HP Tru64 UNIX and TruCluster Server Version 5.1B-6 Patch Summary and Release Notes

ManualsBrandsHP ManualsSoftwareTru64 UNIX 5.1A

101

102

103

104

105

106

107

108

109

110

• Fixes a problem in the /etc/.mrg..protocols merge script that causes incorrect permissions

on the /etc/protocols file.

• Corrects the netstat and ifconfig commands so that when a MAC address is printed, it uses

2 digit hex octets with leading zeros.

• Corrects a potential security vulnerability that may result in a Denial of Service (DoS). This

potential vulnerability may be in the form of local and remote security domain risks.

(SSRT2384 rpc — Severity - High)

• Corrects a problem in os_mibs that results in the swap size and swap used values for the

host mib being reported as negative values on some systems.

• Introduces dumprmt.msg for remote dump/restore messages. This new message catalog

file is used in both rdump and rrestore programs.

• Corrects a problem in which Solaris rcp commands fail against Tru64 UNIX V5.1B servers

with the message "rcp: lost connection."

• Enables the tip command to log into the member-specific log file. The path for the aculog

file has been corrected and given appropriate permissions.

• Provides protection against a class of potential security vulnerabilities called buffer overflows.

Buffer overflows are sometimes exploited in an attempt to subvert the function of a privileged

program and possibly execute commands at the elevated privileges if the program file has

the setuid privilege. This patch allows a system administrator to enable memory management

protections that limit potential buffer overflow vulnerabilities.

• Makes start up scripts in /sbin/init.d world readable.

• Provides support for monitoring the disk I/O rate using the pmgrd daemon.

• Adds support for monitoring AdvFS statistics using Performance Manager agent, pmgrd.

• Fixes the mkcdsl command and updates the NIS start-up script to correctly start NIS on the

cluster alias.

• Resolves a problem in which the cluster interconnect route is inappropriately advertised.

• Corrects a problem in which the nissetup command leaves /etc/group with an incorrect

mode of 600 after removing NIS.

• Corrects a problem in which NIS clients may fail to connect to non-Tru64 NIS servers that

only support the V2 NIS protocol.

• Corrects a problem that causes the FTP daemon to dump core when the client sends an out

of order ADAT command.

• Adds support the gated aliases-nexthop option, which provides a preference for the selection

of a next-hop address when multiple addresses exist on the interface.

• Corrects the /sbin/init.d/route script to ensure that routes get flushed properly.

• Corrects a problem in which if a static or loopback host route is added via a routing socket,

gated deletes the route upon a route aging time-out. In cluster alias environment, this problem

causes all TCP/UDP packets destined to the cluster alias address to be mishandled.

• Adds support to the ifconfig application for the IPv6 command line argument

ip6reachabletime.

• Fixes a condition that causes an ftpd file transfer failure when a file exceeds 2 GB.

• Fixes an ftp client accounting error that occurs when transferring files larger than 4 GB.

• Fixes library dependencies to allow ifconfig to be run in single user mode.

• Corrects a problem that occurs when using MD5 authentication with Version 2 RIP.

• Corrects a condition that causes a hang of the IPv6 routing daemon.

• Resolves a problem with gated where adding a route may not succeed under certain

circumstances.

• Corrects a potential security vulnerability where, under certain circumstances, system

integrity may be compromised. This may occur when the gated daemon or gated control

utility (gdc) incorrectly access temporary files.

110 Tru64 UNIX Patches