Patch-ID# 106248-49 Keywords: security i-deas8 hp openview node manager 6.1 buffer overflow socket Synopsis: OpenWindows 3.6_x86: Xsun patch Date: Nov/06/2003 Install Requirements: Additional instructions may be listed below Solaris Release: 2.6_x86 SunOS Release: 5.6_x86 Unbundled Product: OpenWindows Unbundled Release: 3.6_x86 Xref: This patch available for SPARC as patch 105633 Topic: Relevant Architectures: i386 BugId's fixed with this patch: 4060341 4066985 4067299 4092685 4095459 4102279 4102547 4108134 4109097 4115146 4124705 4136721 4145697 4149801 4156993 4157641 4161152 4162373 4165762 4166153 4166329 4168571 4178200 4183231 4184889 4185418 4192179 4194112 4207211 4208458 4209569 4231879 4232363 4233140 4233280 4234976 4248632 4248958 4255571 4262197 4270754 4291770 4292075 4296832 4310813 4311804 4314304 4320517 4323164 4332966 4332979 4333070 4338851 4345609 4346749 4379301 4383751 4396244 4408780 4434893 4483090 4546095 4661987 4680913 4703884 4710402 Changes incorporated in this version: 4680913 Patches accumulated and obsoleted by this patch: Patches which conflict with this patch: Patches required with this patch: Obsoleted by: Files included with this patch: /usr/openwin/bin/Xsun /usr/openwin/bin/xlock /usr/openwin/lib/X11/PostScript.VM /usr/openwin/lib/X11/fonts/Type1/fonts.dir /usr/openwin/lib/X11/fonts/Type1/fonts.scale /usr/openwin/lib/X11/fonts/Type1/outline/fonts.dir /usr/openwin/lib/X11/fonts/Type1/outline/fonts.scale /usr/openwin/lib/libFS.so.5 /usr/openwin/lib/libICE.so.6 /usr/openwin/lib/libX11.a /usr/openwin/lib/libX11.so.4 /usr/openwin/lib/libdga.so.1 /usr/openwin/lib/libp/libX11.a /usr/openwin/server/lib/libfont.so.1 /usr/openwin/server/lib/libmi.so.1 /usr/openwin/server/lib/libovl.so.1 /usr/openwin/server/lib/libserverdps.so.5 /usr/openwin/share/include/X11/ICE/ICElib.h /usr/openwin/share/include/X11/Xlib.h /usr/openwin/share/include/X11/Xlibint.h /usr/openwin/share/include/X11/Xresource.h /usr/openwin/share/include/X11/Xutil.h /usr/openwin/share/include/X11/extensions/XTest.h /usr/openwin/bin/fbconsole /usr/openwin/server/lib/libmhc.so.1 /usr/openwin/lib/libXmu.so.4 Problem Description: 4680913 DGA: Insecure creation of /tmp/wg0000* (from 106248-48) 4248632 xlock should accept Kerberos passwords (from 106248-47) 4710402 Memory leak in multibuffering extension 4703884 xlock: password buffers are too small (from 106248-46) 4546095 libX11 should not honor some environment variables in set*id programs 4661987 CAN-2002-0158: Xsun "-co" heap overflow (from 106248-45) 4483090 xlock buffer overflow (from 106248-44) 4194112 Change in Functionality of /etc/X*.hosts on Solaris 2.6 from Solaris 2.5.1 (from 106248-43) 4434893 Xsun crash SEGV at the end of ICEMSurf session (from 106248-42) 4396244 New xserver bug causes problems in Font2DTest (jdk demo). (reworked) 4296832 X header files have no-type declaration forbidden in ANSI C++ (from 106248-41) 4408780 DGA application crashes when run through ssh connection 4396244 New xserver bug causes problems in Font2DTest (jdk demo). (from 106248-40) 4102547 XOpenDisplay() hangs with shmem transport when XInitThreads() called (from 106248-39) 4379301 Buffer overflow in X socket transport code (from 106248-38) 4383751 Xsun dumps core with HP OpenView Node Manager 6.1 (from 106248-37) 4345609 Font server connection hangs (from 106248-36) 4323164 fbconsole should open /dev/console with O_NOCTTY (reworked) (from 106248-35) 4338851 I-DEAS8 hangs when atok8 is enab (from 106248-34) 4323164 fbconsole should open /dev/console with O_NOCTTY (from 106248-33) 4346749 Xsun crashes after reducing cameleo's display window and using a XRead (from 106248-32) 4332979 Xview app fails to load user-supplied font (reworked) (from 106248-31) 4185418 the X server should support more connections. (from 106248-30) 4332979 Xview app fails to load user-supplied font (from 106248-29) 4332966 security: Xsun has a buffer overflow 4333070 X setuid/setgid binary permissions need to be changed (from 106248-28) 4311804 Xserver loops in FindCachedFontPattern or crashes (from 106248-27) 4161152 Solaris-x86 - XDrawLines of wide lines with capstyle = CapProjecting 4310813 Xserver exits unexpectedly, when working with HyperHelp 5.1.2 from HyperMesh 3.1 (from 106248-26) 4320517 An unexpected window would appear in customer's specific application. (from 106248-25) 4185418 the X server should support more connections. 4314304 OpenGL regression with Catia due to Xsun patch (from 106248-24) 4291770 Xsun dumps core when it tries to push button on customer's application (from 106248-23) 4233280 Multi-threaded X application hangs in _XFlushInt on Solaris 2.6 s 4270754 OGL program and other Xlib programs hangs Xserver 4207211 Selection of UG menubar item causes X-Server to crash on the ZX 4292075 2.6 Xsun crash caused by memory leak after install patch 105633-14 (from 106248-22) 4233140 Xserver crashes using multibuffer extension (from 106248-21) 4255571 XDestroyIC() in C locale causes freed memory access (from 106248-20) 4262197 xdm remote login can fail when a machine has an interface with a (from 106248-19) 4231879 ON X86: X server crashes w/Thai font; (en_US.UTF-8 exits dtlogin also plays a role in fixing problems of the nature described in 4109097 (from 106248-18) 4109097 scratch of the fonts on the screen with Thai trueType font on X86 4232363 X clients never die after Xserver crash (from 106248-17) 4248958 OPENGL program shows mem leak in libdga (from 106248-16) 4092685 Xlib locks up when initialized for multithreading with Japanese Solaris installed 4234976 XOpenDisplay fails when passed a hostname:display.screen argument (from 106248-15) 4102279 Xsun crashes after fix of bug 4058716 has been integrated 4136721 x86 cc compiler with -O flag breaks libfont.so.1 (from 106248-14) 4209569 Xsun crashes when viewing postscript document (from 106248-13) 4162373 winlock at start of Pro/E R20 with XGL/ZX/openwindows causing graphics problems (from 106248-12) 4208458 Visibility change update fix (from 106248-11) 4184889 OWconfig keyword "ListOfInput" exits server erroneously 4178200 Missing visibility change events (from 106248-10) 4192179 cu has his own application that crashes the xserver. 4168571 Applix causes Xserver to crash with tcxFillBoxSolid (from 106248-09) 4145697 Linking Patran with pthreads library crashes XGL driver (from 106248-08) 4183231 XFontStruct max_bounds/min_bounds lbearing incorrect for Korean Type1/CID fonts (from 106248-07) 4067299 Xsun security issue 4149801 libfont security issue (from 106248-06) 4095459 A window is not repainted correctly when the window is restored. 4156993 Xsun crashes when accessing converted fonts 4157641 Multi-threaded App dying in libX11 when statically linked (reworked) (from 106248-05) 4166153 Xsun exits unexpectedly, when resizing a Qt widget demoapp and Netscape running (from 106248-04) (from 106248-03) (from 106248-02) (from 106248-01) 4157641 Ada multi-threaded app dies using static Xlib library 4066985 Unable to display monochrome EPS file correctly in dpsexec when expand double. 4060341 Xsun Type1 fonts render incorrectly 4108134 Fonts are not being displayed with 2.6 Xserver 4124705 Xserver crash on using PC File viewer to open WORD document 4115146 XFlush() hangs on multi CPU Ultra with Creator 3D 4166329 s2.6 patch 105633-04 broken in 105633-08, breaks s2.7_20 regarding OpenGL MT 4165762 fbconsole chewing up cpu time Patch Installation Instructions: -------------------------------- Refer to the Install.info file for instructions on using the generic 'installpatch' and 'backoutpatch' scripts provided with each patch. Any other special or non-generic installation instructions should be described below as special instructions. Special Install Instructions: ----------------------------- None. Special Note: ------------- As the USB keyboard related bugs, 4163790 and 4194588, are not related to the i386 platform, they would not be addressed in this patch. Bug 4323164 was addressed first in revision 34 and re-worked in revision 36. README -- Last modified date: Thursday, November 6, 2003