Patch-ID# 107886-09 Keywords: security dtprintinfo reads $home/.printers but does not stop Synopsis: CDE 1.3_x86: dtprintinfo patch Date: Dec/03/2003 Install Requirements: None Solaris Release: 7_x86 SunOS Release: 5.7_x86 Unbundled Product: CDE Unbundled Release: 1.3_x86 Xref: This patch available for SPARC as 107885 Topic: Relevant Architectures: i386 BugId's fixed with this patch: 1189767 4007233 4049112 4104849 4139394 4160798 4191060 4191065 4213512 4215868 4217700 4221889 4228519 4228520 4231995 4233931 4234317 4237959 4241778 4243582 4243585 4325603 4380805 4788209 Changes incorporated in this version: 4788209 Patches accumulated and obsoleted by this patch: 107220-02 Patches which conflict with this patch: Patches required with this patch: 106935-03 or greater Obsoleted by: Files included with this patch: /usr/dt/appconfig/help/C/Printmgr.sdl /usr/dt/appconfig/icons/C/FpprntD.t.bm /usr/dt/appconfig/icons/C/FpprntD.t.pm /usr/dt/appconfig/icons/C/FpprntD.t_m.bm /usr/dt/share/man/man1/dtprintinfo.1 /usr/dt/bin/dtprintinfo Problem Description: 4788209 /usr/dt/bin/dtprintinfo HOME env overflow (from 107886-08) 4380805 dtprintinfo doesn't allow listing of system printers to be disabled (from 107886-07) 4325603 patch 107885-06 stops dtprintinf from reading $HOME/.printers file (from 107886-06) Patch revision generated to merge with patch 107220-02 (from 107220-02) 4139394 long command line argument causes SIGSEGV (from 107220-01) 4007233 Solaris CDE 1.0.2 dtprintinfo security vulnerability 4191060 large HOME causes buffer overflow in dtprintinfo 4191065 dtmkdir() potentially has a timing security hole (from 107886-04) 4237959 dtprininfo create an empty $HOME/.printers file if it is removed 4241778 If $HOME/.printers has either _default or _all, either one is not 4243582 Moved printers is not obvious 4243585 A duplicate (often the default printer) is left in the Available (from 107886-03) update Printmgr/TOC and Printmgr/Tasks (from 107886-01) 4104849 Print Manager popup menu not working properly 4049112 Descriptions are useless in the printer properties field. 4160798 print mgr menus sometimes get stuck 1189767 mouse button 1 & 3 have different menu 4213512 Adding user printers configuration support based on Sunsoft Print 4215868 Print Client project - GUI changes according HCI suggestion 4217700 Print Client project: more GUI improvement to 1998/151 4221889 dtprintinfo with -a option dumps core 4228520 The popup menu in the Print manager dual printer list should sta 4231995 status bar does not reflect changed printers list 4228519 dtprintinfo(1) needs to be updated to include features in Print Client 4233931 can't set a printer to default after a select all 4234317 The Select All is not being greyed out even when all printers are Patch Installation Instructions: -------------------------------- For Solaris 2.0-2.6 releases, refer to the Install.info file and/or the README within the patch for instructions on using the generic 'installpatch' and 'backoutpatch' scripts provided with each patch. For Solaris 7 release, refer to the man pages for instructions on using 'patchadd' and 'patchrm' scripts provided with Solaris. Any other special or non-generic installation instructions should be described below as special instructions. The following example installs a patch to a standalone machine: example# patchadd /var/spool/patch/104945-02 The following example removes a patch from a standalone system: example# patchrm 104945-02 For additional examples please see the appropriate man pages. Special Install Instructions: ----------------------------- None. README -- Last modified date: Wednesday, December 3, 2003