Patch-ID# 113083-01
Keywords: security libX11 environment variables xlock buffer overflow
Synopsis: Trusted Solaris 8 4/01: Xsun patch
Date: Sep/11/2002

Install Requirements: None                      
                      
Solaris Release: Trusted_Solaris_8_4/01

SunOS Release: N/A

Unbundled Product: 

Unbundled Release: 

Xref: 

Topic: Trusted Solaris 8 4/01: Xsun patch

Relevant Architectures: sparc

BugId's fixed with this patch: 4701212 4704255

Changes incorporated in this version: 4701212 4704255

Patches accumulated and obsoleted by this patch: 

Patches which conflict with this patch: 

Patches required with this patch: 

Obsoleted by: 

Files included with this patch: 

/usr/openwin/bin/xlock  
/usr/openwin/lib/libX11.so.4
/usr/openwin/lib/sparcv9/libX11.so.4

Problem Description:

4701212 libX11 should not honor environment variables in set*id programs 
4704255 xlock buffer overflow

Patch Installation Instructions:
-------------------------------- 
Refer to the man pages for instructions on using the
generic 'patchadd' and 'patchrm' scripts.
Any other special or non-generic installation
instructions should be described below as special instructions.

Special Install Instructions:
----------------------------- 
Note:
 
The steps below assume the patch file has been placed
into the ADMIN_LOW subdirectory of /tmp (/tmp is a MLD)
and that the patch file label is configured to ADMIN_LOW.
Create a role that contains the Software Installation profile
(typically the admin role).  The patch file should be owned
by this role.  Keep in mind, after rebooting, contents in the
/tmp directory are removed; if saving the patch tarfile is
desired, select another MLD such as /var/tmp.
 
        1) Login as a user authorized to assume a role that
        contains the Software Installation profile; typically
        the admin role.  Assume that role.
 
        2) cd into /tmp and unzip the patch file.  A patch
        directory will be created by the unzip command.
 
        # cd /tmp
        # unzip <123456-01.zip>
 
        3) Install the patch by typing:
 
        # patchadd /tmp/<patch_dir>
 
Note: 	The first time SUNWxwplx is patched, you will see this harmless
warning - it can be safely ignored:
 
 cp: cannot access /var/sadm/pkg/SUNWxwplx/install/tsolinfo
 cp: cannot access /var/sadm/pkg/SUNWxwplx/save/tsolinfo
 
 
Special Backout Instructions:
-----------------------------
 
        1) Login as a user authorized to assume a role that contains
        the Software Installation profile; typically the admin role.
        Assume that role.
 
        2) Backout patch by typing:
 
        # patchrm <patch-id>
 
        where <patch-id> is the patch number.

README -- Last modified date:  Wednesday, September 11, 2002