Patch-ID# 102394-05 Keywords: security lockf() nfs mount file large uid crash Synopsis: SunOS 4.1.4: NFS Patch Date: Mar/09/99 Solaris Release: 1.1.2 SunOS Release: 4.1.4 Note: This patch is available for 4.1.3_U1 as 102177 and for 4.1.3 as 100173. Unbundled Product: Unbundled Release: Relevant Architectures: sparc NOTE: sun4(all) BugId's fixed with this patch: 1144641 1129450 1176647 1139620 1227246 Changes incorporated in this version: 1144641 Patches accumulated and obsoleted by this patch: Patches which conflict with this patch: Patches required with this patch: Obsoleted by: Files included with this patch: nfs_server.o nfs_client.o nfs_vnodeops.o Problem Description: 1144641 --> System crashes in hat_ptesync() routine when accessing data across NFS 1227246 --> With the introduction of Solaris 2.5.1 as NFS server or client, 4.1.x is exposed to a security loophole. 4.1.x does not take care of large uids which is used by SGI, AIX and 2.5.1 machines. 1139620 --> If one lockf()'s a nfs file, it looks like the lock stays for some time. 1176647 --> Interrupting writes to NFS mounted files causes repeated but unpredictable error. Patch Installation Instructions: As root, backup the old files: mv /sys/`arch -k`/OBJ/nfs_server.o /sys/`arch -k`/OBJ/nfs_server.o.FCS mv /sys/`arch -k`/OBJ/nfs_client.o /sys/`arch -k`/OBJ/nfs_client.o.FCS mv /sys/`arch -k`/OBJ/nfs_vnodeops.o /sys/`arch -k`/OBJ/nfs_vnodeops.o.FCS Now install the patched files from the patch directory location: cp `arch -k`/nfs_server.o /sys/`arch -k`/OBJ/nfs_server.o chmod 444 /sys/`arch -k`/OBJ/nfs_server.o cp `arch -k`/nfs_client.o /sys/`arch -k`/OBJ/nfs_client.o chmod 444 /sys/`arch -k`/OBJ/nfs_client.o cp `arch -k`/nfs_vnodeops.o /sys/`arch -k`/OBJ/nfs_vnodeops.o chmod 444 /sys/`arch -k`/OBJ/nfs_vnodeops.o Config, make and install a new kernel. Please refer to the System and Networking Administration manual for details on building and installing a new kernel.