Security Pack NB_51_4S01_M.winnt.IA64.exe provides security-related fixes to the Veritas NetBackup (tm) Enterprise Server / Server 5.1 on Windows XP/2003 64 bit server and clients.
| Article:TECH46900 | | | Created: 2006-01-22 | | | Updated: 2006-01-30 | | | Article URL http://www.symantec.com/docs/TECH46900 |
Problem
Security Pack NB_51_4S01_M.winnt.IA64.exe provides security-related fixes to the Veritas NetBackup (tm) Enterprise Server / Server 5.1 on Windows XP/2003 64 bit server and clients.
Solution
NB 5.1GA Pack NB_51_4S01_M
README
March 23, 2006
================================================================================
** THIS SECURITY PACK MUST BE INSTALLED OVER THE NETBACKUP 5.1GA Pack
NB_51_4_M MAINTENANCE PACK. ANY ATTEMPT TO INSTALL THIS PACK OVER AN EARLIER
VERSION OF NETBACKUP 5.1 WILL RESULT IN A FAILED INSTALL.**
This pack provides fixes to the Veritas NetBackup Windows 64-bit server and
clients.
(Please refer to the PACK DEPENDENCIES and the RELATED DOCUMENTS sections of
this Readme for additional information that applies to this pack.)
================================================================================
=================
PACK DEPENDENCIES
=================
-- 5.1GA Pack NB_51_4_M must be installed prior to installing this
Security Pack.
I. DOWNLOAD INSTRUCTIONS
II. INSTALLATION INSTRUCTIONS
III. UNINSTALL INSTRUCTIONS
IV. DESCRIPTION OF PROBLEMS FIXED
Current Pack
=========================
I. DOWNLOAD INSTRUCTIONS
=========================
This is an update to NetBackup Enterprise Server/Server with the latest fixes
for Windows 64 bit NetBackup servers and clients.
Download instructions:
1) Download the NB_51_4S01_M.winnt.IA64_<6 digit number>.exe file
into a temporary directory.
where <6 digit number> is an internal tracking identifier
2) Extract the NB_51_4S01_M.winnt.IA64_<6 digit number>.exe
by double-clicking on it.
This will create a number of files that include:
README.NT
and
Setup.exe
=============================
II. INSTALLATION INSTRUCTIONS
=============================
NOTE: For Security Pack installation on Microsoft Cluster Environment:
1) Install this Security Pack on the inactive node(s) of the cluster
(follow the steps below)
2) Use the MSCS move group command to 'failover' the server to another node.
This should be done when the NetBackup system is quiet, i.e. no backups
or restores running.
3) Install this Security Pack on the newly inactive node of the cluster
4) (Optional) Use the MSCS move group command to 'failover' the server back
to the original node.
--------------------------------------------------------------------------------
Installation steps:
1) Close all NetBackup Windows.
Make sure the NetBackup system has no active backups, restores,
duplications, etc., running. If there are NetBackup activities in process,
the Security Pack will require a reboot if the file to update is busy.
If a database client is being used, such as Oracle, ensure that the
database services are stopped. Database services can be stopped via the
ControlPanel -> Services tool. Repeat this until all databases have been
stopped. These services must be restarted once the patch is successfully
installed.
2) Run Setup.exe (Double-click on the icon from File Manager or Explorer or run
it from the command prompt)
Setup.exe begins by stopping the appropriate NetBackup Services required for
the Security Pack installation. Next, it will install the necessary files
into their correct locations. Lastly, Setup.exe will restart the appropriate
NetBackup services.
3) Examine the <TEMP>.log file to ensure that no errors took
place during the installation.
4) Remove the temporary directory created in the download instructions.
Note: If you are installing the Security Pack using the silent install script,
please review the <TEMP>.log after the installation is finished,
a reboot maybe required to complete the installation of the Security Pack. A
search of the log for the key words "in use" will indicate which files were busy
during the installation.
===========================
III. UNINSTALL INSTRUCTIONS
===========================
**Important notice regarding un-installs on Windows**
Only the last pack installed on a Windows system can be un-installed.
1) Close all NetBackup Windows.
Make sure the NetBackup server has no active backups, restores,
duplications, etc., running. If there are NetBackup activities in process,
the Security Pack will not install if the file to update is busy.
If a database client is being used, such as Oracle, ensure that the
database services are stopped. Database services can be stopped via the
Control Panel -> Services tool. Repeat this until all databases have been
stopped. These services must be restarted once the pack is successfully
installed.
2) Go to Add/Remove programs dialog box and select correct Pack to be
uninstalled.
=================================
IV. DESCRIPTION OF PROBLEMS FIXED
=================================
The following are descriptions of the problems fixed. Please read the entire
document before installing.
A vulnerability has been confirmed in the NetBackup Volume Manager daemon.
Please refer to the Current Pack section for more information.
README Conventions:
Description
Describes a particular problem or feature contained in this pack.
** Description **
Describes a problem that can lead to potential data loss. Please
read these problem descriptions carefully.
Workaround
Any available workarounds to a problem are also listed. Workarounds
can be used INSTEAD of applying the patch, however, Symantec strongly
recommends the "best practice" of being at the latest patch level.
Additional Notes
Any additional information regarding these problems are included.
=============
Current pack
=============
================================================================================
Etrack Incident = ET538176 ET537661 ET537510 ET537536 ET537527 ET537519 ET537478
ET537556 ET537413 ET538161 ET542503 ET546475 ET546008 ET568450 ET568930 ET540333
ET536742
Description:
Multiple buffer overflow vulnerabilities have been identified in daemons
that run on Veritas NetBackup master, media, and client servers. An
attacker, if able to access a vulnerable Veritas NetBackup server and
successfully exploit these issues, could potentially execute arbitrary
code resulting in possible unauthorized and elevated privilege access to
the targeted system.
For more information about this vulnerability, refer to TechNote 281521 on
the Symantec Support Web site ( http://support.veritas.com/docs/281521).
================================================================================
================================================================================
** THIS SECURITY PACK MUST BE INSTALLED OVER THE NETBACKUP 5.1GA Pack
NB_51_4_M MAINTENANCE PACK. ANY ATTEMPT TO INSTALL THIS PACK OVER AN EARLIER
VERSION OF NETBACKUP 5.1 WILL RESULT IN A FAILED INSTALL.**
This pack provides fixes to the Veritas NetBackup Windows 64-bit server and
clients.
(Please refer to the PACK DEPENDENCIES and the RELATED DOCUMENTS sections of
this Readme for additional information that applies to this pack.)
================================================================================
=================
PACK DEPENDENCIES
=================
-- 5.1GA Pack NB_51_4_M must be installed prior to installing this
Security Pack.
I. DOWNLOAD INSTRUCTIONS
II. INSTALLATION INSTRUCTIONS
III. UNINSTALL INSTRUCTIONS
IV. DESCRIPTION OF PROBLEMS FIXED
Current Pack
=========================
I. DOWNLOAD INSTRUCTIONS
=========================
This is an update to NetBackup Enterprise Server/Server with the latest fixes
for Windows 64 bit NetBackup servers and clients.
Download instructions:
1) Download the NB_51_4S01_M.winnt.IA64_<6 digit number>.exe file
into a temporary directory.
where <6 digit number> is an internal tracking identifier
2) Extract the NB_51_4S01_M.winnt.IA64_<6 digit number>.exe
by double-clicking on it.
This will create a number of files that include:
README.NT
and
Setup.exe
=============================
II. INSTALLATION INSTRUCTIONS
=============================
NOTE: For Security Pack installation on Microsoft Cluster Environment:
1) Install this Security Pack on the inactive node(s) of the cluster
(follow the steps below)
2) Use the MSCS move group command to 'failover' the server to another node.
This should be done when the NetBackup system is quiet, i.e. no backups
or restores running.
3) Install this Security Pack on the newly inactive node of the cluster
4) (Optional) Use the MSCS move group command to 'failover' the server back
to the original node.
--------------------------------------------------------------------------------
Installation steps:
1) Close all NetBackup Windows.
Make sure the NetBackup system has no active backups, restores,
duplications, etc., running. If there are NetBackup activities in process,
the Security Pack will require a reboot if the file to update is busy.
If a database client is being used, such as Oracle, ensure that the
database services are stopped. Database services can be stopped via the
ControlPanel -> Services tool. Repeat this until all databases have been
stopped. These services must be restarted once the patch is successfully
installed.
2) Run Setup.exe (Double-click on the icon from File Manager or Explorer or run
it from the command prompt)
Setup.exe begins by stopping the appropriate NetBackup Services required for
the Security Pack installation. Next, it will install the necessary files
into their correct locations. Lastly, Setup.exe will restart the appropriate
NetBackup services.
3) Examine the <TEMP>.log file to ensure that no errors took
place during the installation.
4) Remove the temporary directory created in the download instructions.
Note: If you are installing the Security Pack using the silent install script,
please review the <TEMP>.log after the installation is finished,
a reboot maybe required to complete the installation of the Security Pack. A
search of the log for the key words "in use" will indicate which files were busy
during the installation.
===========================
III. UNINSTALL INSTRUCTIONS
===========================
**Important notice regarding un-installs on Windows**
Only the last pack installed on a Windows system can be un-installed.
1) Close all NetBackup Windows.
Make sure the NetBackup server has no active backups, restores,
duplications, etc., running. If there are NetBackup activities in process,
the Security Pack will not install if the file to update is busy.
If a database client is being used, such as Oracle, ensure that the
database services are stopped. Database services can be stopped via the
Control Panel -> Services tool. Repeat this until all databases have been
stopped. These services must be restarted once the pack is successfully
installed.
2) Go to Add/Remove programs dialog box and select correct Pack to be
uninstalled.
=================================
IV. DESCRIPTION OF PROBLEMS FIXED
=================================
The following are descriptions of the problems fixed. Please read the entire
document before installing.
A vulnerability has been confirmed in the NetBackup Volume Manager daemon.
Please refer to the Current Pack section for more information.
README Conventions:
Description
Describes a particular problem or feature contained in this pack.
** Description **
Describes a problem that can lead to potential data loss. Please
read these problem descriptions carefully.
Workaround
Any available workarounds to a problem are also listed. Workarounds
can be used INSTEAD of applying the patch, however, Symantec strongly
recommends the "best practice" of being at the latest patch level.
Additional Notes
Any additional information regarding these problems are included.
=============
Current pack
=============
================================================================================
Etrack Incident = ET538176 ET537661 ET537510 ET537536 ET537527 ET537519 ET537478
ET537556 ET537413 ET538161 ET542503 ET546475 ET546008 ET568450 ET568930 ET540333
ET536742
Description:
Multiple buffer overflow vulnerabilities have been identified in daemons
that run on Veritas NetBackup master, media, and client servers. An
attacker, if able to access a vulnerable Veritas NetBackup server and
successfully exploit these issues, could potentially execute arbitrary
code resulting in possible unauthorized and elevated privilege access to
the targeted system.
For more information about this vulnerability, refer to TechNote 281521 on
the Symantec Support Web site ( http://support.veritas.com/docs/281521).
================================================================================
Attachments
|
|
Related Articles
Legacy ID
282437
Article URL http://www.symantec.com/docs/TECH46900
Terms of use for this information are found in Legal Notices
Thank you.