Patch-ID# 103603-05
Keywords: security ftp nfs memory leak core getreply domap rsh rexec in.ftpd
Synopsis: SunOS 5.5.1: ftp, in.ftpd, in.rexecd and in.rshd patch
Date: Oct/03/97

Solaris Release: 2.5.1

SunOS Release: 5.5.1

Unbundled Product:

Unbundled Release:

Xref: This patch available for x86 as patch 103604

Topic: SunOS 5.5.1: ftp, in.ftpd, in.rexecd and in.rshd patch

BugId's fixed with this patch: 1198215 1246408 1249667 1251275 1255435 1256632

Changes incorporated in this version: 1246408

Relevant Architectures: sparc

Patches accumulated and obsoleted by this patch:

Patches which conflict with this patch:

Patches required with this patch:

Obsoleted by:

Files included with this patch:

/usr/bin/ftp
/usr/sbin/in.ftpd
/usr/sbin/in.rexecd
/usr/sbin/in.rshd

Problem Description:

1246408 ftp may be used to get root access from port 20 to other machines

(from 103603-04)

1251275 ftpd,rshd,rexecd,in.uucpd on NFS client puts user in / when homedir is mounted as a non-trusted root

(from 103603-03)

1256632 ftp "nmap" function does not work

(from 103603-02)

1255435 ftp dumps core if lostpeer signal handler is called right before getreply()
1249667 ftp size increases by 8k/2 page size with every open/close session memory leak

(from 103603-01)

1198215 ftp can silently lose data when writing to nfs

Patch Installation Instructions:
--------------------------------
Refer to the Install.info file within the patch for instructions on
using the generic 'installpatch' and 'backoutpatch' scripts provided
with each patch. Any other special or non-generic installation
instructions should be described below.

Special Install Instructions:
-----------------------------

None.