========================================================================== The checksum's (found through sum -r) of the files that you have received (other than this README) are as follows: 02890 1076 patchSG0002849.cadmin_sw 12331 15 patchSG0002849.cadmin_man 25053 3 patchSG0002849 31363 2 patchSG0002849.idb ========================================================================== - 1 - 1. Patch_SG0002849_Release_Note This release note describes patch SG0002849 to IRIX 6.2. Patch SG0002849 replaces patches SG0001503, and SG0001357. 1.1 Supported_Hardware_Platforms This patch contains bug fixes for all platforms. 1.2 Supported_Software_Platforms This patch contains bug fixes for objectserver (version 1232792120) on a system running IRIX 6.2. The software cannot be installed on other configurations. 1.3 Bugs_Fixed_by_Patch_SG0002849 This patch contains fixes for the following bugs in IRIX 6.2. Bug numbers from Silicon Graphics bug tracking system are included for reference. Patch 2849: Fixes: Bug #559765-objectserver has a security hole that allows unauthorized access. Replaces and rolls up: Patch 1503, which fixes: Bug #381491-objectserver core dumps on a 3-pipe Onyx Replaces and rolls up: Patch 1357, which is a rejected patch intended to fix: Bug #381491-objectserver core dumps on a 3-pipe Onyx 1.4 Subsystems_Included_in_Patch_SG0002849 This patch release includes these subsystems: o patchSG0002849.cadmin_man.cadmin o patchSG0002849.cadmin_sw.dso o patchSG0002849.cadmin_sw.objectserver - 2 - 1.5 Installation_Method After installation is complete, rebooting the system is recommended. Minimally, running these commands is required: o /etc/init.d/cadmin stop o /etc/init.d/cadmin start 1.6 Installation_Instructions Because you want to install only the patches for problems you have encountered, patch software is not installed by default. After reading the descriptions of the bugs fixed in this patch (see Section 1.3), determine the patches that meet your specific needs. If, after reading Sections 1.1 and 1.2 of these release notes, you are unsure whether your hardware and software meet the requirements for installing a particular patch, run inst. The inst program does not allow you to install patches that are incompatible with your hardware or software. Patch software is installed like any other Silicon Graphics software product. Follow the instructions in your Software Installation Administrator's Guide to bring up the miniroot form of the software installation tools. Follow these steps to select a patch for installation: 1. At the Inst> prompt, type install patchSGxxxxxxx where xxxxxxx is the patch number. 2. Initiate the installation sequence. Type Inst> go 3. You may find that two patches have been marked as incompatible. (The installation tools reject an installation request if an incompatibility is detected.) If this occurs, you must deselect one of the patches. Inst> keep patchSGxxxxxxx - 3 - where xxxxxxx is the patch number. 4. After completing the installation process, exit the inst program by typing Inst> quit 1.7 Patch_Removal_Instructions To remove a patch, use the versions remove command as you would for any other software subsystem. The removal process reinstates the original version of software unless you have specifically removed the patch history from your system. versions remove patchSGxxxxxxx where xxxxxxx is the patch number. To keep a patch but increase your disk space, use the versions removehist command to remove the patch history. versions removehist patchSGxxxxxxx where xxxxxxx is the patch number. 1.8 Known_Problems This patch introduces some minor breakage of transferable administrative privileges for non-root users. For example, if privileged users other than root have been added through the User Manager, attempts by an unprivileged user to perform administrative tasks (such as adding or removing user accounts) may fail with the message "Error: cannot access the object" even though the unprivileged user supplies a privileged user's name and password. Administrative tasks can still be performed by logging in as a privileged user, or by providing the root password. Similarly, if an unprivileged user runs the System Manager, chooses the "Change Privilege Level" item from the File menu, and enters a privileged non-root user's name and password, the System Manager will present the incorrect message "You already had these administrator privileges"; subsequently, when performing administrative tasks, the user will be asked for a privileged user's name and password, which still will not allow the unprivileged user to perform some tasks. Again, the administrative tasks can be performed by logging in as a privileged user, or by - 4 - providing the root password.