Patch-ID# 107181-31 Keywords: security leak system calls sdt_shell dtlogin null xsession read Synopsis: CDE 1.3_x86: dtlogin patch Date: Jul/28/2004 Install Requirements: See Special Install Instructions Solaris Release: 7_x86 SunOS Release: 5.7_x86 Unbundled Product: CDE Unbundled Release: 1.3_x86 Xref: This patch available for SPARC as 107180 Topic: Relevant Architectures: i386 BugId's fixed with this patch: 4072784 4170777 4178402 4178408 4178415 4178431 4179987 4184874 4185947 4189472 4190072 4190214 4198977 4201306 4205939 4210695 4213502 4225029 4225037 4233316 4236871 4237848 4239275 4240836 4242140 4245814 4246047 4250335 4256702 4259869 4262368 4267545 4273928 4274081 4275495 4276326 4293300 4293551 4299160 4302209 4346072 4449245 4668854 4840141 5022437 Changes incorporated in this version: 5022437 Patches accumulated and obsoleted by this patch: Patches which conflict with this patch: Patches required with this patch: 108377-18 or greater Obsoleted by: Files included with this patch: /usr/dt/bin/sdt_shell /usr/dt/config/C/Xresources /usr/dt/config/Xreset /usr/dt/config/Xsetup /usr/dt/config/Xstartup /usr/dt/bin/Xsession /usr/dt/bin/dtchooser /usr/dt/bin/dtlogin /usr/dt/config/Xinitrc.ow /usr/dt/config/Xsession.ow /usr/dt/config/images/Solaris.im8 /usr/dt/config/images/Solaris.im8g.Z /usr/dt/bin/dtgreet Problem Description: 5022437 dtlogin crash on bogus XDMCP request (from 107181-30) 4840141 /usr/dt/bin/Xsession makes invalid assumptions for hostname.domain (from 107181-29) 4668854 Solaris 8 Xsession do not read $shellprofile if DTSOURCEPROFILE TRUE (from 107181-28) 4449245 dtlogin assumes siginfo_t is not null in CatchUsr1 (from 107181-27) 4245814 Unnecessary system calls in sdt_shell 4233316 dtlogin has memory leak. (from 107181-26) 4274081 Non-root logins become and remain effective owner of /usr/openwin/bin/ (from 107181-25) 4293551 dtsession in xinerama mode should (optionally) not center the logout dialog box (from 107181-24) 4210695 Last Corona login steals /dev/kbd etc from real console (from 107181-23) 4346072 dtlogin hangs and crashes under high system load (from 107181-22) 4299160 blank X windows screen while using remote dtlogin (from 107181-21) 4179987 dtlogin has umask incorrect using mask 002 instead of 022 that you set (from 107181-20) 4072784 change "sdtdbcache" to "dtdbcache" (from 107181-19) 4262368 Simultaneous specification of remote host may not work (from 107181-18) 4293300 Password prompt is not displayed after user name is entered 4276326 Dtlogin patch 107180-12 won't allow connections to indirect CDE_login_host (from 107181-17) 4302209 dtlogin/dtgreet ignores *matte.x and *matte.y resources (from 107181-16) 4256702 CDE logins are disabled after creating /etc/nologin file (from 107181-15) 4185947 On PGX32 with depth 8+24, Solaris logo has colormap corruption (from 107181-14) This revision has no new bug fixes. It was created to BADPATCH rev -13 due to a problem found with the patch packaging. (from 107181-13) 4267545 SUNRAY: dtlogin - remote login -> "Choose host From List" does not work 4273928 Xserver for remote connection not killed on closedown 4275495 When remote login fails in ChooseHostFromList, users cannot go anywhere (from 107181-12) 4259869 Dtlogin does not present login screen after return from remote login (from 107181-11) 4237848 Action 'Return to Local Host' sometimes does not work fine in dtlogin (from 107181-10) 4246047 dtlogin gets into loop calling wait, which returns ECHILD (from 107181-09) 4250335 3/3, cde/login - dtlogin misses SIGHUPs and won't bring up all of the configured corona sessions (from 107181-08) 4240836 Dtlogin sometimes ignores all child death signals 4239275 Primary dtlogin process can be killed when SIGUP/SIGUSR1 collide 4242140 Sun Ray - login as root gets stuck in a loop, unable to enter a users name (from 107181-07) 4236871 In large configuration, all Corona units do not come up with BYPASS_LOGIN (from 107181-06) 4170777 "Start Over" can't be used. (from 107181-05) 4225029 dtlogin fails to protect for the receipt of SIGHUP at start-up 4225037 dtlogin sends unnecessary SIGHUPs to dtgreet processes. 4213502 X server can not open display, after coming back from remote window. (from 107181-04) 4198977 "LOGIN incorrect; please try again" message appears on top of dtlogin screen. (from 107181-03) 4205939 dtlogin sometimes fails to restart X servers (from 107181-02) 4201306 dtlogin crashes using valid Xaccess file with SIGSEGV (from 107181-01) 4178402 Xsession.ow doesn't check for /etc/dt/config/Xsession 4178408 Xinitrc.ow pauses for 15 seconds before starting desktop apps. 4178415 Xsession runs fbconsole program on non-console X sessions 4178431 dtlogin runs fbconsole program on non-console X Sessions 4184874 SIGHUP to dtlogin(1) kills essential system services 4189472 dtlogin(1) may fail to start Xservers when reconfigured 4190072 Error in SIGUP processing in dtlogin 4190214 dtlogin close down does not work correctly Patch Installation Instructions: -------------------------------- For Solaris 2.0-2.6 releases, refer to the Install.info file and/or the README within the patch for instructions on using the generic 'installpatch' and 'backoutpatch' scripts provided with each patch. For Solaris 7 & 8 release, refer to the man pages for instructions on using 'patchadd' and 'patchrm' scripts provided with Solaris. Any other special or non-generic installation instructions should be described below as special instructions. The following example installs a patch to a standalone machine: example# patchadd /var/spool/patch/104945-02 The following example removes a patch from a standalone system: example# patchrm 104945-02 For additional examples please see the appropriate man pages. Special Install Instructions: ----------------------------- To get the fix for any bug which affects /usr/dt/bin/dtlogin, all dtlogin processes including the parent dtlogin process must be stopped and restarted. Execute the following command as root: /usr/dt/config/dtlogin.rc stop sleep 60 /usr/dt/config/dtlogin.rc start README -- Last modified date: Thursday, July 29, 2004