|
Patch 2849 : Objectserver security fix including fix for crash with graphics card : [IRIX 6.2]
INDEX
RELATIONS
RELEASE NOTES
1. Patch SG0002849 Release Note
This release note describes patch SG0002849 to IRIX 6.2.
Patch SG0002849 replaces patches SG0001503, and SG0001357.
1.1 Supported Hardware Platforms
This patch contains bug fixes for all platforms.
1.2 Supported Software Platforms
This patch contains bug fixes for objectserver (version
1232792120) on a system running IRIX 6.2. The software
cannot be installed on other configurations.
1.3 Bugs Fixed by Patch SG0002849
This patch contains fixes for the following bugs in IRIX
6.2. Bug numbers from Silicon Graphics bug tracking system
are included for reference.
Patch 2849:
Fixes:
Bug #559765-objectserver has a security hole that
allows unauthorized access.
Replaces and rolls up:
Patch 1503, which fixes:
Bug #381491-objectserver core dumps on a 3-pipe
Onyx
Replaces and rolls up:
Patch 1357, which is a rejected patch intended to
fix:
Bug #381491-objectserver core dumps on a 3-pipe
Onyx
1.4 Subsystems Included in Patch SG0002849
This patch release includes these subsystems:
o patchSG0002849.cadmin_man.cadmin
o patchSG0002849.cadmin_sw.dso
o patchSG0002849.cadmin_sw.objectserver
1.5 Installation Method
After installation is complete, rebooting the system is
recommended. Minimally, running these commands is required:
o /etc/init.d/cadmin stop
o /etc/init.d/cadmin start
1.6 Installation Instructions
Because you want to install only the patches for problems
you have encountered, patch software is not installed by
default. After reading the descriptions of the bugs fixed
in this patch (see Section 1.3), determine the patches that
meet your specific needs.
If, after reading Sections 1.1 and 1.2 of these release
notes, you are unsure whether your hardware and software
meet the requirements for installing a particular patch, run
inst. The inst program does not allow you to install
patches that are incompatible with your hardware or
software.
Patch software is installed like any other Silicon Graphics
software product. Follow the instructions in your Software
Installation Administrator's Guide to bring up the miniroot
form of the software installation tools.
Follow these steps to select a patch for installation:
1. At the Inst> prompt, type
install patchSGxxxxxxx
where xxxxxxx is the patch number.
2. Initiate the installation sequence. Type
Inst> go
3. You may find that two patches have been marked as
incompatible. (The installation tools reject an
installation request if an incompatibility is
detected.) If this occurs, you must deselect one of
the patches.
Inst> keep patchSGxxxxxxx
where xxxxxxx is the patch number.
4. After completing the installation process, exit the
inst program by typing
Inst> quit
1.7 Patch Removal Instructions
To remove a patch, use the versions remove command as you
would for any other software subsystem. The removal process
reinstates the original version of software unless you have
specifically removed the patch history from your system.
versions remove patchSGxxxxxxx
where xxxxxxx is the patch number.
To keep a patch but increase your disk space, use the
versions removehist command to remove the patch history.
versions removehist patchSGxxxxxxx
where xxxxxxx is the patch number.
1.8 Known Problems
This patch introduces some minor breakage of transferable
administrative privileges for non-root users.
For example, if privileged users other than root have been
added through the User Manager, attempts by an unprivileged
user to perform administrative tasks (such as adding or
removing user accounts) may fail with the message "Error:
cannot access the object" even though the unprivileged user
supplies a privileged user's name and password.
Administrative tasks can still be performed by logging in as
a privileged user, or by providing the root password.
Similarly, if an unprivileged user runs the System Manager,
chooses the "Change Privilege Level" item from the File
menu, and enters a privileged non-root user's name and
password, the System Manager will present the incorrect
message "You already had these administrator privileges";
subsequently, when performing administrative tasks, the user
will be asked for a privileged user's name and password,
which still will not allow the unprivileged user to perform
some tasks. Again, the administrative tasks can be
performed by logging in as a privileged user, or by
providing the root password.
INST SUBSYSTEM REQUIREMENTS No Requirements Information Available. INST SUBSYSTEM CHECKSUMS These checksums help to provide a 'signature' for the patch inst image which can be used to authenticate other inst images. You can obtain this kind of output by running sum -r on the image (from the command line): 58617 11 patch/README.patch.2849 12331 15 patchSG0002849.cadmin_man 25053 3 patchSG0002849 31363 2 patchSG0002849.idb INST SUBSYSTEM FILE LISTINGS The following lists the files which get installed from each subsystem in the patch:
DOWNLOAD PATCH
|
||||||||||||||||||||||||||||||||||||
Document Id: 20021117071309-IRIXPatch-1188
|
||||||||||||||||||||||||||||||||||||