HP Tru64 UNIX and TruCluster Server Version 5.1B-5 Patch Summary and Release Notes (March 2009)
Patch 27070.00
OSFRCS540
• Corrects a potential security vulnerability where, under certain circumstances,
system integrity may be compromised. This may be in the form of improper file
or privilege management.
Patch 27071.00
OSFRIS540
• Corrects a joind failover problem and an extracted RIS area issue.
Patch 27072.00
OSFSCCS540
• Corrects a potential security vulnerability where, under certain circumstances,
system integrity may be compromised. This may be in the form of improper file
or privilege management.
• Provides protection against a class of potential security vulnerabilities called buffer
overflows. Buffer overflows are sometimes exploited in an attempt to subvert the
function of a privileged program and possibly execute commands at the elevated
privileges if the program file has the setuid privilege. This patch allows a system
administrator to enable memory management protections that limit potential
buffer overflow vulnerabilities.
Patch 27073.00
OSFSDE540
• Fixes various problems in the dbx and object file tools: dbx, ostrip, strip, mcs, dis,
cord, file, and stdump.
• Fixes the way the spike code optimization tool handles -arch and -tune options.
Using these options with previous versions of spike resulted in unproductive error
messages and/or system crashes.
• Fixes a fatal assertion error reported by pixie, hiprof, third spike, cord, uprofile
and odump object file tools for some executables linked at optimization level 2
(-O2) or greater.
• Fixes an internal error with the /usr/bin/spike optimization command.
• Modifies the cflow utility to store its temporary files in a temporary directory
created using the /usr/bin/mktemp utility. If cflow cannot create a temporary
directory it terminates with an exit value of 1.
• Fixes a fatal error in /usr/bin/spike.
• Fixes a problem in which the prof -pixie -testcoverage <exe <exe.Counts sometimes
reports invalid source line number ranges.
188 Tru64 UNIX Patches