Patch 2090 : xlock security fix : [IRIX 6.3 6.2 5.3]
INDEX
RELATIONS
RELEASE NOTES
1. Patch SG0002090 Release Note This release note describes patch SG0002090 to IRIX 5.3, 6.2, and 6.3.1.1 Supported Hardware Platforms This patch contains bug fixes for all platforms.1.2 Supported Software Platforms This patch contains bug fixes for the X11 Execution Environment for IRIX 5.3 and IRIX 5.3 with XFS (version 1021572033), IRIX 5.3 for IMPACT (version 1022585736), IRIX 6.2 (version 1232792130), IRIX 6.2 with Indigo2 IMPACT 10000 (version 1233007720), and IRIX 6.3 including O2 R10000 (version 1253422531). The software cannot be installed on other configurations.1.3 Bugs Fixed by Patch SG0002090 This patch contains fixes for the following bugs in IRIX 5.3, 6.2, and 6.3. Bug numbers from Silicon Graphics bug tracking system are included for reference. o Internal buffers in xlock can be overflowed by user- modifiable values, allowing arbitrary data to be placed on the stack. Since xlock is setuid root, this might allow an unprivileged user to gain root access. (Bug #484517)1.4 Subsystems Included in Patch SG0002090 This patch release includes these subsystems: o patchSG0002090.x_eoe_sw.eoe1.5 Installation Instructions Because you want to install only the patches for problems you have encountered, patch software is not installed by default. After reading the descriptions of the bugs fixed in this patch (see Section 1.3), determine the patches that meet your specific needs. If, after reading Sections 1.1 and 1.2 of these release notes, you are unsure whether your hardware and software meet the requirements for installing a particular patch, run inst. The inst program does not allow you to install patches that are incompatible with your hardware or software. Patch software is installed like any other Silicon Graphics software product. Follow the instructions in your Software Installation Administrator's Guide to bring up the miniroot form of the software installation tools. Follow these steps to select a patch for installation: 1. At the Inst> prompt, type install patchSGxxxxxxx where xxxxxxx is the patch number. 2. Initiate the installation sequence. Type Inst> go 3. You may find that two patches have been marked as incompatible. (The installation tools reject an installation request if an incompatibility is detected.) If this occurs, you must deselect one of the patches. Inst> keep patchSGxxxxxxx where xxxxxxx is the patch number. 4. After completing the installation process, exit the inst program by typing Inst> quit1.6 Patch Removal Instructions To remove a patch, use the versions remove command as you would for any other software subsystem. The removal process reinstates the original version of software unless you have specifically removed the patch history from your system. versions remove patchSGxxxxxxx where xxxxxxx is the patch number. To keep a patch but increase your disk space, use the versions removehist command to remove the patch history. versions removehist patchSGxxxxxxx where xxxxxxx is the patch number.1.7 Known Problems INST SUBSYSTEM REQUIREMENTS No Requirements Information Available. INST SUBSYSTEM CHECKSUMS These checksums help to provide a 'signature' for the patch inst image which can be used to authenticate other inst images. You can obtain this kind of output by running sum -r on the image (from the command line): 49562 1 patchSG0002090 47573 1 patchSG0002090.idb 40887 114 patchSG0002090.x_eoe_sw INST SUBSYSTEM FILE LISTINGS The following lists the files which get installed from each subsystem in the patch:
DOWNLOAD PATCH
|
||||||||||||||||||||||||||||||||||||
Document Id: 20021117065321-IRIXPatch-1072
|