Martin Paul wrote:
Jeff Wieland wrote:
I must have missed that.
Here's the message, judge yourself (just in case my conclusion is wrong):
http://www.mail-archive.com/[email protected]/msg02856.html
Martin.
Well, that's just not true that Sun never published any details of
security flaws.
From 108993-07 (SunOS 5.8: nss and ldap patch):
Problem Description:
4459155 mountd in netgroup_check() waiting for LDAP
4632611 Putback for 4320901 backed out fix for 4425163
(from 108993-06)
4320901 Native LDAP takes a very long time to try the next server in the
list
(from 108993-05)
4351510 LDAP Switch getgrpgid causes nscd crash
4425163 handling of multiple solarisdatasearchdn still broken
4359677 ldapclient -m -B overwrites previous database rather than adding
new one
(from 108993-04)
4409411 LDAP Name Service (nss_ldap) returns unexpected NULL pointer for
group passwd
4429802 LDAP Name Service (nss_ldap) neglects to remove "{crypt}" from
group password
4480119 _nss_ldap_group2ent() getgrent.c does not use last byte in
supplied buffer.
(from 108993-03)
1257084 login times out, due to excessive time in group lookup
4357778 PSARC 2000/038 create /etc/default/nss
(from 108993-02)
4353601 i.nsswitch CAS removes non-hosts entries for xfn
(from 108993-01)
4312278 tasks, projects, extended accounting project
(from 110390-02)
4415143 ldapclient fails to handle -i flag
(from 110390-01)
This patch revision was generated to accumulate and obsolete
the feature changes introduced in point patch 110194-01
(from 110194-01)
4310379 ldapclient needs to be smarter to work with install (sysid)
(from 111090-03)
4449613 Buffer overflow in libsldap.so.1 leads to root compromise
--
Jeff Wieland | Purdue University
Network Systems Administrator | ITSO UNIX Platforms
Voice: (765)496-8234 | 155 S. Grant Street
FAX: (765)494-6620 | West Lafayette, IN 47907-2115
