Patch-ID# 104411-05 Keywords: security single user su sleep pam passwd log authentication Synopsis: SunOS 5.5_x86: /sbin/su, /usr/bin/su and /sbin/sulogin patch Date: Jun/19/2001 Solaris Release: 2.5_x86 SunOS Release: 5.5_x86 Unbundled Product: Unbundled Release: Xref: This patch available for SPARC as patch 104410 Topic: SunOS 5.5_x86: /sbin/su, /usr/bin/su and /sbin/sulogin patch NOTE: Refer to Special Install Instructions Section for IMPORTANT specific information on this patch. Relevant Architectures: i386 BugId's fixed with this patch: 1237257 1244971 4010565 4078468 4167968 4366956 4375449 Changes incorporated in this version: 4366956 4375449 Patches accumulated and obsoleted by this patch: Patches which conflict with this patch: Patches required with this patch: Obsoleted by: Files included with this patch: /sbin/su /sbin/sulogin /usr/bin/su Problem Description: 4366956 NLSPATH gettext introduces problems when used printf format specifier 4375449 dtmail crashes when calling catgets with NULL default message (from 104411-04) 4167968 su - can create corrupted environment - Backport of 1214794 (from 104411-03) 4078468 su.static and sulogin builds because of bug fix 4031930 (from 104411-02) 4010565 su can be interrupted by and not logged in /var/adm/log (from 104411-01) 1244971 solaris 2.3, patch 101318-77 has a bug, it can't handle `boot -s` correctly. 1237257 su change between 2.4 and 2.5 for user without password Patch Installation Instructions: -------------------------------- Refer to the Install.info file within the patch for instructions on using the generic 'installpatch' and 'backoutpatch' scripts provided with each patch. Any other special or non-generic installation instructions should be described below. Special Install Instructions: ----------------------------- NOTE 1: If this patch is installed without the pam security patch (103179-05 or higher), the su invalid password sleep time will be doubled. NOTE 2: To get the complete fix for 4366956 (NLSPATH gettext introduces problems when used printf format specifier), we recommend installing the following patches: 103262-08(or newer) /usr/lib/fs/ufs/ufsrestore patch 103188-49 (or newer) /usr/lib/libc.a /usr/lib/libc.so.1 /usr/lib/libp/libc.a /usr/lib/pics/libc_pic.a /usr/lib/libintl.a /usr/lib/libintl.so.1 /usr/sbin/in.telnetd /usr/sbin/static/rcp README -- Last modified date: Tuesday, June 19, 2001