HP Tru64 UNIX and TruCluster Server Version 5.1B-5 Patch Summary and Release Notes (March 2009)

Patch 28079.00

OSFSYSMAN540

• Corrects a potential security vulnerability that may lead to improper file access.

• Fixes a problem in /sbin/init.d/envmon which prevented the envmon daemon

from starting in Japanese locale.

• Fixes a problem in /sbin/init.d/smauth and /sbin/init.d/smsd which

prevented the smauth and smsd daemons from starting or restarting in Japanese

locale.

• Corrects a potential security vulnerability in dop where, under certain

circumstances, a user could potentially execute privileged code.

PATCH 28085.00

OSFX11540

• This fix addresses a X-Motif list widget problem while selecting an item from a

long list.

PATCH 28102.00

OSFCDSABASE540

• Fixes a problem with CDSA configuration where mod_install program can core

dump.

PATCH 28107.00

OSFLDPAUTH540

• Fixes ldapcd daemon to service the requests faster after failover from primary

Active Directory to Backup Active Directory.

• Fixes the locale problem in ldapcd daemon script.

PATCH 28113.00

OSFSSHBASE540

• Corrects a potential security vulnerability that has been identified with SSH running

on the HP Tru64 UNIX Operating System. Vulnerability could be exploited to

allow remote unauthorized access to sensitive information.

• Updates the SSH client to use protocol version 2.

• Fixes wildcard matching and globing in scp2/sftp2 ls -l command.

• A potential security vulnerability has been identified in the SFTP server (sftp-server)

component of SSH 3.2.0 and earlier running on HP Tru64 UNIX versions 5.1B-3

and 5.1B-4. The vulnerability could be exploited remotely to allow an authorized

remote attacker to execute arbitrary code or cause a denial of service (DoS).

3.4 Summary of Base Operating System Patches 91