ECO NUMBER: SSRT035902_ULT45 ----------- PRODUCT: DIGITAL ULTRIX (VAX / MIPS) Operating System -------- UPDATED PRODUCT: DIGITAL ULTRIX (VAX / MIPS) V4.3 - V4.5 ---------------- APPRX BLCK SIZE: 5400 ---------------- SOURCE: Digital Equipment Corporation Author: Software Security Response Team Op/SYS: ULTRIX (VAX / MIPS) Versions V4.3 through V4.5 COMPONENT: Security A potential security vulnerability has been identified with DIGITAL ULTRIX (VAX / MIPS) V4.3 through V4.5 syslog internal buffering. PROBLEM: This potential vulnerability may allow users to gain unauthorized privileges. SOLUTION: Digital has corrected this potential vulnerability and provided kits containing new binaries. The appropriate kits and images are identified below: DEC ULTRIX (VAX / MIPS) KIT ------------- SSRT035902_ULT45.tar ECO ID Image_Names CHECKSUM Within the tar file *=new binaries ------------- --------- ----------------- SSRT035902_ULT45 16277 490 4.3/MIPS/sendmail * 45119 6 4.3/MIPS/syslog.o 53940 213 4.3/VAX/sendmail * 52838 4 4.3/VAX/syslog.o 50224 509 4.3A/MIPS/sendmail * 09759 6 4.3A/MIPS/syslog.o 03539 509 4.4/MIPS/sendmail * 42575 6 4.4/MIPS/syslog.o 33754 213 4.4/VAX/sendmail * 29227 4 4.4/VAX/syslog.o 36536 509 4.5/MIPS/sendmail * 07395 6 4.5/MIPS/syslog.o 31621 213 4.5/VAX/sendmail * 29131 4 4.5/VAX/syslog.o AVAILABILITY: For software service contract or warranty customers the kits can be obtained through your normal Digital support channels. This ECO is also available from Digital's public Internet FTP site. Note: Non-contract/non-warranty customers should contact your lo- cal Digital support channels for information regarding these kits. APPLICABILITY: Digital Equipment Corporation strongly urges Customers to upgrade to a minimum of DEC ULTRIX (VAX / MIPS) V4.3 or V4.3A, then apply the Security ECO. As always, Digital urges you to periodically review your system management and security procedures. Digital will continue to re- view and enhance the security features of its products and work with customers to maintain and improve the security and integrity of their systems. INSTALLATION NOTES: This ECO is a tar image containing replacement module(s) for sendmail and syslog.o (a module in libc.a). You will want to save the current versions of libc.a and sendmail before installing the new, ECO version(s). The ECO's are for 4.3, 4.3A, 4.4, and 4.5 MIPS versions and 4.3, 4.4 and 4.5 VAX versions. Once the files are extracted, there are the following directories available: 4.3/MIPS 4.3/VAX 4.3A/MIPS 4.4/MIPS 4.4/VAX 4.5/MIPS 4.5/VAX To install, cd to the appropriate directory, and do the following: cp /lib/libc.a /lib/libc.save.a ar dv /lib/libc.a syslog.o ar rv /lib/libc.a syslog.o ranlib /lib/libc.a mv /usr/lib/sendmail /usr/lib/sendmail.save cp sendmail /usr/lib/sendmail chown root /usr/lib/sendmail chmod 04755 /usr/lib/sendmail A reboot is required. Copyright Digital Equipment Corporation 1996. All Rights reserved. This software is proprietary to and embodies the confidential technology of Digital Equipment Corporation. Possession, use, or copying of this software and media is authorized only pursuant to a valid written license from Digital or an authorized sublicensor. This ECO has not been through an exhaustive field test process. Due to the experimental stage of this ECO/workaround, Digital makes no representations regarding its use or performance. The customer shall have the sole responsibility for adequate protection and back-up data used in conjunction with this ECO/workaround.