PROBLEM: (SSRT0767U) (PATCH ID: OSF520CDE-003) ******** A potential security vulnerability has been discovered, where under certain circumstances, system integrity may be compromised. The ttdbserverd contains a potential buffer overflow that may allow unauthorized access. Compaq has corrected this potential vulnerability. PROBLEM: (SSRT2251, SSRT2274) (PATCH ID: OSF520CDE-022) ******** A potential security vulnerability has been discovered, where under certain circumstances, system integrity may be compromised. This may be in the form of improper file access. HP has corrected this potential vulnerability. PROBLEM: (89046) (PATCH ID: OSF520CDE-002) ******** This patch fixes the problem of palette files not been read from '/etc/dt/palettes'. To reproduce the problem 1. Place some palette files under '/etc/dt/palettes' 2. Invoke dtstyle.Select the particular palette and hit ok. 3. Logout and then login.The particular palette does not get loaded. PROBLEM: (90902, SSRT0788U) (PATCH ID: OSF520CDE-005) ******** The dtprintinfo application may crash if the LANG environment variable has a value that is too long. This patch helps to fix this problem. PROBLEM: (90331) (PATCH ID: OSF520CDE-009) ******** A potential security vulnerability has been discovered , where under certain circumstances, system integrity may be compromised. This may be in the form of large values of command line arguments. Compaq has corrected this potential vulnerability. PROBLEM: (89467, 89468, 90725, SSRT0753U, SSRT0752U) (PATCH ID: OSF520CDE-008) ******** A potential security vulnerability has been discovered , where under certain circumstances, system integrity may be compromised. This may be in the form of large values of ENVIRONMENT variables and command line arguments. This patch also fixes a potential security vulnerability in CDE Subprocess Control Service(dtspcd). 'dtspcd' has a potential buffer overflow condition which may lead to unauthorized access. Compaq has corrected these potential vulnerability. PROBLEM: (89468, SSRT0752U) (PATCH ID: OSF520CDE-011) ******** A potential security vulnerability has been discovered , where under certain circumstances, system integrity may be compromised. This may be in the form of large values of command line arguments. Compaq has corrected this potential vulnerability. PROBLEM: (88308) (PATCH ID: OSF520CDE-016) ******** A potential security vulnerability has been discovered, where under certain circumstances, system integrity may be compromised. This may be in the form of improper file access. Compaq has corrected this potential vulnerability. PROBLEM: (88287) (PATCH ID: OSF520CDE-018) ******** A potential security vulnerability has been discovered, where under certain circumstances, system integrity may be compromised. This may be in the form of improper file access. Compaq has corrected this potential vulnerability. PROBLEM: (88306) (PATCH ID: OSF520CDE-014) ******** A potential security vulnerability has been discovered, where under certain circumstances, system integrity may be compromised. This may be in the form of improper file access. Compaq has corrected this potential vulnerability. PROBLEM: (93780) (PATCH ID: OSF520CDE-015) ******** PROBLEM: CDE session may hang up at the startup in the following condition: 1. Localized .dt files are located on ~/.dt/types/, and 2. Try to login to CDE session in a session language, and 3. The multibyte characters in the .dt files are regarded as invalid in the session language. PROBLEM: (88299) (PATCH ID: OSF520CDE-019) ******** A potential security vulnerability has been discovered, where under certain circumstances, system integrity may be compromised. This may be in the form of improper file access. Compaq has corrected this potential vulnerability.