Patch-ID# 102711-02 Keywords: security ps_data ps buffer overflow Synopsis: SunOS 5.4: usr/bin/ps and usr/ucb/ps patch Date: Jul/11/97 Solaris Release: 2.4 SunOS Release: 5.4 Unbundled Product: Unbundled Release: Xref: This patch available for x86 as patch 102712 Topic: SunOS 5.4: usr/bin/ps and usr/ucb/ps patch BugId's fixed with this patch: 1208044 4053228 4057343 Changes incorporated in this version: 4053228 4057343 Relevant Architectures: sparc Patches accumulated and obsoleted by this patch: Patches which conflict with this patch: Patches required with this patch: Obsoleted by: Files included with this patch: /usr/bin/ps /usr/ucb/ps Problem Description: 4053228 buffer overflow in ps can lead to root access - exploit is public 4057343 /usr/ucb/ps -t option does not work on intel platform (from 102711-01) 1208044 Creation of /tmp/ps_data is security hole Patch Installation Instructions: -------------------------------- Refer to the Install.info file within the patch for instructions on using the generic 'installpatch' and 'backoutpatch' scripts provided with each patch. Any other special or non-generic installation instructions should be described below. Special Install Instructions: ----------------------------- None.