The Trusted Solaris 8 HW 7/03 release includes all product patches and bug fixes that were incorporated into the Solaris 8 HW 7/03 release. Use the showrev -p command to see the list of patches that are included in the release.
Additional bug fixes that are included in the Trusted Solaris 8 HW 7/03 release are listed in the following table. Some bug fixes are for software that is part of the Trusted Solaris release, such as CDE or the Solaris Management Console.
Table 1–1 Solaris Bug Fixes Incorporated Into the Trusted Solaris 8 HW 7/03 Release
Solaris Bug Number |
Solaris Patch ID, If Any |
Synopsis |
---|---|---|
4248632 |
|
Xserver: xlock command should use PAM |
4352330, 4872634 |
109147-25, 109148-25 |
Large LD_PRELOAD values can cause SEGV of process |
4680913 |
|
Xserver: Insecure creation of /tmp/wg0000 files |
4742992 |
|
Shell escape from format command under RBAC |
4729683 |
|
modload() function should check before loading a module |
4779410 |
|
tirdwrrput() function makes unwarranted M_PROTO/M_PCPROTO assumptions |
4783410 |
|
kstat_read() function can be used to panic kernel |
4790332 |
|
poll() function does not validate the arguments passed |
4803267 |
114673-01, 114674-01 |
/usr/sbin/wall command can be used to simulate root messages Trusted Solaris patches 115366-01, 115367-10 |
4807715 |
|
ping command has potential buffer overflow |
4830525 |
|
Buffer overflow in nss_ldap.so.1 library |
4839862 |
110615-09, 110616-09 |
Upgrade Trusted Solaris 8 sendmail program to version 8.11.7 |
4857394 |
|
AUE_MODADDMAJ does not check user arguments |
4860134 |
|
rpc.nisd daemon security issue |
4880232 |
|
CDE: dtsession screen lock deferred until PAM conversation function is run |
4924896 |
|
Java 2 Runtime Environment, Standard Edition (JRE) J2SE: Provide Java versions 1.2.2_17a and 1.3.1_10 with updated CA certificates in cacerts file |
4925761 |
|
CERT CA-2003-25: Buffer underflow in sendmail program |
4930117 |
|
CDE: Large DTHELPUSERSEARCHPATH value can cause programs to segmentation fault |