Patch-ID# 105670-10 Keywords: security coredump screen libDtSvc Buffer Overflow Subprocess Synopsis: CDE 1.2_x86: libDtSvc Patch Date: Dec/07/2001 Solaris Release: 2.6_x86 SunOS Release: 5.6_x86 Unbundled Product: CDE Unbundled Release: 1.2_x86 Xref: This patch available for SPARC as patch 105669 Topic: Relevant Architectures: i386 BugId's fixed with this patch: 1194724 1226549 4057875 4095426 4099389 4101096 4115959 4118762 4131911 4147169 4191060 4527363 Changes incorporated in this version: 4527363 Patches accumulated and obsoleted by this patch: Patches which conflict with this patch: Patches required with this patch: Obsoleted by: Files included with this patch: /usr/dt/lib/libDtSvc.so.1 Problem Description: 4527363 Buffer Overflow in CDE Subprocess Control Service (dtspcd) (from 105670-09) 4131911 libDtSvc not interpreting the set command correctly (from 105670-08) 1226549 DESCRIPTION `command`: "Too many open files" (from 105670-07) 1194724 Multiheaded CDE puts File Manager on wrong screen (from 105670-06) 4191060 Security bug fix (from 105670-05) 4115959 Action "localhost" does not work correctly (from 105670-04) 4147169 dtmail hangs on action invocation errors (from 105670-03) 4118762 remote applications die, logging user out and not saving session (from 105670-02) 4095426 Set Home Session in StyleManager causes core dumps. 4101096 Can't login using a host-and-screen-specific session directory. 4099389 105669-01 breaks CDE. (from 105670-01) 4057875 SIGBUS and security hole if big $HOME. Patch Installation Instructions: -------------------------------- Refer to the Install.info file for instructions on using the generic 'installpatch' and 'backoutpatch' scripts provided with each patch. Any other special or non-generic installation instructions should be described below as special instructions. Special Install Instructions: ----------------------------- None. README -- Last modified date: Friday, December 7, 2001