Patch-ID# 105669-11 Keywords: security coredump open Buffer Overflow Subprocess Synopsis: CDE 1.2: libDtSvc Patch Date: Dec/07/2001 Solaris Release: 2.6 SunOS Release: 5.6 Unbundled Product: CDE Unbundled Release: 1.2 Xref: This patch available for x86 as patch 105670 Topic: Relevant Architectures: sparc BugId's fixed with this patch: 1194724 1226549 4057875 4095426 4099389 4101096 4115959 4118762 4131911 4147169 4191060 4281065 4527363 Changes incorporated in this version: 4527363 Patches accumulated and obsoleted by this patch: Patches which conflict with this patch: Patches required with this patch: Obsoleted by: Files included with this patch: /usr/dt/lib/libDtSvc.so.1 Problem Description: 4527363 Buffer Overflow in CDE Subprocess Control Service (dtspcd) (from 105669-10) 4281065 patch 105669-09 missing fix for 4147169 (from 105669-09) 4131911 libDtSvc not interpreting the set command correctly (from 105669-08) 1226549 DESCRIPTION `command`: "Too many open files" (from 105669-07) 1194724 Multiheaded CDE puts File Manager on wrong screen (from 105669-06) 4191060 Security bug fix (from 105669-05) 4115959 Action "localhost" does not work correctly (from 105669-04) 4147169 dtmail hangs on action invocation errors (from 105669-03) 4118762 remote applications die, logging user out and not saving session (from 105669-02) 4095426 Set Home Session in StyleManager causes core dumps. 4101096 Can't login using a host-and-screen-specific session directory. 4099389 105669-01 breaks CDE. (from 105669-01) 4057875 SIGBUS and security hole if big $HOME. Patch Installation Instructions: -------------------------------- Refer to the Install.info file for instructions on using the generic 'installpatch' and 'backoutpatch' scripts provided with each patch. Any other special or non-generic installation instructions should be described below as special instructions. Special Install Instructions: ----------------------------- None. README -- Last modified date: Friday, December 7, 2001