Solaris Bug Fixes Incorporated Into the Trusted Solaris 8 HW 7/03 Release

4248632 

Xserver: xlock command should use PAM

4352330, 4872634 

109147-25, 109148-25 

Large LD_PRELOAD values can cause SEGV of process

4680913 

Xserver: Insecure creation of /tmp/wg0000 files

4742992 

Shell escape from format command under RBAC

4729683 

modload() function should check before loading a module

4779410 

tirdwrrput() function makes unwarranted M_PROTO/M_PCPROTO assumptions

4783410 

kstat_read() function can be used to panic kernel

4790332 

poll() function does not validate the arguments passed

4803267 

114673-01, 114674-01 

/usr/sbin/wall command can be used to simulate root messages

Trusted Solaris patches 115366-01, 115367-10 

4807715 

ping command has potential buffer overflow

4830525 

Buffer overflow in nss_ldap.so.1 library

4839862 

110615-09, 110616-09 

Upgrade Trusted Solaris 8 sendmail program to version 8.11.7

4857394 

AUE_MODADDMAJ does not check user arguments

4860134 

rpc.nisd daemon security issue

4880232 

CDE: dtsession screen lock deferred until PAM conversation function is run

4924896 

Java 2 Runtime Environment, Standard Edition (JRE) J2SE: Provide Java versions 1.2.2_17a and 1.3.1_10 with updated CA certificates in cacerts file

4925761 

CERT CA-2003-25: Buffer underflow in sendmail program

4930117 

CDE: Large DTHELPUSERSEARCHPATH value can cause programs to segmentation fault