Patch-ID# 104410-05 Keywords: security single user su sleep pam passwd log authentication Synopsis: SunOS 5.5: /sbin/su, /usr/bin/su and /sbin/sulogin patch Date: Jun/19/2001 Solaris Release: 2.5 SunOS Release: 5.5 Unbundled Product: Unbundled Release: Xref: This patch available for x86 as patch 104411 Topic: SunOS 5.5: /sbin/su, /usr/bin/su and /sbin/sulogin patch NOTE: Refer to Special Install Instructions Section for IMPORTANT specific information on this patch. Relevant Architectures: sparc BugId's fixed with this patch: 1237257 1244971 4010565 4078468 4167968 4366956 4375449 Changes incorporated in this version: 4366956 4375449 Patches accumulated and obsoleted by this patch: Patches which conflict with this patch: Patches required with this patch: Obsoleted by: Files included with this patch: /sbin/su /sbin/sulogin /usr/bin/su Problem Description: 4366956 NLSPATH gettext introduces problems when used printf format specifier 4375449 dtmail crashes when calling catgets with NULL default message (from 104410-04) 4167968 su - can create corrupted environment - Backport of 1214794 (from 104410-03) 4078468 su.static and sulogin builds because of bug fix 4031930 (from 104410-02) 4010565 su can be interrupted by and not logged in /var/adm/log (from 104410-01) 1244971 solaris 2.3, patch 101318-77 has a bug, it can't handle `boot -s` correctly. 1237257 su change between 2.4 and 2.5 for user without password Patch Installation Instructions: -------------------------------- Refer to the Install.info file within the patch for instructions on using the generic 'installpatch' and 'backoutpatch' scripts provided with each patch. Any other special or non-generic installation instructions should be described below. Special Install Instructions: ----------------------------- NOTE 1: If this patch is installed without the pam security patch (103178-05 or newer), the su invalid password sleep time will be doubled. NOTE 2: To get the complete fix for 4366956 (NLSPATH gettext introduces problems when used printf format specifier), we recommend installing the following patches: 103187-49 (or newer) /usr/lib/libc.a patch /usr/lib/libc.so.1 /usr/lib/libintl.a /usr/lib/libintl.so.1 /usr/lib/libp/libc.a /usr/lib/pics/libc_pic.a /usr/sbin/in.telnetd /usr/sbin/static/rcp 103261-08 (or newer) /usr/lib/fs/ufs/ufsrestore patch README -- Last modified date: Tuesday, June 19, 2001