PROBLEM: (STL098552) (PATCH ID: OSF445CDE-008) ******** This patch fixes a problem on multi-head systems in which the unlock display only works if the default display is screen 0. PROBLEM: (BCSM40MFF) (PATCH ID: OSF445CDE-005) ******** This patch fixes a dtmail problem in which a "From" line with quotes in it incorrectly finds the date of the mail message. This error is displayed on the main screen under the header 'Date and Time' and shows up as Dec. 31 or as a blank field. PROBLEM: (ZUO16050A, 47503) (PATCH ID: OSF445CDE-001) ******** This patch fixes a problem in which dtfile ICDE COSE tool does not work when TMPDIR is defined as /ldata/disk_local/tmp. dtfile returns this error: /ldata/disk_local/tmp/sdtdbcache_AAAaadmma: Cross-device link /ldata/disk_local/tmp/sdtdbcache_BAAaadmma: Cross-device link Floating exception (core dumped) PROBLEM: (UVO41850, 46127) (PATCH ID: OSF445CDE-004) ******** This patch fixes a problem with the Common Desktop Environment (CDE) in which some desktop applications will fail if CDE is not initialized. The error which appears in the users home .dt/errorlog file is: Desktop Not Initialized: Could not createAction/Datatypes database. PROBLEM: (89468, SSRT0752U) (PATCH ID: OSF445CDE-020) ******** A potential security vulnerability has been discovered , where under certain circumstances, system integrity may be compromised. This may be in the form of large values of command line arguments. Compaq has corrected this potential vulnerability. PROBLEM: (90902, SSRT0788U) (PATCH ID: OSF445CDE-017) ******** The dtprintinfo application may crash if the LANG environment variable has a value that is too long. This patch helps to fix this problem. PROBLEM: (88306) (PATCH ID: OSF445CDE-023) ******** A potential security vulnerability has been discovered, where under certain circumstances, system integrity may be compromised. This may be in the form of improper file access. Compaq has corrected this potential vulnerability. PROBLEM: (93780) (PATCH ID: OSF445CDE-025) ******** PROBLEM: CDE session may hang up at the startup in the following condition: 1. Localized .dt files are located on ~/.dt/types/, and 2. Try to login to CDE session in a session language, and 3. The multibyte characters in the .dt files are regarded as invalid in the session language. PROBLEM: (95220) (PATCH ID: OSF445CDE-039) ******** A potential security vulnerability has been discovered, where under certain circumstances, system integrity may be compromised. This may be in the form of improper file or privilege management. HP has corrected this potential vulnerability. PROBLEM: (90725, , ) (PATCH ID: OSF445CDE-016) ******** This patch fixes a potential security vulnerability in CDE Subprocess Control Service(dtspcd). 'dtspcd' has a potential buffer overflow condition which may lead to unauthorized access. Compaq has corrected this potential vulnerability. PROBLEM: (88287) (PATCH ID: OSF445CDE-027) ******** A potential security vulnerability has been discovered, where under certain circumstances, system integrity may be compromised. This may be in the form of improper file access. Compaq has corrected this potential vulnerability. PROBLEM: (89467, 89468, SSRT0753U, SSRT0752U) (PATCH ID: OSF445CDE-012) ******** A potential security vulnerability has been discovered , where under certain circumstances, system integrity may be compromised. This may be in the form of large values of ENVIRONMENT variables and command line arguments. Compaq has corrected this potential vulnerability. PROBLEM: (89046) (PATCH ID: OSF445CDE-011) ******** This patch fixes the problem of palette files not been read from '/etc/dt/palettes'. To reproduce the problem 1. Place some palette files under '/etc/dt/palettes' 2. Invoke dtstyle.Select the particular palette and hit ok. 3. Logout and then login.The particular palette does not get loaded. PROBLEM: (95278) (PATCH ID: OSF445CDE-041) ******** A potential security vulnerability has been discovered, where under certain circumstances, system integrity may be compromised. This may be in the form of improper privilege management. HP has corrected this potential vulnerability. PROBLEM: (94946, 94947, 94949) (PATCH ID: OSF445CDE-038) ******** A potential security vulnerability has been discovered, where under certain circumstances, system integrity may be compromised when a buffer overflow occurs in the DtSvc utility. Buffer overflows are sometimes exploited in an attempt to subvert the function of a privileged program and possibly execute commands at the elevated privileges if the program file has the setuid privilege. PROBLEM: (88299) (PATCH ID: OSF445CDE-030) ******** A potential security vulnerability has been discovered, where under certain circumstances, system integrity may be compromised. This may be in the form of improper file access. Compaq has corrected this potential vulnerability. PROBLEM: (88308) (PATCH ID: OSF445CDE-024) ******** A potential security vulnerability has been discovered, where under certain circumstances, system integrity may be compromised. This may be in the form of improper file access. Compaq has corrected this potential vulnerability. PROBLEM: (90331) (PATCH ID: OSF445CDE-015) ******** A potential security vulnerability has been discovered , where under certain circumstances, system integrity may be compromised. This may be in the form of large values of command line arguments. Compaq has corrected this potential vulnerability. PROBLEM: (SSRT, SSRT) (PATCH ID: OSF445CDE-032) ******** A potential security vulnerability has been discovered, where under certain circumstances, system integrity may be compromised. This may be in the form of improper file access. HP has corrected this potential vulnerability. PROBLEM: (SSRT0767U) (PATCH ID: OSF445CDE-013) ******** A potential security vulnerability has been discovered, where under certain circumstances, system integrity may be compromised. The ttdbserverd contains a potential buffer overflow that may allow unauthorized access. Compaq has corrected this potential vulnerability.