Patch-ID# 108377-39 Keywords: security openview socket ansi c++ Synopsis: OpenWindows 3.6.1_x86: Xsun Patch Date: Oct/03/2003 Install Requirements: Additional instructions may be listed below See Special Install Instructions Solaris Release: 7_x86 SunOS Release: 5.7_x86 Unbundled Product: OpenWindows Unbundled Release: 3.6.1_x86 Xref: This patch available for SPARC as 108376 Topic: Relevant Architectures: i386 BugId's fixed with this patch: 4102279 4102547 4109097 4136721 4154511 4157641 4178200 4183231 4184889 4185418 4194112 4198669 4206665 4207211 4208458 4209569 4215548 4220615 4220673 4223880 4225253 4225372 4225409 4226605 4226641 4229039 4229532 4231879 4232363 4233140 4233145 4233280 4234976 4237267 4237375 4239004 4244399 4245335 4247287 4248632 4248958 4250447 4254255 4255571 4257455 4258344 4259460 4261678 4261919 4262197 4262560 4263599 4263893 4263895 4264088 4264756 4266316 4267964 4270754 4280807 4280859 4283356 4283416 4287741 4291942 4292075 4296832 4297581 4297830 4299495 4306774 4308640 4308661 4308670 4310536 4310813 4311088 4311804 4312780 4312893 4314304 4317727 4318777 4323164 4330738 4332966 4332979 4333070 4338851 4345609 4346749 4355797 4356114 4356265 4366050 4368629 4369040 4371199 4379301 4383751 4395701 4396244 4408780 4421358 4423990 4434893 4441374 4477807 4483090 4499671 4524611 4546095 4625611 4627956 4642632 4644966 4661987 4680913 4703884 4710402 4726752 Changes incorporated in this version: 4680913 Patches accumulated and obsoleted by this patch: 107079-17 107649-09 108603-01 Patches which conflict with this patch: Patches required with this patch: Obsoleted by: Files included with this patch: /usr/openwin/bin/Xprt /usr/openwin/bin/Xsun /usr/openwin/bin/fbconsole /usr/openwin/bin/xauth /usr/openwin/bin/xdpyinfo /usr/openwin/bin/xlock /usr/openwin/bin/xset /usr/openwin/lib/X11/PostScript.VM /usr/openwin/lib/libFS.so.5 /usr/openwin/lib/libICE.so.6 /usr/openwin/lib/libX11.a /usr/openwin/lib/libX11.so.4 /usr/openwin/lib/libXext.a /usr/openwin/lib/libXext.so.0 /usr/openwin/lib/libXmu.so.4 /usr/openwin/lib/libXtst.a /usr/openwin/lib/libXtst.so.1 /usr/openwin/lib/libdga.so.1 /usr/openwin/lib/libdps.so.5 /usr/openwin/lib/libp/libX11.a /usr/openwin/lib/libp/libXext.a /usr/openwin/lib/libp/libXtst.a /usr/openwin/lib/libpsres.a /usr/openwin/lib/libz.so.1 /usr/openwin/server/etc/SecurityPolicy /usr/openwin/server/lib/libcfb.so.1 /usr/openwin/server/lib/libcfb16.so.1 /usr/openwin/server/lib/libcfb32.so.1 /usr/openwin/server/lib/libcfb4.so.1 /usr/openwin/server/lib/libfont.so.1 /usr/openwin/server/lib/libmhc.so.1 /usr/openwin/server/lib/libmi.so.1 /usr/openwin/server/lib/libovl.so.1 /usr/openwin/server/lib/libserverdga.so.1 /usr/openwin/server/lib/libserverdps.so.5 /usr/openwin/share/include/X11/ICE/ICElib.h /usr/openwin/share/include/X11/XKBlib.h /usr/openwin/share/include/X11/Xlib.h /usr/openwin/share/include/X11/Xlibint.h /usr/openwin/share/include/X11/Xos.h /usr/openwin/share/include/X11/Xosdefs.h /usr/openwin/share/include/X11/Xresource.h /usr/openwin/share/include/X11/Xutil.h /usr/openwin/share/include/X11/extensions/XKBgeom.h /usr/openwin/share/include/X11/extensions/XTest.h /usr/openwin/share/include/X11/extensions/Xcup.h /usr/openwin/share/include/X11/extensions/Xcupstr.h /usr/openwin/share/include/X11/extensions/dpms.h /usr/openwin/share/include/X11/extensions/dpmsstr.h /usr/openwin/share/include/X11/extensions/lbxbuf.h /usr/openwin/share/include/X11/extensions/lbxbufstr.h /usr/openwin/share/include/X11/extensions/lbxdeltastr.h /usr/openwin/share/include/X11/extensions/lbximage.h /usr/openwin/share/include/X11/extensions/lbxopts.h /usr/openwin/share/include/X11/extensions/lbxstr.h /usr/openwin/share/include/X11/extensions/lbxzlib.h /usr/openwin/share/include/X11/extensions/record.h /usr/openwin/share/include/X11/extensions/recordstr.h /usr/openwin/share/include/X11/extensions/security.h /usr/openwin/share/include/X11/extensions/securstr.h /usr/openwin/share/man/man1/Xprt.1 /usr/openwin/share/man/man1/Xserver.1 /usr/openwin/share/man/man1/xauth.1 /usr/openwin/share/man/man1/xset.1 /usr/openwin/share/man/man3/DPMSCapable.3 /usr/openwin/share/man/man3/DPMSDisable.3 /usr/openwin/share/man/man3/DPMSEnable.3 /usr/openwin/share/man/man3/DPMSForceLevel.3 /usr/openwin/share/man/man3/DPMSGetTimeouts.3 /usr/openwin/share/man/man3/DPMSGetVersion.3 /usr/openwin/share/man/man3/DPMSInfo.3 /usr/openwin/share/man/man3/DPMSQueryExtension.3 /usr/openwin/share/man/man3/DPMSSetTimeouts.3 /usr/openwin/share/man/man3/XcupGetReservedColormapEntries.3 /usr/openwin/share/man/man3/XcupQueryVersion.3 /usr/openwin/share/man/man3/XcupStoreColors.3 /usr/openwin/share/man/man3/Xevi.3 Problem Description: 4680913 DGA: Insecure creation of /tmp/wg0000* (from 108377-38) 4248632 xlock should accept Kerberos passwords (from 108377-37) 4726752 Xsun crash when attempt to view certain PS file on ja locale. (from 108377-36) 4710402 Memory leak in multibuffering extension 4703884 xlock: password buffers are too small (from 108377-35) 4642632 Xserver: rollover condition in XdmcpWakeupHandler() (from 108377-34) 4661987 CAN-2002-0158: Xsun "-co" heap overflow (from 108377-33) 4627956 Xsun going to an endless loop with Pro/E 2001 under Solaris 8 4644966 Security issue with zlib in SUNWxwplt (from 108377-32) 4625611 fix to Xos.h for 4421358 breaks 64-bit compiles (refixed) 4524611 Purify errors in X libraries (from 108377-31) 4625611 fix to Xos.h for 4421358 breaks 64-bit compiles (from 108377-30) 4441374 PGX32 does not launch Openwindows 3.6.2 in TRUECOLOR after Sol8 10/00 4546095 libX11 should not honor some environment variables in set*id programs (from 108377-29) 4499671 Bus Error in _XData32 when running a 64-bit application (back out the fix) (from 108377-28) 4499671 Bus Error in _XData32 when running a 64-bit application (from 108377-27) 4477807 64-bit dps client library non-functional (from 108377-26) 4483090 xlock buffer overflow (from 108377-25) 4194112 Change in Functionality of /etc/X*.hosts on Solaris 2.6 from Solaris 2.5.1 (from 108377-24) 4396244 New xserver bug causes problems in Font2DTest (jdk demo). (new fix) 4102547 XOpenDisplay() hangs with shmem transport when XInitThreads() called 4434893 Xsun crash SEGV at the end of ICEMSurf session (from 108377-23) 4408780 DGA application crashes when run through ssh connection (from 108377-22) 4421358 Xos.h causing compiles to fail when used with strings.h in S9 w/ Forte 4423990 X header files should not require -DSVR4 (from 108603-01) 4283416 Xos.h header file incorrectly defined for 64-bit Xlib applications (from 108377-21) 4396244 New xserver bug causes problems in Font2DTest (jdk demo). (from 108377-20) 4296832 X header files have no-type declaration forbidden in ANSI C++ 4395701 Error messages saying "unable to stat" appear on patch log files after install (from 108377-19) 4383751 Xsun dumps core with HP OpenView Node Manager 6.1 4379301 Buffer overflow in X socket transport code (from 108377-18) 4356114 Screen layout has non-readable centered dialog on multi-headed system (from 108377-17) 4345609 Font server connection hangs (from 108377-16) 4355797 Xprt always uses 100 dpi as its default resolution 4356265 PS driver of Xprt doesn't support transparent bitmap font printing (from 108377-15) 4368629 libICE.so.6 dumps core in IceListenForConnections on Solaris 7 with patch 108376 (from 108377-14) 4366050 CDE can't start on some X86 system after install patch 108377-11 4369040 XServer crashed on Solaris 7 x86 - the cause after intalling patch "108377-10" 4371199 Can't login to Windows after installing patch 108377-10 (from 108377-13) 4338851 I-DEAS8 hangs when atok8 is enab (from 108377-12) 4323164 fbconsole should open /dev/console with O_NOCTTY (from 108377-11) 4346749 Xsun crashes after reducing cameleo's display window and using a XReadScreen(3) XRead (from 108377-10) 4185418 the X server should support more connections (additional rework). (from 108377-09) 4332979 Xview app fails to load user-supplied font (from 108377-08) 4287741 Xprt can't start on zh locale 4291942 Xprt doesn't recognize -XpFile command line option 4297581 Xprt crash caused by memory leak 4297830 Xprt prints large scalable font at wrong position 4299495 XpQueryScreesns() returns wrong screens which cause application crash 4306774 general page comments for PS descriptions missing. 4308640 Xprt core dump when PCL mode is enabled 4308661 Overlapping occurs on PCL mode Xprt 4308670 duplex and landscape printing do not work with Xprt PostScript output 4311088 Xprint does not handle .pmf files defined in the printer fonts directory 4312780 wrong font after first page when using PostScript printer fonts 4312893 Xprt:PS driver can't handle pmf font properly 4318777 Xprt output has position problem in PS mode 4333070 X setuid/setgid binary permissions need to be changed 4185418 the X server should support more connections (reworked). (from 108377-07) 4185418 the X server should support more connections 4332966 security: Xsun has a buffer overflow 4330738 accessX - StickyKeys and MouseKeys does not work in X11R6.4 (from 108377-06) 4317727 Performance regression from Solaris 7 to Solaris 8 in Unigraphics 4310536 scaling the fonts larger results in invisible glyphs 4314304 OpenGL regression with Catia due to Xsun patch 4310813 Xserver exits unexpectedly, when working with HyperHelp 5.1.2 from HyperMesh 3.1 4233280 Multi-threaded X application hangs in _XFlushInt on Solaris 2.6 system. 4270754 OGL program and other Xlib programs hangs Xserver 4311804 Xserver loops in FindCachedFontPattern or crashes (from 108377-05) Skipped to sync up with sparc patch 108376-06 (from 108377-04) Skipped to sync up with sparc patch 108376-06 (from 108377-03) 4207211 Selection of UG menubar item causes X-Server to crash on the ZX 4292075 2.6 Xsun crash caused by memory leak after install patch 105633-14 (from 108377-02) 4215548 Xserver crashes on Solaris 7 4283356 dtlogin w/ # 107180-12 does not restore dtgreet after having restored the system (from 108377-01) Merged patches 107649-09 & 107079-17 4154511 XDrawArc does not draw rounded endpoints correctly w/cap_style=CapRound 4280807 XKB API man pages should all be in XKB patch 4280859 lint libraries should be in a separate patch Incorporated from previous patch revisions: (from 107649-08) 4262560 X server dumps core when exiting StarOffice 5.1 apps (from 107649-07) 4257455 X server can not be started on display :0... 4267964 X server patch should include libfont.so.1 4263893 Man pages needed for new DPMS APIs 4263895 Man pages needed for new CUP APIs 4264756 Non standard public header files are not installed properly in the proto directory 4264088 window outlines for moving/resizing with fvwm drawn incorrectly with xinerama 4266316 incorrect paths for new DPMS, xinerama APIs in prototype (from 107649-06) 4263599 XpConfig entries are commented out in prototype 4259460 Xserver crashes when colormaps created/deleted. 4261919 New headers not included in feature patches 4215548 Xserver crashes on Solaris 7 4233140 Xserver crash using Multibuffer extension 4247287 back to login prompt when trying to move a window 4239004 Selective keys on the numeric keyboard are not implemented 4250447 vsw and vsm 64 bit tests get SIGBUS after calling XOpenDisplay 4254255 XtAppInitialize fails with Bad Window request using 64 bit libX11 4255571 XDestroyIC() in C locale causes freed memory access 4244399 dpms description is missing in xset man page (from 107649-05) 4261678 prototype_com has incorrect permission set for lib and openwin 4258344 Man pages title and header changes (from 107649-03) 4245335 SecurityPolicy file should include more properties to make CDE tools work with xrx 4226605 xset fp+ tcp/host:7100 hangs X server 4237267 X-rx doesn't work (from 107649-02) 4225253 XGL hangs while calling XAllocColorCells in X11R6.4 4226641 Permissions on Xsun and other X clients wrong after s998u3_02 patches 4225372 xserver crashes when started thru dtlogin or olwm with +kb option 4220615 Xsun crashes in cmapMhcWindowAttachWid 4229532 XIL Xshm programs crash Xserver 4220673 Xsun dies running Java Swing apps (S8_18) 4237375 Xprt prints message "couldn't set locale correctly" 4229039 X server dies after quitting hotjava 4233145 "Compass" application on :0.1 kills Xsun 4225409 x11r6.4 feature upgrade (from 107079-17) 4262197 xdm remote login can fail when a machine has an interface with a (from 107079-16) 4223880 Xsun in S7 dumps core on certain URLs (from 107079-15) 4232363 X clients never die after Xserver crash (from 107079-14) 4231879 ON X86: X server crashes w/Thai font; (en_US.UTF-8 exits dtlogin also plays a role in bugs of the nature described in 4109097 (from 107079-13) 4109097 scratch of the fonts on the screen with Thai trueType font on X86 (from 107079-12) 4248958 OPENGL program shows mem leak in libdga (from 107079-11) 4234976 XOpenDisplay fails when passed a hostname:display.screen argument 4157641 Multi-threaded App dying in libX11 when statically linked (from 107079-10) 4206665 excessive delay in expose of windows/font refresh in Euro locales (from 107079-09) 4102279 Xsun crashes after fix of bug 4058716 has been integrated 4136721 x86 cc compiler with -O flag breaks libfont.so.1 (from 107079-08) 4209569 Xsun crashes when viewing postscript document (from 107079-07) 4198669 Java graphics can cause Solaris 7 dtsession termination (from 107079-06) 4102279 applications displayed on to Sun system displays from HP cause a Xserver crash or hang in sun. (reworked) (from 107079-05) 4102279 applications displayed on to Sun system displays from HP cause a Xserver crash or hang in sun. (from 107079-04) 4208458 Visibility change update fix (from 107079-02) 4184889 OWconfig keyword "ListOfInput" exits server erroneously 4178200 Missing visibility change events (from 107079-01) 4183231 XFontStruct max_bounds/min_bounds lbearing incorrect for Korean Type1/CID fonts Patch Installation Instructions: -------------------------------- For Solaris 2.0-2.6 releases, refer to the Install.info file and/or the README within the patch for instructions on using the generic 'installpatch' and 'backoutpatch' scripts provided with each patch. For Solaris 7 release, refer to the man pages for instructions on using 'patchadd' and 'patchrm' scripts provided with Solaris. Any other special or non-generic installation instructions should be described below as special instructions. The following example installs a patch to a standalone machine: example# patchadd /var/spool/patch/104945-03 The following example removes a patch from a standalone system: example# patchrm 104945-03 For additional examples please see the appropriate man pages. Special Install Instructions: ----------------------------- This patch upgrades the X server and the core libraries & clients to X11R6.4. To get the full X11R6.4 upgrade, you must either upgrade to Solaris 7 11/99 or install the following patches in addition to this patch: 107651: OpenWindows 3.6.1: Xprint extension patch 107653: OpenWindows 3.6.1: XKB extension patch 107655: OpenWindows 3.6.1: Xrx & LBX extensions patch 107657: OpenWindows 3.6.1: libXt patch 107659: OpenWindows 3.6.1: X11R6.4 API man pages patch 108379: OpenWindows 3.6.1: X11R6.4 lint libraries patch Special Note1: -------------- The sparc version of this patch contains the following bug fixes not included in this patch: As the USB keyboard related bugs (4204224, 4163790, 4213395, 4210522, 4214254, and 4194588) are not related to the i386 platform, they are not addressed in this patch. Since multiple monitors are not supported on i386 platform, the Xinerama bugs (4274454, 4263894, 4245948, 4246367, 4248067, 4237407, 4221500, 4222190, 4223242, and 4226459) are not addressed in this patch. A new option "-clients [128|1024]" is added to Xsun for setting maximum client connections. If Xsun starts without this option, the default maximum client connections are 1024. Special Note2: ------------- To get the complete fix for the bug 4379301, both 108376/108377 & 107654/107655 need to be installed. README -- Last modified date: Friday, October 3, 2003