Patch-ID# 108364-02 Keywords: security SIGBUS remote login fails mount open Buffer Overflow Synopsis: CDE 1.0.2_x86: libDtSvc Patch Date: Dec/04/2001 Solaris Release: 2.4_x86 2.5.1_x86 2.5_x86 SunOS Release: 5.4_x86 5.5.1_x86 5.5_x86 Unbundled Product: CDE Unbundled Release: 1.0.2_x86 Xref: This patch available on SPARC as patch 108363 Topic: CDE 1.0.2_x86: libDtSvc patch NOTE: Refer to Special Install Instructions section for IMPORTANT specific information on this patch. Relevant Architectures: i386 BugId's fixed with this patch: 1226549 1242841 1256952 4057875 4095426 4099389 4101096 4118762 4527363 Changes incorporated in this version: 4527363 Patches accumulated and obsoleted by this patch: 103806-01 105717-07 Patches which conflict with this patch: Patches required with this patch: Obsoleted by: Files included with this patch: /usr/dt/lib/libDtSvc.so.1 Problem Description: 4527363 Buffer Overflow in CDE Subprocess Control Service (dtspcd) (from 105717-06) 1226549 DESCRIPTION `command`: "Too many open files" (from 105717-05) 1256952 mount storm typing /net, /home via .DtDirDataType (from 105717-03) 4118762 remote applications die, logging user out and not saving session (from 105717-02) 4099389 Patch 105669-01 breaks CDE. (from 105717-01) 4057875 SIGBUS and security hole if big $HOME. 4095426 Set Home Session in StyleManager causes core dumps. 4101096 Can't login using a host-and-screen-specific session directory. (from 103806-01) 1242841 action file is rejected if CWD field does not start with / Patch Installation Instructions: -------------------------------- Generic 'installpatch' and 'backoutpatch' scripts are provided within each patch package with instructions appended to this section. Other specific or unique installation instructions may also be necessary and should be described below. Special Install Instructions: ----------------------------- In order to put in a complete fix for bug: 1256952: mount storm typing /net, /home via .DtDirDataType Please install these additional patches: 104663-10 (or newer) for Solaris 2.5.1 107718-01 (or newer) for Solaris 2.5.1 README -- Last modified date: Tuesday, December 4, 2001