version 8
Date: Jul/07/98

Solaris Release: 1.1.2

SunOS Release: 4.1.4

Unbundled Product: 

Unbundled Release: 

Relevant Architectures: sun4(all)

BugId's fixed with this patch: 4083001 4072035 4018511 4018487 1267313 4035337 4075359 1205055 1241841 4034927 4035001 4037078 4022409 4027534 1265313 1261561 4015151 1241168 1252675 1242930 1249090 4030794 4017798 4011634 1265017 1245185 1244027 1252530 1253584 1241841 4132274

Changes incorporated in this version: 4132274

Patches accumulated and obsoleted by this patch: 102423-07

Patches which conflict with this patch: 

Patches required with this patch: 

Obsoleted by: 

Note: Please read the INSTALLATION_GUIDE before installing this patch.   It gives background
      information for sendmail V8 and describes how to use the original V5 configuration files 
      with sendmail V8.


Files included with this patch: INSTALLATION_GUIDE
                                sendmail
                                sendmail.mx
                                mconnect
                                mailstats
                                vacation
                                sendmail.cf
                                main.cf
                                subsidiary.cf
                                sendmail.hf
                                sendmail.8
			        aliases

   
Problem Description: 

4132274 Sendmail can be made to dump core by using formatted address
4083001 Porting of V8 sendmail to SunOs 4.1.4 and 4.1.3_U1.
4072035 Security hole in vacation program.
4018511 Security bug: Sendmail Group Permissions Vulnerability
4018487 Security Bug: Sendmail Treats The w Option As Safe
1267313 sendmail security bug - Sendmail CERT advisory 96.20
4035337 4.x sendmail has Year 2000 problem.
4075359 4.1.4 date macro $b does not include hours offset incompatible with some mailer
1205055 sendmail leaves world-writable core files in /var/spool/mqueue, security
1241841 Sendmail V8 coredumps when using HP openmail, or Novell Groupwise SMTP Gateway (refix)
4034927 sendmail in bs mode doesn't work with -or option
4035001 sendmail can't create file
4037078 sendmail sends email to the mailhost instead of sending it directly
4022409 sendmail dumps core after rewriting the ruleset 0
4027534 V0-V5 options cause sendmail alias rebuild to fail.
1265313 sendmail v8 dumps core with alias include file owned by unknown user
1261561 getmxrr: res_search (eng) failed with impossible h_errno (-1)
4015151 sendmail fails to use scanf for 'F' command in sendmail.cf
1241168 Race condition exists
1252675 sendmail will match on comments in the hosts file
1242930 sendmail displays multiple dbm put error messages
1249090 sendmail V8 coredumps while delivering from mail queue to HP openmail
4030794 sendmail gets From: field wrong
4017798 Sendmail in bs mode ignores the Orident option
4011634 a user can redirect messages to unqualified domain names
1265017 V8 sendmail patch breaks F=U (UNIX-Style From line) flag
1245185 alias indirect self reference is broken in sendmail v8
1244027 NIS mail.aliases DBM map built from v8 sendmail breaks v5 sendmail clients
1252530 make aliases fail
1253584 Sendmail source update and rebuild for BIND 4.9.3
1241841 Sendmail V8 coredumps when using HP openmail, or Novell Groupwise SMTP Gateway

Patch Installation Instructions: 

1) As root, kill the current sendmail process.

2) Save a copy of the old Version 5 sendmail files:

   mv /usr/lib/sendmail /usr/lib/sendmail.v5
   mv /usr/lib/sendmail.mx /usr/lib/sendmail.mx.v5
   mv /usr/ucb/vacation /usr/ucb/vacation.v5
   mv /usr/etc/mconnect /usr/etc/mconnect.v5
   mv /usr/etc/mailstats /usr/etc/mailstats.v5
   mv /usr/man/man8/sendmail.8 /usr/man/man8/sendmail.8.v5
   mkdir /etc/mail
   mv /etc/sendmail.cf /etc/mail/sendmail.cf.v5
   mv /usr/lib/sendmail.subsidiary.cf /etc/mail/subsidiary.cf.v5
   mv /usr/lib/sendmail.main.cf /etc/mail/main.cf.v5
   
3) Copy the new sendmail files from the patch directory:
   
   cp sendmail /usr/lib
   cp sendmail.mx /usr/lib
   cp vacation /usr/ucb
   cp mconnect /usr/etc
   cp mailstats /usr/etc
   cp sendmail.8 /usr/man/man8
   cp sendmail.cf /etc/mail
   cp main.cf /etc/mail
   cp subsidiary.cf /etc/mail
   cp sendmail.hf /etc/mail
   cp aliases /etc/mail

   chmod 4551 /usr/lib/sendmail
   chown root.staff /usr/lib/sendmail
   chmod 4551 /usr/lib/sendmail.mx
   chown root.staff /usr/lib/sendmail.mx

4) Create a mail statistics file, if desired:
   touch /etc/mail/sendmail.st

5) Restart sendmail:

  /usr/lib/sendmail -bd -q1h  (for YP mode)
		or
  /usr/lib/sendmail.mx -bd -q1h (for DNS and MX lookups)
