Patch-ID# 101842-01
Keywords: sendmail NIS map hang security .forward HOME looping
Synopsis: SunOS 5.2: sendmail jumbo patch - security
Date: Jun/22/94

Solaris Release: 2.2

SunOS release: 5.2

Unbundled Product:

Unbundled Release:

Topic: SunOS 5.2: sendmail jumbo patch - security

  ***** Note:  patch 100999-66 or later is needed to fix bugid 1153276 *****

BugId's fixed with this patch: 1127546 1133654 1142888 1142840 1151181 1151181 1152199 1153276 1124977

Changes incorporated in this version: 1124977

Relevant Architectures: sparc

Patches accumulated and obsoleted by this patch: 101077-06

Patches which conflict with this patch: 100999-58 through 100999-65

Patches required with this patch: 100999-66

Obsoleted by:

Files included with this patch:

/usr/lib/sendmail
/usr/lib/sendmail.mx

Problem Description:

1124977 sendmail looping on mail headers that have 8 bit characters

8 bit email header  will cause sendmail to loop/

    *** Do not install patches 100999-58 through 100999-65 without ***
        reading the special install instructions below.

(from 100999-59)

1160505:  sendmail dumps core when handed a debug flag that
          is larger than the max int.

(from 100999-58)

1153276: sendmail can't rebuild huge aliases file

(from 101077-06)

1151181 sendmail security
1152199 sendmail .foward capability can bypass read permissions

two more security hole was reported since the
last security patch was issued.  The hole allows
unauthorized access to (system) files via e-mail.

This patch fix bug 1152199, and also provide a improved fix for 
1151181. 

(from 101077-05)

1151181 sendmail security

two more security hole was reported sine the
last security patch was issued.  The hole allows
unathorized access to (system) files via e-mail.

(from 101077-04)

1142840 Sendmail ignores $HOME parameter in .forward file

Sendmail ignores $HOME parameter in .forward file

(from 101077-03)

1142888 this is a sendmail security hole dealing with mail delivered to files

this a seriours security hole where SMTP transaction can be used 
to gain access to system files. This fix is in 1093 and back ported to
4.1.3 and 4.1.3.u1

(from 101077-02)

	Sendmail process hangs and eats up CPU time 
	in a lower fprintf  function.

(from 101077-01)

        using the metasymbol ${S$i$} in a sendmail rule to look up
a NIS/NIS+ map does not retun a correct result.

        e.g
        DSlocaldomains.byname
        R$*<@$*$%S>$*           $:$1<@$2${S$3$}>$4

Patch Installation Instructions:
--------------------------------
Generic 'installpatch' and 'backoutpatch' scripts are provided
within each patch package with instructions appended to this section.
Other specific or unique installation instructions may also be
necessary and should be described below.

Special Install Instructions:

----------------------------- 

Halt sendmail prior to installation with "/etc/init.d/sendmail stop".
 
Restart sendmail after successful installation with
"/etc/init.d/sendmail start".
 
NOTE:  Patches 100999-58 through 100999-65 should not be installed
       after patch 101842 is installed.  Sun recommends that 100999-66
       or later be installed instead.
 
       If you must install patches 100999-58 through 100999-65, they
       MUST be installed prior to the installation of 101842 and NEVER
       be installed after 101842.  Doing so would backout all sendmail
       fixes that occured after 101077-06.