Networking
NFS traffic related panic in tcl_open() --
The system gets many "Out of stream" messages in /var/adm/log/osmlog and it goes into panic state after some time. This problem has been resolved.
(ID: 530251:4 ESC: erg712707)
ndsample package should be updated to work on Legend --
Updated ndsample package to be able to build drivers on OSR6 and UW7. Fixed a make failure bug in this update.
(ID: 531687:1)
tcp timers can delay other critical activity --
In a system with a high connect/disconnect rate, 2msl timers, zombie timers, etc. can take significant amount of time to process and clean up the connection. This has the potential of starving/delaying other non-tcp and tcp timers as well as STREAM activity. This problem has been resolved.
(ID: 532371:3)
MTU is not set correctly in response to an ICMP Error - Fragmentation Needed --
This problem has been resolved.
(ID: 529427:4 ESC: erg712617)
Continue socket compatibility work --
Improved compatibility by including support for inet_net_pton, inet_net_ntop, inet_neta, inet_cidr_pton, inet_cidr_ntop interfaces to libnsl.
(ID: 533218:1)
rpcbind errors on startup - rpcbind: Could not find any loopback transport. Exiting --
This problem has been resolved.
(ID: 532689:1)
"scoadmin license" fails when dhcp is configured --
This problem has been resolved.
(ID: 533310:1)
"mkdev cf" does not remove a smart host --
This problem has been resolved.
(ID: 532370:2)
IMAP and POP clients garble undeleted mail on OSR600 mailserver --
popper fails to account for mailx separator when attempting to ensure that the 'From ' line precedes the X-UIDL: line it adds, and as a consequence writes mailboxes in which the From line is no longer the first line of messages. mailx reacts very badly to this corruption, and further corrupts the mailbox. Corrected the mailbox writing.
(ID: 532730:1)
"mkdev cf" does not populate sendmail.cf or local-host-names with alternate hostname information --
This problem has been resolved.
(ID: 533128:2)
mkdev cf masquerading option "allmasquerade" is questionable and causes problems --
Fixed This problem has been resolved.
(ID: 533129:2)
mkdev cf does not update /usr/mmdf/mmdftailor MLNAME variable for hostname --
This problem has been resolved.
(ID: 533130:2)
sendmail is using KERN logging instead of MAIL logging fills syslog even after editing syslog.conf --
syslogd was reading from /dev/osm for messages and assuming that they are all OS messages. It now reads from /dev/log and correctly sorts facilities and priorities. It does, however, no longer log boot time messages.
(ID: 533267:1, 533267:2)
sendmail expects the "aliases" file in /var/spool/mqueue --
If one doesn't select NIS support, the NISDOMAIN was set to null causing the mc file to contain the bogus definition of ALIAS_FILE to null. This problem has been resolved.
(ID: 533456:1)
svc_start: ss_accept 4 warning in syslog --
Don't print the warning for EINTR (normal case).
(ID: 532163:1)
Errors indicated when Installing and Verifying an anonymous Home Directory --
Bogus entries removed from script.
(ID: 532669:1)
Saving a Home Directory Report causes the FTP manager to die, and the log is not saved. --
This problem has been resolved.
(ID: 532670:1)
nfs start can be run multiple times --
Added code to 'start' case to check if any NFS services are already running.
(ID: 532222:1)
Lc: exportfs fails with /etc/dfs/dfstab in some usages. --
This occurs with any usage of the -d option to exportfs, where there is whitespace in the argument to -d. The shell processing done in the exportfs script consumes a backslash preceding double quote characters in the /etc/dfs/dfstab entries before the command line entries (i.e. calls to the share command) are executed. The problem is resolved within exportfs by inserting a backslash character before the double quote character.
(ID: 532085:2)
Need LFS aware ftpd for legend --
The ftpd daemon and ftp client can now handle files larger than 2GB in size.
(ID: 533392:1)
TCP send(): When tcpsend() blocks for any condition, it returns EAGAIN instead of EWOULDBLOCK --
The problem was caused by the mapping of EWOULDBLOCK to EAGAIN in the SVR5 kernel. For OSR5 applications this is wrong and needs to be mapped to OEWOULDBLOCK. Since EAGAIN is expected for other system calls, the fix is for SYS_socksys system call: map the EAGAIN return code to OEWOULDBLOCK.
(ID: 533307:1)
ttcp(ADM) command does not work on OpenServer 6 --
Properly handle the sockaddr of AF_UNSPEC family when the socket was created with AF_INET. Also, set the ss_listen_backlog tunable parameter to 1 before issuing the ttcp command.
(ID: 533025:1)
mkdev cf results in error when uucp connection specified --
Fixed This problem has been resolved.
(ID: 532600:2)
NFS daemon messages appear in syslog with an extraneous date-stamp. --
This problem has been resolved.
(ID: 532121:1)
netconfig does not properly manage /etc/net/ti*/hosts files --
This problem has been resolved.
(ID: 532878:1)
netconfig: changing one field of the IP address changes the netmask & broadcast --
This problem has been resolved.
(ID: 532135:1)
netconfig: In character mode: Number Key Enter behaves differently than keyboard enter. --
Problem has been fixed.
(ID: 532380:1)
Once NIS is set up, the useradd command fails --
Both useradd and usermod now use the default HOME_DIR from /etc/default/accounts to create a home directory if a -d value is not specified with -m.
(ID: 533358:1)
/etc/mkfilters doesn't generate a valid filter for ipf to use --
This problem has been resolved.
(ID: 532361:1)
Operating System
Deliver AMD Dual Core Support --
AMD multiple core processors are supported.
(ID: 532956:1)
Display PCI slot numbers correctly on PCI BIOSes revisions 2.3 and higher. --
Fixed PCI driver to report slot numbers on systems with 2.2+ compliant PCI BIOS.
(ID: 533287:1)
Xenix emulator can't fully handle locking(S) calls --
Added code to check for EBADF, and in this case change to a read-lock and retry the operation.
(ID: 530097:1)
limits need raising --
The default for FLCKREC (maximum number of lock table entries) was raised to 16,000.
(ID: 532885:1)
PANIC: DBLFLT exception --
A panic of the following type may be observed while running Release 5 network applications that use ioctl commands specific to Release 5:
PANIC: DBLFLT exception; registers saved in TSS 0xFFFF5AF0
...Observed cases so far have been provoked by the SIOCGIFCONF ioctl. This problem has been resolved.
(ID: 533228:1, 533228:2)
Update French and German message catalogs.
(ID: 533311)
Fix OSR5 application compatibility problem with old style socket addresses. --
A reported OSR5 application failure was found to be caused by TCP/IP code in the kernel that was incompatible with old style socket addresses passed from OSR5 applications. The socket address structure changed from OSR5 to OSR6, with the 16-bit family field used in the OSR5 socket address replaced by eight-bit length and eight-bit family fields. The problem was fixed by a minor modification to the kernel TCP module.
(ID: 533449:1)
Function keys and arrow keys stop working with ASCII/english_us/ps.ibm.usa --
ASCII is no longer available as a codeset. Function/arrow keys have been corrected in remaining keyboard files.
(ID: 532879:1)
Cannot enter OSR5.0.5 in license manager --
This problem has been resolved.
(ID: 531320:1)
brand accepts an SMP license data-entry error which PMD later rejects --
This problem has been resolved.
(ID: 533111:1)
Need pmd functionality to query number of licensed CPUs, Users, and Memory ceiling --
Added the following options to the brand(ADM) command:
-c returns CPU count
-m returns memory licensed
-O return OS serial number
Note that brand already supports these options:
-t total number of licensed users
-u number of user licenses in use
(ID: 532756:1)
Need ATI Radeon video driver with RN50E chipset support --
Upgraded to X.Org 6.9.0.
(ID: 532772:1 ESC: erg712887)
Line drawing font for right hand top corner is not right on console --
This problem has been resolved.
(ID: 532659:1)
Incompatible format/content of /etc/default/codeset. --
The interpretation/use of /etc/default/codeset has been changed to the Release 5 behavior. The first line of /etc/default/codeset is the internal/system codeset, and the second line is the console codeset.
(ID: 532737:1)
Default term types need changing from at386-ie to ansi --
Default TERM settings for new users and the console have been changed from at386-ie to ansi. Most applications will not notice this change, except for those that were hard-coded with escape sequences or function key strings instead of using terminfo. Applications that use international characters, such as accents and umlauts, should work better. Applications hard-coded to use an at396-ie console, may want to switch back to at386-ie. To get at386-ie back, use the scoadmin international settings manager to change the console codeset to one of the ISO8859 code pages -- ISO8859-15 or ISO8859-1 (western Europe, with and without the Euro character). The console terminal type will change automatically.
(ID: 533318:1, 533434:1)
Minor cosmetic error in custom and scoadmin menus in CHARM mode --
Console codeset was IBM850; term type was ansi and should have been set to ansi-850. This problem is fixed.
(ID: 533440:1)
Device database is in inconsistent state which is not allowing emergency recovery CD creation --
This problem has been resolved.
(ID: 533125:1)
-x option for /bin/sh does not work on OSR6 --
This problem has been resolved.
(ID: 533127:1)
Cannot use the Modem serial ports for dialin and dialout --
Streams devices do not allow multiple entry into device open, so the traditional way of allowing dialout access to devices enabled for dialin does not work. To circumvent this, do a non-blocking open on device, and then wait for DCD to be asserted.
(ID: 533149:1)
Porting of VxVM/ODM on OSR6 --
The Veritas Volume Manager is ported to OSR6.
(ID: 532973:1)
Printing
(Also see the Security section for security updates to CUPS.)
USB printing errors after every job --
The root of the problem is the mishandling of an incoming buffer by the GIO Mapper. This problem has been fixed.
(ID: 532127:1)
Not able to print using lpr to an LPD print server --
This problem has been fixed.
(ID: 532792:1 ESC: erg712893)
NetWare support removed from the Printer Manager --
(ID: 532886:1)
OpenServer 6 remote printer configuration incompatible with OpenServer 5 --
Changed osaserver path to /etc/sysadm.d/bin/osaserver in libsysadm (the Release 5 path).
(ID: 532953:1)
SCOAdmin
Pseudo fs, memfs, and nfs not managed properly with the GUI --
Added code to filesystemGUI to cause fsck option to be stippled in its menu if the selected filesystem is known to be unfsckable. Extensively modified filesystemGUI, as well as made changes to filesystemOsa and fsUtils.tlib in order to support memfs (ramdisk) filesystems. New screens were added and a special fstyp was created to provide the manager with the correct response when the system's fstyp returns "Unknown_fstyp" on memfs filesystems.
(ID: 532007:1)
Filesystem Manager's "Check and Repair" option fails and refuses to respond afterwards --
Exception code added to prevent display, and therefore operations on, pseudo filesystems.
(ID: 532467:1)
NetWare support needs to be removed from Filesystem manager --
Removed NetWare support.
(ID: 532987:1)
Filesystem Manager errors when detecting DOSFS during mount configuration --
Changed tests & actions for DOS to work for DOSFS. Also fixed a bug that caused the manager to fail when administering DOS filesystems due to use of utilities (sfsys and mfsys) that are not available in OpenServer 6. (They were OpenServer 5 link kit utilities that therefore have no relevance in OpenServer 6.)
(ID: 533140:1)
Filesystem mgr displays many duplicate labels in character mode; X mode looks fine. --
Deleted apparently excess label declarations
(ID: 532334:1)
Security issue while installing legend with security level as 'High' --
The SCOadmin Account Manager now enforces minimum password length specifications as established in /etc/default/passwd with the PASSLENGTH setting.
(ID: 532048:1)
International settings manager has illegible text --
This problem has been resolved.
(ID: 532193:1)
Possibly bogus error message when changing account distribution to NIS in scoadmin. --
pw_id_map was not being updated when the Account Manager changed an account from being local to being NIS distributed. This has been fixed by adding a rsynch retry for pw_id_map to find_passwd_line in libprot's pwconv.
(ID: 532450:1)
Using scoadmin to change account distribution from NIS to local looks broken. --
Created a new function to delete accounts from passwd.yp when they are changed from being distributed to local only.
(ID: 532451:1)
Remove AFPS-related code from the account manager. --
The fix enables Samba's /usr/bin/net to exist on the system without impacting the SCO Admin Account Manager.
(ID: 532545:1)
The mkuser scripts install default login files with bad termtype specified --
Changed the default TERM settings in all the default environment setup files for the various shells to be at386-ie.
(ID: 532586:1)
The Account Manager doesn't play well with external useradd processes. --
Extensive modifications to the Account Manager were made to cause it to be more aggressive about refreshing its cached data, and its displays. Other display problems were also fixed.
(ID: 532934:1)
Account Mgr & useradd sometimes fail due to treating $s in account names as variable references. --
The userOsa, accountGUI, useradd, and usermod were all updated to allow a '$' as the last character in an account name, but only as the last character. Previous work had made '$' a permitted character, but had not completely excluded it from occurring anywhere in the account name.
(ID: 533250:1)
SCOadmin System Tuner needed. --
New graphical tool for adjusting kernel parameters.
(ID: 532676:1)
The vxva graphical interface for ODM is needed. --
The Online Data Manager's Visual Administrator graphical interface is now available.
(ID: 533245:1)
Localized SCOadm msgs are missing --
The main C library will now understand all "X/Open style" message catalog files produced by OpenServer 5 mkcatdefs as well as all those produced by SVR5's gencat. It is still up to applications where they install and thus locate their respective message catalog files.
(ID: 532671:1)
"netcfg" has node name problems with multiple NICS --
These problems have been resolved.
(ID: 532511:1)
Modification of Network Protocol is not possible. --
Permissions on /opt/K/SCO/tcp/6.0.0Ni/usr/lib/netcfg/bin/tcp.BE changed from 0444 to 0755. The file must be executable.
(ID: 533457:1)
View Protocol configuration in Network Configuration manager does not kick off --
Permissions on /opt/K/SCO/tcp/6.0.0Ni/usr/lib/netcfg/bin/tcp.BE changed from 0444 to 0755. The file must be executable.
(ID: 533458:1)
Command 'scoadmin hot' generates error if system was rebooted with Hot-plug Manager still running. --
Added lock file processing to augment existing pipe check. The system is not able to clean up (remove) the pipe file if it gets shut down abruptly.
(ID: 533053:1)
When the system time is changed, cron should probably be restarted --
The System Time Manager is updated to restart cron when the time is changed.
(ID: 532750:1)
The useradd command adds a user even if the home directory cannot be created --
If -m is supplied on the command line, check to see if the parent of the desired home directory exists before producing any changes on the system.
(ID: 531294:1, 531294:2)
The useradd command no longer assumes a default directory --
Change to useradd, so that if useradd is invoked as "useradd -m username", it assumes that the home directory is /u/username and creates it.
(ID: 533436:1)
Security
SECURITY: CUPS Denial of Service Vulnerability --
[SCOSA-2005.51] A remote user can cause the CUPS service to hang and consume all available CPU resources.
(ID: 533150:3)
SECURITY: Lynx Remote Buffer Overflow --
[SCOSA-2006.7.1] Lynx has been updated to version 2.8.5rel.5 to resolve the following:
A vulnerability in Lynx can be exploited by malicious people to compromise a user's system.
The vulnerability is caused by a boundary error in the "HTrjis()" function's handling of article headers sent from NNTP (Network News Transfer Protocol) servers. This can be exploited to cause a stack-based buffer overflow (e.g. by tricking a user into visiting a malicious web site which redirects to a malicious NNTP server via the "nntp:" URI handler).
Successful exploitation allows execution of arbitrary code.
(ID: 533159:4)
SECURITY: Lynx Command Injection Vulnerability --
[SCOSA-2006.7.1] Lynx has been updated to version 2.8.5rel.5 to resolve the following:
Remote exploitation of a command injection vulnerability could allow attackers to execute arbitrary commands with the privileges of the underlying user.
The problem specifically exists within the feature to execute local cgi-bin programs via the "lynxcgi:" URI handler. The handler is generally intended to be restricted to a specific directory or program(s). However, due to a configuration error on multiple platforms, the default settings allow for arbitrary websites to specify commands to run as the user running Lynx.
(ID: 533314:6)
SECURITY: RPCBind Remote Denial of Service Vulnerability --
[SCOSA-2005.43] When the RPC portmapper (rpcbind) receives an invalid portmap request from a remote (or local) host, it falls into a denial of service state and cannot respond. As a result, the RPC services will not operate normally.
(ID: 533036:2 ESC: erg712957)
SECURITY: TCP Remote ICMP Denial Of Service Vulnerabilities --
[SCOSA-2005.38] The ICMP RFC recommends no security checking for in-bound ICMP messages, so long as a related connection exists, and may potentially allow several different Denials of Service. The following individual attacks are reported:
A blind connection-reset attack is reported, which takes advantage of the specification that describes that on receiving a 'hard' ICMP error, the corresponding connection should be aborted. A remote attacker may terminate target TCP connections and deny service for legitimate users.
An ICMP Source Quench attack is reported, which exploits the specification that a host must react to ICMP Source Quench messages by slowing transmission on the associated connection. A remote attacker may effectively degrade performance for a legitimate connection.
To fix these issues, a new networking parameter tcp_ignore_quench is introduced for configuring ICMP source quench message behavior for tcp connections. When it is set to 1, ICMP source quench messages are ignored for tcp connections. Default value of this parameter is 1.
(ID: 533089:2 ESC: erg712928)
SECURITY: Xloadimage NIFF Image Title Handling Buffer Overflow Vulnerability --
[SCOSA-2005.62] A buffer overflow in xloadimage, might allow user-complicit attackers to execute arbitrary code via a long title name in a NIFF file, which triggers the overflow during (1) zoom, (2) reduce, or (3) rotate operations.
(ID: 533253:4)
SECURITY: Squid 2.5.STABLE10 and earlier DoS --
Squid has been updated to version 2.5.STABLE12 to resolve the following:
store.c in Squid 2.5.STABLE10 and earlier allows remote attackers to cause a denial of service (crash) via certain aborted requests that trigger an assert error related to STORE_PENDING.
The sslConnectTimeout function in ssl.c for Squid 2.5.STABLE10 and earlier allows remote attackers to cause a denial of service (segmentation fault) via certain crafted requests.
(ID: 533116:1)
SECURITY: Squid 2.5.STABLE10 and earlier DoS --
Squid has been updated to version 2.5.STABLE12 to resolve the following:
Squid 2.5.STABLE10 and earlier, while performing NTLM authentication, does not properly handle certain request sequences, which allows attackers to cause a denial of service (daemon restart).
(ID: 533151:1)
SECURITY: Squid 2.5 STABLE11 and earlier DoS --
Squid has been updated to version 2.5.STABLE12 to resolve the following:
The rfc1738_do_escape function in for Squid 2.5 STABLE11 and earlier allows remote FTP servers to cause a denial of service (segmentation fault) via certain "odd" responses.
(ID: 533254:1)
SECURITY: X.Org X server -- X11R6.8.2 arbitrary code execution --
Updated X.Org to version 6.9.0.
(ID: 532984:1 ESC: erg712935)
SECURITY: cpio Multiple Vulnerabilities --
[SCOSA-2006.2] A race condition in cpio allows local users to modify permissions of arbitrary files via a hard link attack on a file while it is being decompressed, whose permissions are changed by cpio after the decompression is complete. A directory traversal vulnerability allows remote attackers to write to arbitrary directories via a .. (dot dot) in a cpio file.
(ID: 532911:2 ESC: erg712912)
SECURITY: Tcpdump Denial of Service Vulnerability --
[SCOSA-2005.61] Various flaws in tcpdump can allow remote attackers to cause denial of service.
(ID: 533034:2 ESC: erg712955)
SECURITY: Unzip File Permissions Change Vulnerability --
[SCOSA-2005.39] A vulnerability in unzip can be exploited by malicious, local users to perform certain actions on a vulnerable system with escalated privileges. The vulnerability is caused due a race condition that exists when the uncompressed file is closed and before its permissions are changed. This can be exploited via hardlink attacks to change the permissions of other files belonging to the user running unzip. Successful exploitation requires that the malicious user is able to delete the uncompressed file and replace it with a hardlink to another file owned by the unzip user, before permissions are set on the file.
(ID: 532852:1 ESC: erg712905)
SECURITY: Gzip Multiple Vulnerabilities --
[SCOSA-2005.59] Gzip has been updated to version 1.3.5-12 to resolve the following:
zgrep in gzip does not properly sanitize arguments, which allows local users to execute arbitrary commands via filenames that are injected into a sed script.
Race condition in gzip, when decompressing a gzipped file, allows local users to modify permissions of arbitrary files via a hard link attack on a file while it is being decompressed, whose permissions are changed by gzip after the decompression is complete.
Directory traversal vulnerability in gunzip -N allows remote attackers to write to arbitrary directories via a .. (dot dot) in the original filename within a compressed file.
(ID: 532855:1 ESC: erg712906)
SECURITY: TCP RFC1323 Denial of Service Vulnerability --
[SCOSA-2005.65] TCP does not adequately validate segments before updating timestamp value allowing a remote attacker to arbitrarily modify host timestamp values that will in turn cause TCP connections to abort/drop segments, leading to a denial-of-service condition.
(ID: 533038:2 ESC: erg712959)
SECURITY: wu-ftp Denial of Service Vulnerability --
[SCOSA-2005.63] The wu_fnmatch function in wu_fnmatch.c allows remote attackers to cause a denial of service (CPU exhaustion by recursion) via a glob pattern with a large number of * (wildcard) characters, as demonstrated using the dir command.
(ID: 533027:2 ESC: erg712952)
SECURITY: BIND Denial of Service Vulnerability --
[SCOSA-2006.1] BIND version 8.4.4 is vulnerable to a remote denial of service attack, caused by a buffer overflow in the in q_usedns array.
(ID: 531004:1 ESC: erg712788)
SECURITY: Telnet Environment Leakage --
[SCOSA-2005.50] Certain BSD-based telnet clients allow remote malicious telnet servers to read sensitive environment variables via the NEW-ENVIRON option with a SEND ENV_USERVAR command.
(ID: 533032:2 ESC: erg712953)
SECURITY: KAME Racoon Daemon Denial of Service --
[SCOSA-2005.52] A new vulnerability was identified in KAME Racoon, which may be exploited by attackers to conduct Denial of Service attacks. The flaw occurs when handling specially crafted ISAKMP Packet Headers, which may be exploited to crash the application.
(ID: 533033:2 ESC: erg712954)
SECURITY: OpenSSH < 4.2 GatewayPorts and GSSAPIDelegateCredentials exploits --
OpenSSH has been updated to version 4.2p1.
(ID: 532976:1 ESC: erg712931)
SECURITY Vim 6.3 < 6.3.082 input validation --
VIM has been updated to version 6.4.
(ID: 533037:1 ESC: erg712958)
SECURITY: LibXpm Integer Overflow Vulnerability --
[SCOSA-2006.5] An integer overflow vulnerability in libXpm can be exploited by a remote user to cause arbitrary code to be executed. The 'scan.c' code does not properly validate user-supplied data contained in image files. A remote user can create a specially crafted image file that, when processed by the target user or application, will trigger the overflow and execute arbitrary code.
(ID: 533161:2)
SECURITY: ESP Ghostscript Insecure Temporary File Creation Vulnerabilities --
These problems have been resolved and additionally ESPGS has been updated to version 8.15.1.
(ID: 533156:1)
SECURITY: GTK+ gdk-pixbuf XPM Loader Heap Overflow Vulnerability --
[SCOSA-2006.8] Integer overflow in the GTK+ gdk-pixbuf XPM image rendering library in GTK+ allows attackers to execute arbitrary code via an XPM file with a number of colors that causes insufficient memory to be allocated, which leads to a heap-based buffer overflow.
(ID: 533256:1)
SECURITY: Docview (htdig) Cross- Site Scripting Flaw --
[SCOSA-2005.46] Cross-site scripting vulnerability in docview (htdig) allows remote attackers to execute arbitrary web script or HTML via the config parameter, which is not properly sanitized before it is displayed in an error message.
(ID: 531484:3 ESC: erg712808)
SECURITY: LibTIFF BitsPerSample Tag Buffer Overflow Vulnerability --
[SCOSA-2006.3] TIFF has been updated to version 3.7.4 to resolve the following:
Tavis Ormandy has reported a vulnerability in libTIFF, which potentially can be exploited by malicious people to compromise a vulnerable system.
The vulnerability is caused due to a boundary error and can be exploited to cause a buffer overflow via a specially crafted TIFF image containing a malformed BitsPerSample tag.
Successful exploitation may allow execution of arbitrary code, if a malicious TIFF image is opened in an application linked against the vulnerable library.
(ID: 532777:1 ESC: erg712888)
SECURITY: Zlib Multiple Vulnerabilities --
[SCOSA-2006.6] zlib has been updated to version 1.2.3 to resolve the following:
The error handling in the (1) inflate and (2) inflateBack functions in ZLib compression library 1.2.x allows local users to cause a denial of service (application crash).
inftrees.h in zlib 1.2.2 allows remote attackers to cause a denial of service (application crash) via an invalid file that causes a large dynamic tree to be produced.
Buffer overflow in zlib 1.2 and later versions allows remote attackers to cause a denial of service (crash) via a crafted compressed stream, as demonstrated using a crafted PNG file.
(ID: 532829:1 ESC: erg712899)
SECURITY: libpcre < 6.3 PCRE Heap Overflow Arbitrary Code Exec --
libpcre has been updated to version 6.4.
(ID: 532923:1 ESC: erg712924)
SECURITY: libwww Denial of Service --
This problem has been resolved in patched libwww-5.4.0.
(ID: 533164:1)
SECURITY issues: Mozilla 1.7.10 and 1.7.11 --
The release of Mozilla 1.7.12 in this maintenance pack resolves a number of security issues including:
#1:
http://secunia.com/advisories/16846/Mozilla 1.7.10 (and 1.7.11) allows attackers to execute arbitrary commands via shell metacharacters in a URL that is provided to the browser on the command line, which is sent unfiltered to bash. CAN-2005-2968
#2:
http://secunia.com/advisories/16917/Multiple vulnerabilities have been reported in Mozilla Suite, which can be exploited by malicious people to conduct spoofing attacks, manipulate certain data, bypass certain security restrictions, and compromise a user's system. CAN-2005-2701 CAN-2005-2702 CAN-2005-2703 CAN-2005-2704 CAN-2005-2705 CAN-2005-2706 CAN-2005-2707
(ID: 533139:1)
SECURITY: cURL/libcURL NTLM Username Handling Buffer Overflow Vulnerability --
Fixed in libcurl version 7.15.1 in the Supplemental Graphics, Web and X11 Libraries component.
(ID: 533174:1)
Other Fixes
/bin/showtable perl script calls non-existent /usr/lib/perl5 --
Small packaging error fixed in modern perl handoffs.
(ID: 532082:1)
Accounts with $ signs in their names may be added but cannot be removed or managed. --
The useradd, usermod, and userdel commands have been fixed to properly handle a $ character as the last character in an account name. The SCOAdmin Account Manager should not be used to manage such accounts; use the command line interface instead.
(ID: 532674:1)
Unzip < 5.53 Race Condition Priv Esc --
[http://secunia.com/advisories/16309/] This problem has been fixed.
(ID: 532852:1, 532852:2 ESC: erg712905)
tput error when regular users log in on console VTs: unknown terminal "-ie:at386-ie" --
This problem has been resolved.
(ID: 533257:1)
Mozilla 1.7.10 has 2 mail client regressions --
Two mail client regressions in the Mozilla.org source release of Mozilla 1.7.10 have been corrected in the version of Mozilla in this maintenance release.
(ID: 533017:3)
--------------------------------------------------------------------------------
§5.3: Fixes Provided in MP3
MP3 contains the following additional fixes that were not in MP2:
Commands and Utilities
Development System
Drivers
Graphics
Kernel
Installation
Networking
Operating System
Printing
SCOAdmin
Security
Other Fixes
Commands and Utilities
syslog messages not being logged to console --
Fixed console logging of syslog messages. (ID: 533590:2)
uadmin hangs system --
Improvement to uadmin has reduced delay during shutdown. (ID: 534484:1)
Australia changes TZ rules --
Western Australia has just decided to reinstate Daylight Saving Time for a few years. This update to the compiled timezone files (in /etc/TZ) includes this change and all other changes up to the end of November 2006. (ID: 534117:4)
The "file" command should be able to identify huge files (>2GB) --
The file command has been modified to use specific 64-bit stat and open functions, allowing files greater that 2 gigabytes to be queried. (ID: 533973:2)
Xenix version 2.3 or 3.0 a.out not reported as "pre-SysV" --
The file command now correctly reports "pre-SysV" for version 2.3 and 3.0 Microsoft Xenix a.out files. (ID: 534488:1)
Long user or group names in NIS accounts can cause core dumps --
This fixes a segmentation violation (core dump) of programs that called the getgrent() APIs when NIS was configured with very long login or group names. (ID: 533719:1)
pkgmk fails when using '-c' and packaging a file like 'file$1name' --
This problem has been resolved. (ID: 534023:3)
The tty changes when logging out (only from tty12) --
A problem existed, where, upon exit from tty12, you end up at tty02 if scologin is enabled or at the console if scologin is disabled. This has been fixed so that you remain at tty12 upon exiting, just like all the other tty's. (ID: 534230:1)
Added OSR5 Huffman -H support to /u95/bin/compress --
Added OSR5 Huffman -H support to /u95/bin/compress. (ID: 532965:3)
dircmp -d fails if pathnames include whitespace --
dircmp was fixed so that it correctly handles files or directories reached whose names included white space. (ID: 533260:1)
ssh does not set the $Mail environment variable correctly --
The MAIL environment variable setting, which was broken when logging in via ssh, has been fixed. (ID: 533827:1)
Request to move /etc/egd-pool to /var/run/egd-pool --
A "named pipe" (egd-pool) used by /etc/prngd was moved from /etc into /var/run. (ID: 534102:1)
Remove emergency_disk cdrecord -v option to reduce verbosity --
This change significantly reduces the /sbin/emergency_disk command output when writing to CR-R or RW media but still includes a sufficient amount of cdrecord output for debugging potential problems. (ID: 534331:1)
Change the default /sbin/emergency_disk media type to cdrom --
The default emergency recovery boot media type was changed from diskette to cdrom, since only cdrom media are currently supported. (ID: 534337:1)
The portcheck utility used by mkdev apc produces an incorrect result if DCD is asserted --
If DCD is asserted at the time that mkdev apc is run, the portcheck utility will now detect this, issue a warning, and abort, instead of complaining that the port does not support modem control. (ID: 534342:3)
/usr/sbin/racoon permissions not set correctly --
/usr/sbin/racoon now has permissions 555; previously the execute bit was not set. (ID: 534417:1)
acctcom enhancements --
acctcom has several new options. For a summary do "acctcom -X". (ID: 533850:5)
Can't access USB tape drive using emergency recovery cdrom --
Create USB tape drive device nodes when using the emergency recovery cdrom tape restore option. (ID: 534147:1)
calendar program treats itself as a calendar --
calendar no longer searches for calendar files in pseudo-users' home directories (ID: 533589:2)
df does not behave as it did in openserver 5.0.6 --
The /u95/bin/df command has been updated to accept the combination of the '-vk' options. (ID: 533828:1)
divvy or mkfs can't handle 2048 sector size on MO CD drive. get LBA out of range errors --
Fixed sdimkosr5 to handle target drives with sector size other than 512. (ID: 533011:2 ESC: erg712947)
Problem with supplementary group membership --
Fixed bugs in libprot.so which resulted in long entries in /etc/group file being read incorrectly. (ID: 534013:2)
/usr/bin/posix/sh should symlink to u95 ksh instead of ksh88 --
/usr/bin/posix/sh is now a symlink to /u95/bin/sh (/u95/bin/ksh) instead of /usr/bin/ksh. (ID: 533880:1)
ps -e output different between OSR5 & OSR6 --
In the 'ps' command, the COMM field was truncated to 8 characters. It has been updated to 14 characters, as it was in OpenServer 5.0.7. (ID: 533288:1)
ps -ef output has trailing space which wasn't present in osr5 --
Removed the trailing space present in ps output which may cause OSR5 scripts to fail. (ID: 533657:2)
sar fails when you run fdisk -p /dev/rhd00 --
The fdisk(ADM) command has been fixed so that it is no longer necessary to run /sbin/metreg by hand following creation or destruction of a disk partition. Without this fix, the sar(ADM) and rtpm(ADM) commands would fail following a partition configuration change (until /sbin/metreg was run). (ID: 533469:1)
mccntl permissions changed from 444 to 555 --
/usr/sbin/mccntl has its permissions fixed to permit execution (mode 444 to mode 555). (ID: 533990:1)
/etc/mountall passes wrong option to fsck --
In some cases at boot time when a filesystem is found to be in need of checking, one could instead see a usage diagnostic from the filesystem-specific fsck command. This has been corrected, specifically for the dosfs and vxfs filesystems. (ID: 533902:1)
Add -m option to mkfs to display the command line used to create a particular file system --
Implemented mkfs -m for HTFS, EAFS, AFS, and S51K. (ID: 533241:1)
mkdev fd should say up front that you cannot create floppy boot media --
'mkdev fd' would fail the option to 'Create Emergency Boot and Root floppy filesystems'. This option is no longer fully implemented, and, when selected, now displays the message: 'Creation of emergency boot and root filesystems for floppy media is no longer supported. Please see emergency_disk(1M) for creating emergency boot and root cdroms.' (ID: 532538:1)
mkdev hd fails on certain popular storage configuration --
Fixed a problem in mkdev hd which caused it to fail on many dynamic RAID configurations when disks are used as hot spares or combined into RAID volumes. The problem occurred because the disk aliases can become non-sequential (e.g., disk1, disk2, disk5) and mkdev hd assumed that the aliases will always be sequential. (ID: 533954:1)
Umount hangs and subsequent access gives Resource Temporarily Unavailable (error 11) --
A rare race condition, which may sometimes cause umount of an HTFS file system to hang, has been fixed. (ID: 534153:1)
Development System
C++fe painting of cast of function address to "long long" confuses the c++be --
The C++ compiler was fixed so that it neither generates bad code nor fails with an internal compiler error when casting an address constant to a 64-bit integer type. (ID: 534078:2)
C++ compiler assertion failure in automatic template instantiation --
A C++ internal compiler error failure (an assertion in templates.c) has been fixed involving automatic template instantiation. (ID: 534213:1)
Spurious diagnostic on members of nested classes in unnamed namespace --
When a member function of a nested class in an unnamed namespace was defined, the C++ compiler used to issue a warning that that function was defined but not referenced even though it was used by a member function of the enclosing class. (ID: 534214:1)
Incorrect clean-up of EH object - ptr to class --
When the type of a thrown C++ exception was of type "pointer to class", the C++ runtime exception handling was incorrectly attempting to call the destructor of the class pointed to upon completion of the exception "catch" handler. This runtime bug has been fixed. (ID: 534238:2)
C++ decrement of char bit-fields result in invalid assembly instruction and register combo --
An assembly syntax error generated for a C++ prefix or postfix decrement of an "unsigned char" bit-field has been corrected. (ID: 533998:2)
RTTI symbols must be available at runtime for OpenOffice port to SCO Unix --
In support of a port of Open Office 2.x, the C++ compiler now treats RunTime Type Information (RTTI) symbols as global, weak symbols. This allows the Open Office native C++ to UNO bridge to locate and use C++ generated RTTI info when converting UNO exceptions into native C++ exceptions. (ID: 534208:1)
Assembler error: part of large C++ template function name read as an opcode --
An insufficient buffer to contain very, very large mangled template function names in the C++ exception handling range table post code generation processing has been resolved. (ID: 534249:1)
Postfix addition executed twice when used ar index in arg to strcpy() --
A C++ code generation bug where a prefix or postfix operator expression used as an index may be executed twice has been fixed. Incorrect code was limited to cases where the expression was part of an argument to a "single statement" inline function and that argument was used multiple times in that single statement. The problem could also manifest itself if the function was one of the known C standard functions that the compiler may be able to treat as an inline function. (ID: 534437:1)
Invalid code when field operator used directly with function call returning a class or struct --
A C++ internal compiler error or invalid code generation could occur for an expression that dereferenced a member (type pointer) of the result of a call to a function returning a struct, union or class. This was not a problem with a constructor, or function returning reference or pointer to a struct or class. struct A func_returning_struct (); func_returning_struct().ptr -> other_field; This problem has been fixed. (ID: 534445:2)
::wctrans() undefined when _XOPEN_SOURCE is defined --
If _XOPEN_SOURCE is defined, the C wctrans() function is not available. The C++ header file cwctype has been updated to abide by that restriction. (ID: 533723:1)
Definition of const_mem_fun1_t<> incorrect in header "CC/functional" --
The template function prototype for const_mem_fun1_t() was corrected; "const" qualifier added to the first argument. (ID: 533785:2)
Assembler syntax error on C++ inline function - when optimized --
When removing register(s) containing a known zero value from base or base/indexing addresses, the assembly code optimizer has been fixed to replace an implicit zero displacement with an explicit zero displacement to maintain acceptable assembly operand syntax. (ID: 534166:1)
ICE: Internal Compiler Error - Open Office 2.0.3 port --
An internal compiler error (ICE) in the C++ compiler detected when porting Open Office 2.0.x has been corrected. The ICE occurred when initializing a large, complex static const array needing runtime results from template functions. (ID: 534043:1)
Tech. Corr. 2 for C99 says _Bool bit fields should be size 0 or 1 only --
The C compiler is updated to warn when it sees the declaration of a boolean bit-field with a width of more than one bit. (ID: 534130:2)
Dropped padding in automatic aggregate initialization --
In certain initializations of automatic (stack) aggregates, the C compiler (prior to this fix) would leave insufficient space for the part to be filled in at runtime. (ID: 534212:2)
Problems found running PlumHall test suite --
For strict C90 conformance, when compiling -Xc mode the C compiler will take a //* character sequence as being a division operator followed by the start of a comment instead of being just the start of a //-style comment. It will warn when doing so as this is a change in behavior, albeit a very minor, dusty corner case. Also, the simplest style of compound literal, like (int){2} was broken by a recent repair. This problem has been corrected. (ID: 534226:2)
Assembly optimizer erroneously deleting some 3 operand SHLDL instrs --
A bug in the assembly language code peep-hole optimizer, where a three operand SHLDL instruction may be removed erroneously, has been fixed. (ID: 534233:1)
K&R C-preprocessor defines static buffer too small --
Both K&R C-preprocessors, /usr/lib/cpp and /osr5/usr/lib/cpp, have been updated to accept the -S option which overrides the default setting of the "sbf" buffer size. See the "cpp" man page. (ID: 534261:1)
ld can overlay hidden objects in bss when creating relocatable object file --
If ld was used to create an object file from a collection of other object files, some of which included uninitialized static storage (BSS), and name visibility (-B hide or -B export) is applied, then (prior to this fix) some of these BSS symbols could end up assigned improper addresses. (ID: 533672:2)
nm - nullptr dereference on many C++ object files --
This fixes a null pointer access bug present when nm was used on ELF files with STV_EXPORTED symbol visibility present. (ID: 534167:2)
SVR5 curses unable to draw vertical or horizontal lines on ansi VT screen --
The SVR5 ABI hline() and vline() curses APIs were fixed so that they use the line-drawing characters on ANSI screens. (ID: 534175:1)
optim bug causes driver panic --
A bug in the assembly code optimizer logic was corrected where it eliminated certain register-to-register MOV instructions erroneously believed to be redundant, resulting in the loss of a CSE (common subexpression) value in a register. (ID: 533819:1)
Loop unrolling breaks updated sed's ycomp() --
The assembler peep-hole optimizer (/usr/ccs/lib/optim) may, on rare occassions, incorrectly remove the "testl" instruction on a loop where the loop-variable is progressing to zero and a previous optimization replaced the decrement (DECL) instruction with an equivalent instruction that does not affect the condition codes. This problem has been corrected. (ID: 533839:2)
Optim malloc loop exhausts memory --
A memory allocation logic problem which could result in the the exhaustion of available memory has been fixed in the assembly peep-hole optimizer. (ID: 534250:1)
Special symbol __libC_init for RRTLD is not visible in libC.so.1 --
The special symbol to denote that libc.so.1 is one of the system libraries where the initialization order is important was not properly exported. An updated libC.so.1 runtime is provided for both the SVR5 and OSR5 ABIs (ID: 534205:2)
Dynamic linker repairs for OpenOffice --
Repairs were made to the runtime linker (RTLD) involving process shutdown and calling the finalization routines for runtime-opened shared libraries. The problem could only occur in fairly complicated uses of runtime-opened shared libraries, which was found to occur when using OpenOffice. (ID: 534211:1)
wcsrtombs(NULL,...) with bogus code value other than first seg faults --
A bug was fixed where if wcsrtombs() was asked to compute the length needed to hold a wide character string (a null pointer is given as the destination) and the incoming multibyte string contains an invalid code somewhere other than at the string start, a segmentation fault would result when it attempted to write using the null pointer. (ID: 534135:2)
nsdispatch() fails to clear "unreg" member for nonexistent modules --
A bug was fixed in the C library in which a segmentation fault could occur within NSS processing, but only when a /etc/nsswitch.conf file exists and is modified (ID: 534239:2)
Add shell-style patterns to lists of symbols in ld --
The ld command is enhanced to take shell-style patterns as well as regular symbol names in all of the various -B options. For each one that accepts a "list" or "symfile", one can now cover all symbol names that match the list of symbol name patterns. (ID: 534216:2)
/usr/bin/javaexec needs updated to support J2SE 5.0 --
The /usr/bin/javaexec command, used by the kernel to control Java VM invocation for first-class executables, has been updated to handle J2SE 5.0 Java classes. (ID: 534029:2)
extended DST will require new timezone rules --
The US Daylight Saving Time rules were changed in 2005 to come into effect in 2007. Now DST starts at 2am (local time) on the second Sunday of March, and ends at 2am on the first Sunday of November. (ID: 532758:3)
PKG: undefined symbol _SC_NPROCESSORS_PHYS on MP2 --
The /usr/include/sys/unistd.h header file has been updated to fix application compiles that previously failed due to a missing _SC_NPROCESSORS_PHYS symbol. (ID: 533872:1)
Memory leaks in Motif --
Memory is no longer leaked when shell widgets are created and destroyed. (ID: 533105:1 ESC: erg712964)
OSR5 applications running on OSR6 use more file descriptors than when running on OSR5 --
Allow MAP_ANONYMOUS for all processes, including those running OSR5-ABI programs, in order to eliminate extra opens of /dev/zero by the runtime linker, thereby keeping file descriptor usage by OSR5-ABI programs running on OSR6 similar to the usage when running on OSR5. (ID: 534174:2)
Drivers
system hangs in asyc driver --
Eliminate system hangs that can occur when serial lines are in use. (ID: 534127:1)
/usr/sbin/dlpid is in MP1 but not MP2 (nics patch with this one binary should not have been removed) --
dlpid is included in MP3. (ID: 534225:1)
The e1008g driver incorrectly parses settings values in space.c --
The code checking the valid values for e1008g_autoneg_advertised was repaired. This fix is also included in the latest e1008g driver from Intel (9.2.6) which is part of MP3. (ID: 533841:1)
Process Intel's e1008g 9.2.6 NIC handoff --
The Intel e1008g NIC driver has been updated to version 9.2.6. Note that the nd package needs to be installed with pkgadd on your system after installing MP3 to get this update. (ID: 534141:1)
During installation, get "No such file or directory". --
Some misleading "noise" warning messages have been removed which were sometimes displayed when installing the nd package. (ID: 534285:1)
Add initialization code for future Atheros network driver pccard support. --
Changes were made to the pcic driver to anticipate support of future Atheros (ath) network hardware. (ID: 533938:1)
Add new LSI MegaRAID SAS driver --
The latest MegaRAID SAS driver from LSI is included in MP3 which includes 1078 support. (ID: 533694:1)
scsi.h changes cause HP drivers to not build --
The SS_MOVE_MEDIUM, SS_EXCHANGE, and SS_RD_STATUS macros have been restored in /usr/include/sys/scsi.h for compatibility. (ID: 533955:1)
the vtoc driver can corrupt memory if invalid devices are opened --
A fix was implemented to the vtoc driver that repairs the following bug: An open is done on a special file with the vtoc major number and with an invalid minor number, resulting in memory corruption and a subsequent kernel panic. The vtoc driver helps to manage the hard disk. This rarely observed problem could occur on stale disk device nodes of the form /dev/rdsk/cNbNtNdN. (ID: 534114:1)
Iomega Rev changer not recognized correctly by USB --
Recognize Iomega REV changer by not caching INQ across LUNS. The USB stack now recognizes the changer component of the REV 280 and REV 560 autoloaders. (ID: 534075:2)
Graphics
libXm.so.1.3 - List.c - not redrawing list when valid mouse wheel scroll --
Correctly sync scrolled list widget and its scroll bar when using a mouse wheel on the list to scroll the list. Updated the SVR5 libXm.so.1.3. (ID: 533978:4)
Provide /usr/bin/X11/xterm link --
/usr/bin/X11/xterm is now a link to /opt/K/SCO/XORGRT//usr/X11R6/bin/xterm. (ID: 534302:1)
Some foreign keyboards are not working properly. --
A problem where the wrong character set was being used in a scoterm session has been corrected. This problem was especially noticeable when using certain non-US keyboards. (ID: 534444:1)
Graphics appears hung after scologin stop - scologin start sequence. --
Fix a hang that occurs occasionally when using /etc/scologin to start the desktop. (ID: 533783:1)
ROINAMUR (dual video card system) won't come up in graphical mode after upgrade to MP3 --
The Xorg graphics drivers for MP3 will now include a working one for the i810 chipset. (ID: 534496:1)
Qt Designer dumps core on startup if you select Main Window --
The MP3 release fixes problems with Qt designer, in particular some important ones involving plugin wizards. (ID: 533735:1)
KDE 3.5.2 clock always displays the time in GMT --
The new KDE requires that the "modern style" compiled timezone files be installed and reachable. With this addition, KDE has the correct local time as well as many others available. (ID: 534055:1)
kcontact crashes with a SIGSEGV on exit --
A bug which caused kontact (part of KDE) to die has been fixed in the MP3 release. (ID: 534471:1)
Kernel
Increase clock rate to allow fine-grain user control for multimedia apps. --
The clock interrupt frequency is now configurable using a new boot parameter KHZ. KHZ can be set to be 100 (the default, for full compatibility) meaning 100 clock ticks per second, 200, 500, 1000, or 2000. Outside the kernel, only the setitimer() system call is affected by changing the KHZ setting. By setting KHZ to a higher value, setitimer() will present a finer granularity, providing help to those applications, such as multimedia ones, that can make use of such. (ID: 533870:2)
Hot removal of devices may panic kernel in certain circumstances --
Fix problems that may cause a kernel panic after hot removal of a device. (ID: 533714:1)
OSR 6.0 missing OSR5 POSTWAIT SUPPORT FOR ORACLE 7 --
Several changes were made in the MP3 release for compatibility with Oracle version 7. For example, making sure there exists a postwait driver compatible with OSR5's, reached through /dev/sleeper. (ID: 533756:1)
Set default clock tick value to 100 rather than 1000 --
Ensure that the compatible value of 100 for the new boot parameter KHZ is what is used by default. (ID: 534165:2)
Some platforms may lock up when hyperthreading or multicore support is enabled. --
1. Add support for "hybrid" ACPI/MPS system initialization, required on some platforms when hyperthreading or multicore support is enabled. Hybrid ACPI/MPS system initialization takes processor information from ACPI BIOS tables and all other platform information from MPS BIOS tables.
Specifying "ACPI=X" in /stand/boot or at the interactive boot prompt enables hybrid ACPI/MPS initialization when hyperthreading or multicore support is also enabled. Hybrid ACPI/MPS initialization should be enabled only if the default full-ACPI based initialization fails.
2. Implement dynamic PCI interrupt assignment to fix interrupt related problems seen on some platforms when hyperthreading, multicore, and/or ACPI are enabled. Observed problems included excess interrupt activity, poor device response, and device timeouts.
3. Allow override of kernel algorithms for sorting the processors listed in ACPI BIOS tables through the use of the new LAPIC_SORT parameter. This is necessary on some platforms to ensure that all logical processors can be used even if the ACPIS BIOS tables does not list them in the proper order.
Specifying "LAPIC_SORT=Y" in /stand/boot or at the interactive boot prompt will cause the kernel to reorder the processors listed in the ACPI BIOS tables; "LAPIC_SORT=N" disables that reordering. If LAPIC_SORT is unspecified, then the kernel uses its own internal algorithm to determine whether to reorder the processors listed in the tables. (ID: 533926:1)
*URGENTFIX* system panic. vx_dqwrite+6d (including fz532771 vxfs snapshot panic) --
A VXFS-related kernel panic was fixed. (ID: 534067:1)
Add AGP GART support --
Add AGP GART support in the kernel. (ID: 534017:2)
SVR5 OSR5 ABI differences in termios ioctl c_lflag bit meaning. --
When running various OpenServer 5 binaries which used termio/termios related ioctl's, certain operations were not working correctly. Among these issues were the setting of the termio/termios c_lflag TOSTOP, ECHOCTL, and IEXTEN flags, and the termios c_cc elements VSTART, VSTOP, VDSUSP, and VREPRINT. The mentioned items have been corrected, so the proper settings are done when running the OpenServer 5 binary. (ID: 534510:1)
Add OSR5 memcntl(MC_SYNC) call to OSR6 --
Add support for OSR5 msync(2) system call. (ID: 534523:1)
Panic occur if I use 640MB MO disk as dosfs filesystem --
Panic on dosfs filesystem for 640MB MO disk drive has been fixed. (ID: 534171:1)
Application fails to open more than 60-70 files for ISAM --
An kernel error was repaired in handling the OSR5 ABI sem/msg/shm system call families in which an EOVERFLOW error was returned instead of processing the request. (ID: 534061:2)
panic in put from strdaemon --
A race condition bug that could cause a kernel panic has been repaired. The race was between a TCP endpoint being simultaneously closed and aborted. (ID: 534173:2)
xemul/xrun issues with foxbase after oss706 is installed --
A bug was repaired in the Xenix emulator which caused Xenix applications to hang when using the rdchk() system call. (ID: 534183:1)
Boot parameter LAPIC_SORT value can't be set --
The code which parses the enabling of the boot parameter LAPIC_SORT was incorrect, not allowing the parameter to be set to 'Y' or 'y'. This has been corrected. (ID: 534265:1)
The OSR5 ABI for getpgid() is not working correctly on OpenServer 6 --
The OSR6 kernel's implementation of the OpenServer ABI getpgid() system call has been fixed. It had been behaving as if there was no such system call. (ID: 534284:1)
Kernel address fault panic can occur when invalid arguments passed in ioctl --
A kernel bug was repaired in which a null pointer can be dereferenced due to mishandling of an mmap() system call error case. (ID: 534346:1)
Installation
No console works after first Reboot --
A kernel bug was repaired in which a file that should have been a "named pipe" is instead taken to be a character device.
This very unusual situation only occurred when an inode number was first used for /dev/udp or /dev/tcp, then deleted, and then reused for a named pipe. (ID: 533770:3)
GWXLIB component name name is misspelled --
Fixed spelling of Berkeley in component name. (ID: 534303:1)
Add mega and megasas device drivers to MP3 CD #1 --
The mega and megasas device drivers are now included on MP3 CD #1. (ID: 534431:1)
USB keyboard stop working at the end of Installation --
The halt message has been modified to indicate that USB keyboards are no longer active after the system has been halted. (ID: 531915:1)
Networking
system panic at dlpi_send_iocack+d --
A panic condition fixed in dlpi module. (ID: 532999:4 ESC: erg712943)
arp bug with MAC address changes for IP sharing dual port NICS --
A bug was repaired in which ARP messages were not printed correctly when the MAC address of an existing arp entry was changed. (ID: 533779:4)
accept() doesn't handle O_NONBLOCK correctly --
A bug in the kernel was repaired so that poll()/select() now behave according to The Open Group specifications when the socket is listening and nonblocking. (ID: 533560:3)
Send an ACK if many small-packet size data are received --
Send an ACK if all queued data (of very small packet size) are processed regardless of whether delay-ACK is enabled. (ID: 518838:3)
Kernel panic in tcplrput() function --
A kernel bug that could cause a panic was repaired which occurred when prematurely reusing TCP minor numbers when a connection was simultaneously being shutdown. (ID: 534203:1)
small final segment TCP packets are not processed correctly --
Avoid miscalculating checksum for the last segment which is less than 8 bytes in a multi-segment transfer. (ID: 534293:3)
dlpid does not failover to chain of NICs, nor share backups, mismatching our doc --
Following new features are added/updated related to failback/failover of NICs:
- A NIC can be configured as the backup of one or more than one NICs.
- Backup of a backup NIC can be configured.
- Protocol Information of a backup device can be viewed.
- The main tree gives more backup NICs info.
- Updated for features: "Switch to backup" & "Revert to primary".
- Updated for removing primary/backup devices. (ID: 529245:5)
Receipt of improperly formed LLC XID packets and TEST frames may cause memory leaks. --
Fixed a bug in the dlpi driver to prevent streams memory leaks that could occur when improperly formed LLC XID packets were received from some routers, and a similar bug caused by receipt of improperly formed LLC test frames. (ID: 533862:1)
The MMDF package in OSR6 included the wrong sendmail program. --
The MMDF package now includes the correct version of sendmail. In the initial release of OSR6, the MMDF package erroneously included the sendmail program from the sendmail package instead of the MMDF-specific sendmail program. (ID: 533873:1)
:saved directory missing --
This fix ensures that there will be a /var/spool/mail/:saved directory present, regardless of whether sendmail or MMDF is used as your mailer. (ID: 534443:1)
If no DATA text received before net connection dropped, message should not be submittted --
If no DATA text is received from a remote system before an error occurs, message submission is aborted. The new net_timeout smtp channel configuration string allows configuration of the network read timeout. It specifies the number of seconds to wait for data from a remote host before message submission is aborted. The default is 180. (ID: 534456:3)
Update SendMail to latest version - 8.13.8 --
Sendmail has been updated to version 8.13.8. (ID: 534095:1)
unable to make ppp connect - total failure --
Fixed various problems in ppp. First, ppp will now support baud rates above 38400. Second, it is no longer necessary to disable a serial port before dialing out. Finally, the pppframe module now handles TCFLSH ioctls(), eliminating an error message that formerly appeared in the pppd.log file whenever a link was disconnected. (ID: 533476:2)
Problems over NFS mount of Services for Unix (SFU) on Windows 2000 --
Fixed the issue that the default value of uid/gid as -2 was not being accepted and resulted in EOVERFLOW error for NFS mounted partitions. (ID: 533644:2)
setacl and getacl commands are not NIS-aware. --
Enable setacl and getacl to access user and group information from sources other than /etc/passwd and /etc/group. For example, if NIS is enabled, setacl and getacl will recognize user and group names provided by the NIS server, even if such names are not locally defined. (ID: 533532:2)
"ps -f" does not convert numerical UIDs to NIS user names --
For a system set up with reasonably dynamic user accounts (such as NIS), the cached UID-to-login name mapping saved by the ps command could end up without displaying a login name for a newish UID. ps has been changed so that it will now regenerate its mapping information when it finds that what it has is out-of-date. (ID: 533533:2)
tcp connection reset reporting errors --
Immediately return an error from the system call for OSR5 applications when a TCP error is posted, irrespective of other considerations. (ID: 534207:1)
netstat -ian does not show the correct number of multicast addresses --
The kernel was updated to provide for larger valued number of multicast addresses for netstat to display. (ID: 533900:2)
The -f (var. traceroute impl.) and -Q (Solaris) options would be useful. --
Add the following options to traceroute:
-f is used to specify the first TTL to send probes for, instead of the default of 1.
-Q is used to specify the maximum number of probe packet timeouts allowed for a given TTL before probing at that TTL is aborted and the next TTL is tried. The default is to probe for the requested number of queries regardless of whether packets time out or not. (ID: 533474:1)
BL12 e1008g nic driver report same device when network unplugged from 2 different devices --
The message displayed when the status changes for a networking connection (using the e1008g driver) has been updated to include sufficient data to distinguish all hardware connections on the system. (ID: 532442:1 ESC: erg712895)
Kernel stack overflow panic when using aacraid driver --
A bug in the aacraid driver that could cause a kernel panic has been repaired. The driver was changed to use significantly less kernel stack space. (ID: 533669:1)
bcme has invalid entry in /etc/inst/nd/mdi/bcfg/b5701.bcfg --
In the Broadcom NIC's bcme driver, there was a typo in the b5701.bcfg file, which has been corrected. The incorrect matching board id has been changed from 0x14E46145 to the corrected version, 0x14E41645. (ID: 534340:1)
Process Broadcom bcme 8.3.13 driver handoff. --
Updated bcme driver to version 8.3.13. (ID: 533131:1)
Fix device id in bcme driver's b5781.bcfg file --
Fixed device ID typo in the bcme driver b5781.bcfg file. (ID: 533980:1)
Update eeE8 driver with Intel's 4.0.4 handoff --
Updated the eeE8 driver to version 4.0.4. (ID: 534263:1)
ct is not working in osr6 --
Fix getty and serial driver to allow ct to do a callback. (ID: 534028:2)
If Apache httpd.conf file was not updated by the user, then provide new default file --
A new Apache /usr/lib/apache/conf/httpd.conf file is included with MP3. This file is installed if Apache was not previously on your system, or if your original httpd.conf had no user modifications. If there were user modifications, then the MP3 install only updates "php4" references to "php5"; your httpd.conf file is otherwise not modified. In this case, the install keeps a copy of your original file called httpd.conf.backup. The MP3 apache installation always includes /usr/lib/apache/conf/httpd.conf.default so you can see what other new configuration changes are available. (ID: 534398:3)
Remove mod_jk2 connector from Tomcat package --
mod_jk2 is obsolete and has been removed from the Tomcat package. It is replaced by a new mod_jk product on MP3 CD #2. (ID: 534448:1)
"help" menu doesn't work in "swat" --
The manpages looked for via the help menu in Samba's SWAT tool are now reached. (ID: 534514:1)
Operating System
Duramax application for Xenix 286 fails on OSR6 --
Xenix compatibility bugs involving the dup2(), rdchk(), and chsize() system calls were repaired. (ID: 533666:1)
Failure seen in Megabasic, a Xenix program, running on OpenServer 6.0.0 MP2 --
Some Xenix programs, especially model large programs using brkctl(S), were known to fail when an access was made beyond the end of a segment. One such program is 'megabasic'. While the program is in error here, and would fail if run on an actual Xenix system, the behavior of the OSR6 system was not compatible with OSR5, which was lax enough to allow such programs to execute.
The memory allocation policy for Xenix programs in OSR6 has been loosened to match OSR5, allowing such programs to work as before.
It is no longer necessary to set XEMUL_OSR5 to obtain Xenix execution behavior compatible with OSR5. Such behavior is now the default and only case available. The XEMUL_OSR5 environment variable is no longer supported. The default behavior is now as if XEMUL_OSR5=1 had been set. Pre-OSR5 behavior is no longer supported. (ID: 534333:1)
Xenix app fails when acquiring write lock on a file opened read-only. --
For the oldest Xenix binaries supported on OSR6, permit write locks on files not opened for writing. (ID: 534465:2)
Xenix emulator implementation not fully complete --
Xenix emulator has been enhanced, using a native kernel implementation of file and record locking [locking(s)], Xenix shared memory and Xenix semaphores. These services are also available to System V old ABI binaries linked with -lx. Various other limitation of Xenix emulation have also been addressed, most notably the previously partial implementation of brkctl(S) has been completed. (ID: 530099:1)
X server failure on ServerEngines Matrox G200E chipsets. --
Fixed a problem in MP2 that caused the X Server display not to start on some platforms that use the Matrox G200E graphics chipset from ServerEngines. (ID: 534178:5)
Add support for USB modems and USB serial devices --
The new hardware support and enhanced functionality previously provided in the OpenServer 6.0.0 MP2 USB supplement has been integrated into OpenServer 6.0.0 MP3. (ID: 533754:1)
USB/EHCI performance unnecessarily constrained --
Increase throughput of the USB/EHCI driver by raising the driver's maximum interrupt rate. (ID: 534090:2)
xterm/scoterm gets an "Unable to install selected keyboard" error --
Specification errors in various /usr/lib/keyboard mapkey files have been corrected. These errors caused problems with xterm and scoterm. (ID: 534332:1)
Add SCOoffice Server 4.2 licensing definitions --
Added the SCOoffice Server 4.2 base and user bump definitions for the scoadmin License Manager. (ID: 534194:1)
sco_pmd provided in MP2 limit business edition license to 2 users, should be 5 --
Fixed a bug in licensing code that caused the Small Business Edition license to be limited to 2 users rather than 5 in OpenServer 6 Maintenance Pack 2. (ID: 533834:2)
drv_callback does not handle NMI --
Provide correct routing of non-maskable interrupts (NMIs) when hyperthreading, multicore, and/or ACPI are enabled. (ID: 533969:1)
mount command can hang on trying to mount a cdrom with no media inserted --
Fixed an occasional hang of the mount command when trying to mount a cdrom with no media inserted. (ID: 534420:1)
OSR6 tape driver missing crucial functionality that existed in osr5 --
Fixed a bug in /usr/bin/tar which did not allow it to write to tape drives having block size greater than 512. (ID: 533853:2)
Line drawing font for right hand top corner is not right on console --
An issue was fixed, where the glyph character for the top right hand corner (single lines), was displayed incorrectly. (ID: 532659:2)
MP2 changes keyboard layout - AltGr no longer works --
A bug was fixed so that special keys like AltGr (on some non-US keyboards) will work again. (ID: 533718:1)
mapchan files reject the CONTROL keyword --
mapchan was only accepting the lower case version of the 'CONTROL' keyword. It has been fixed, so that both lowercase and uppercase versions of the keyword are now accepted. (ID: 533901:1)
Regression: FoxPro - key causing VT switch to tty02 --
The Xenix emulator was repaired so that it better matches the expected tty/console behavior when placed into "scancode" mode. (ID: 534001:1)
Enhance USB code to handle hardware stalls --
The kernel's USB support code has been enhanced to better deal with certain hardware which inappropriately (according to the USB specification) stalls in configuration cycles. The support code will now retry a few times when it believes it has detected this situation, which appears to be good enough to work around these hardware failings. (ID: 532626:2)
Temporary keyboard lockup immediately after VT switch or num lock/caps lock/scroll lock --
Modified the system behavior so that, by default, it will attempt to determine at runtime whether or not an 8042 keyboard/mouse controller is present, rather than assume one is present. Autodetection of the 8042 improves system response on platforms which lack an 8042 controller, and in particular, avoids temporary keyboard lockups that can occur on such platforms immediately after certain keyboard operations such as VT-switches or pressing the Caps Lock key. The system's treatment of the 8042 controller can be modified by changing the value of the variable i8042_detection in /etc/conf/pack.d/ws/space.c and then rebuilding and rebooting the kernel. If i8042_detection is initialized to 1, which is the default, then the operating system detects the presence or absence of an 8042 controller at runtime. If i8042_detection is initialized to 0, then the system bypasses the runtime detection and always acts as if an 8042 controller is present. If i8042_detection is initialized to -1, then the system bypasses the runtime detection and always acts as if an 8042 controller is not present. (ID: 534034:1)
Problems booting from secondary disk when root disk encapsulated and mirrored --
The kernel's booting process was fixed so that it will successfully boot from the mirrored copy of the root disk (presumably the primary being removed or otherwise nonfunctional). (ID: 533688:2)
Disk replacement using vxdiskadm broken --
The vxdiskadm utility (part of ODM) was repaired so that disk replacement works. (ID: 533893:1)
disks in disks.exclude file are not excluded while running vxinstall --
Fixed vxinstall of ODM which was incorrectly including disks which were excluded using disks.exclude file. (ID: 533911:1)
replacing the mirror root disk using vxdiskadm broken --
Some issues regarding the replacement of failed disks in mirroring setups have been repaired. (ID: 533912:4)
Printing
lpstat -o doesn't display year in time submittted field (**HIPCHECK affected**) --
A new option (-y) has been added to the lpstat utility which prints the date with the year. This option is only applicable in combination with the -o option. (ID: 533956:2)
SCOAdmin
Query Log (i.e. Logging Queries to syslog) Option does not work --
Changes made to the Query Log setting in the SCO DNS Manager will now have the desired effect. (ID: 532942:1)
System Monitor Manager Line color selections do not have enough variance --
The SCO Admin System Monitor Manager now displays a highly differentiated selection of graph line colors at every pixel depth selection. Previously, only a subtly graduated selection of blues and blacks was available. (ID: 533641:1)
System Monitor Manager graph window starts out collapsed. --
The SCO Admin System Monitor Manager now starts up with a blank graph displayed. Previously, at startup the manager displayed no graph at all, regardless of whether any monitoring had been selected; it was necessary to find and move the graph expansion widget to see the graph. (ID: 533642:1)
System Monitor Manager sometimes hangs or crashes with small polling intervals --
The System Monitor Manager polling interval can now be as low as 1 second without causing the monitor to crash. (ID: 533643:1)
/tcb/lib/auth_scripts/pttyupd references osr5 file and fails to work. --
An error in the /tcb/lib/auth_scripts/pttyupd script caused failures because it was accessing invalid files. The script has been corrected to work properly. (ID: 533368:1)
scoadmin client doesn't allow the domain search order to be changed --
Allow the scoadmin Network Client Manager domain search order to be specified when a local domain string is present. (ID: 534164:1)
scoadmin serial / modem managers don't see the usb serial devices --
Added USB support to the scoadmin serial & modem managers.
Notes:
USB modems & serial port adapters need to be plugged in and powered on for the /dev/usb_ser* device nodes to be created and listed in the serial and modem managers.
Automatic detection is not available for USB modems - use the manual configuration option with the Standard Modem selection. (ID: 534245:3)
xorg.conf generated by scoadmin video is incompatible with 600mp3 --
The graphical console settings configuration tool has been enhanced to include an auto-detection choice for an appropriate pixel depth. This helps with support of certain (likely old and limited) video hardware. (ID: 534508:1)
Account Manager incorrectly handles account names ending in $ --
The SCO Admin Account Manager now properly handles account names ending in '$' as required by Samba. However, the '$' character does count as one of the characters in the account name, which is still limited to 8 characters total. Consequently, if an account name ends in '$', the alpha-numeric part of the name can be composed of no more than 7 characters. E.g., it is not possible to use an 8 character system name as a Samba account name by simply adding a '$' to the end of it. The system name would first have to be truncated to 7 characters. (ID: 533527:1)
*URG*Selecting fast check for VxFS f/s adds invalid -f flag to /etc/default/filesys fsckflags field. --
VXFS's fsck utility has been enhanced to support a -f (fast) option which means to do only a "log recovery". The DOSFS fsck was changed to include a do-nothing -f. (ID: 533903:2)
scoadmin filesystem doesn't allow read-only VXFS filesystem --
Allow the scoadmin filesystem manager to set the access mode for non-root VXFS filesystems as read-only in addition to read-write. (ID: 534241:1)
Please add UW system monitor scoadmin manager --
The System Monitor Manager from UnixWare is now included in OSR6. (ID: 532399:1)
netcfg -v results in tcl error on OSR6 --
This has been fixed to correctly return the nics component version. (ID: 534218:1)
netconfig has problems adding a second NIC --
The SCO Admin Network Configuration Manager and the netconfig tool have been fixed so that reconfiguring, removing, and reinstalling additional network interfaces, even if done repeatedly, will not have unexpected affects on other
