Patch-ID# 112872-02
Keywords: security panic streams multiplexor I_LINK 4423730 priocntl sysinfo
Synopsis: Trusted Solaris 8 4/01: Kernel patch
Date: Apr/15/2003

Install Requirements: None                      
                      
Solaris Release: Trusted_Solaris_8_4/01

SunOS Release: N/A

Unbundled Product: 

Unbundled Release: 

Xref: 

Topic: Trusted Solaris 8 4/01: Kernel patch

Relevant Architectures: sparc

BugId's fixed with this patch: 4673336 4673342 4777632 4777862

Changes incorporated in this version: 4777632 4777862

Patches accumulated and obsoleted by this patch: 

Patches which conflict with this patch: 

Patches required with this patch: 

Obsoleted by: 

Files included with this patch: 

/kernel/genunix
/platform/sun4u/kernel/genunix
/platform/sun4u/kernel/sparcv9/genunix

Problem Description:

4777632 Port fix for 4708822 priocntl() system can load a user module
4777862 port fix for 4677620 security issue in sysinfo
 
(112872-01)
 
4673336 system panic on streams I_LINK processing for multiplexor drivers, from Solaris bug 4423730
4673342 mount syscall can panic machine as ordinary user from Solaris bug 4504341, 4519194

Patch Installation Instructions:
-------------------------------- 
Refer to the man pages for instructions on using the
generic 'patchadd' and 'patchrm' scripts.
Any other special or non-generic installation
instructions should be described below as special instructions.

Special Install Instructions:
----------------------------- 
Note 1:
Reboot after installing patch. 
 
Note 2:
 
The steps below assume the patch file has been placed
into the ADMIN_LOW subdirectory of /tmp (/tmp is a MLD)
and that the patch file label is configured to ADMIN_LOW.
Create a role that contains the Software Installation profile
(typically the admin role).  The patch file should be owned
by this role.  Keep in mind, after rebooting, contents in the
/tmp directory are removed; if saving the patch tarfile is
desired, select another MLD such as /var/tmp.
 
        1) Login as a user authorized to assume a role that
        contains the Software Installation profile; typically
        the admin role.  Assume that role.
 
        2) cd into /tmp and unzip the patch file.  A patch
        directory will be created by the unzip command.
 
        # cd /tmp
        # unzip <123456-01.zip>
 
        3) Install the patch by typing:
 
        # patchadd /tmp/<patch_dir>
 
Special Backout Instructions:
-----------------------------
 
 
        1) Login as a user authorized to assume a role that contains
        the Software Installation profile; typically the admin role.
        Assume that role.
 
        2) Backout patch by typing:
 
        # patchrm <patch-id>
 
        where <patch-id> is the patch number.

README -- Last modified date:  Tuesday, April 15, 2003