HP Tru64 UNIX and TruCluster Server Version 5.1B-5 Patch Summary and Release Notes (March 2009)

ManualsBrandsHP ManualsSoftwareTru64 UNIX 5.0

141

142

143

144

145

146

147

148

149

150

• Corrects a potential security vulnerability that may result in a Denial of Service

(DoS). This potential vulnerability may be in the form of local and remote security

domain risks.

(SSRT2384 rpc — Severity - High)

• Corrects a problem in os_mibs that results in the swap size and swap used values

for the host mib being reported as negative values on some systems.

• Introduces dumprmt.msg for remote dump/restore messages. This new message

catalog file is used in both rdump and rrestore programs.

• Corrects a problem in which Solaris rcp commands fail against Tru64 UNIX V5.1B

servers with the message "rcp: lost connection."

• Enables the tip command to log into the member-specific log file. The path for the

aculog file has been corrected and given appropriate permissions.

• Provides protection against a class of potential security vulnerabilities called buffer

overflows. Buffer overflows are sometimes exploited in an attempt to subvert the

function of a privileged program and possibly execute commands at the elevated

privileges if the program file has the setuid privilege. This patch allows a system

administrator to enable memory management protections that limit potential

buffer overflow vulnerabilities.

• Makes start up scripts in /sbin/init.d world readable.

• Provides support for monitoring the disk I/O rate using the pmgrd daemon.

• Adds support for monitoring AdvFS statistics using Performance Manager agent,

pmgrd.

• Fixes the mkcdsl command and updates the NIS start-up script to correctly start

NIS on the cluster alias.

• Resolves a problem in which the cluster interconnect route is inappropriately

advertised.

• Corrects a problem in which the nissetup command leaves /etc/group with an

incorrect mode of 600 after removing NIS.

• Corrects a problem in which NIS clients may fail to connect to non-Tru64 NIS

servers that only support the V2 NIS protocol.

• Corrects a problem that causes the FTP daemon to dump core when the client

sends an out of order ADAT command.

• Adds support the gated aliases-nexthop option, which provides a preference for

the selection of a next-hop address when multiple addresses exist on the interface.

• Corrects the /sbin/init.d/route script to ensure that routes get flushed properly.

• Corrects a problem in which if a static or loopback host route is added via a routing

socket, gated deletes the route upon a route aging time-out. In cluster alias

environment, this problem causes all TCP/UDP packets destined to the cluster

alias address to be mishandled.

146 Tru64 UNIX Patches