Patch-ID# 113996-02
Keywords: security buffer-overflow utmp_update load_utmpx_struct() ut_syslen
Synopsis: SunOS 5.9_x86: utmp_update Patch
Date: May/28/2003


***************************************************************
Patch 113996-02 was re-instated on Nov 5, 2003.

Reason:
Patch 113996-04 has been withdrawn.
Bug id 4888508 was patched in sparc libc patch 114432-06 .
Patches 113996-04  does not fix 4888508. 

Recommendation:
Patches 113996-04 does NOT have to be backed out.  
It is equivelent to its previous revision.  To install the 
fix for bug 4888508 please install 114432-06, when available.

***************************************************************

Install Requirements: Install in Single User Mode                      
                      Reboot after installation                      
                      
Solaris Release: 9_x86

SunOS Release: 5.9_x86

Unbundled Product: 

Unbundled Release: 

Xref: This patch available for SPARC as patch 113718

Topic: SunOS 5.9_x86: utmp_update Patch

Relevant Architectures: i386

BugId's fixed with this patch: 4659277 4705891

Changes incorporated in this version: 4659277

Patches accumulated and obsoleted by this patch: 

Patches which conflict with this patch: 

Patches required with this patch: 

Obsoleted by: 

Files included with this patch: 

/usr/lib/utmp_update

Problem Description:

4659277 utmp_update handles ut_syslen incorrectly
 
(from 113996-01)
 
4705891 utmp_update.c: buffer-overflow bug in load_utmpx_struct()

Patch Installation Instructions:
--------------------------------
 
For Solaris 2.0-2.6 releases, refer to the Install.info file and/or
the README within the patch for instructions on using the generic
'installpatch' and 'backoutpatch' scripts provided with each patch.
 
For Solaris 7-9 releases, refer to the man pages for instructions
on using 'patchadd' and 'patchrm' scripts provided with Solaris.
Any other special or non-generic installation instructions should be
described below as special instructions.  The following example
installs a patch to a standalone machine:
 
       example# patchadd /var/spool/patch/104945-02
 
The following example removes a patch from a standalone system:
 
       example# patchrm 104945-02
 
For additional examples please see the appropriate man pages.

Special Install Instructions:
-----------------------------
 
None.

README -- Last modified date:  Wednesday, November 5, 2003