HP Tru64 UNIX and TruCluster Server Version 5.1B-5 Patch Summary and Release Notes (March 2009)
Patch 28079.00
OSFSYSMAN540
• Corrects a potential security vulnerability that may lead to improper file access.
• Fixes a problem in /sbin/init.d/envmon which prevented the envmon daemon
from starting in Japanese locale.
• Fixes a problem in /sbin/init.d/smauth and /sbin/init.d/smsd which
prevented the smauth and smsd daemons from starting or restarting in Japanese
locale.
• Corrects a potential security vulnerability in dop where, under certain
circumstances, a user could potentially execute privileged code.
PATCH 28085.00
OSFX11540
• This fix addresses a X-Motif list widget problem while selecting an item from a
long list.
PATCH 28102.00
OSFCDSABASE540
• Fixes a problem with CDSA configuration where mod_install program can core
dump.
PATCH 28107.00
OSFLDPAUTH540
• Fixes ldapcd daemon to service the requests faster after failover from primary
Active Directory to Backup Active Directory.
• Fixes the locale problem in ldapcd daemon script.
PATCH 28113.00
OSFSSHBASE540
• Corrects a potential security vulnerability that has been identified with SSH running
on the HP Tru64 UNIX Operating System. Vulnerability could be exploited to
allow remote unauthorized access to sensitive information.
• Updates the SSH client to use protocol version 2.
• Fixes wildcard matching and globing in scp2/sftp2 ls -l command.
• A potential security vulnerability has been identified in the SFTP server (sftp-server)
component of SSH 3.2.0 and earlier running on HP Tru64 UNIX versions 5.1B-3
and 5.1B-4. The vulnerability could be exploited remotely to allow an authorized
remote attacker to execute arbitrary code or cause a denial of service (DoS).
3.4 Summary of Base Operating System Patches 91