PROBLEM: (82684, 64812, 86205) (PATCH ID: OSF520DX-010) ******** This patch corrects the following problem with dxaccounts: 1) A core dump occurs when /etc/shells is a directory instead of a file. 2) The hour glass cursor remains after a failure to create a home directory in the process of adding or modifying an account. PROBLEM: (91289, 91502) (PATCH ID: OSF520DX-018) ******** This patch fixed the problem of dxaccounts that names and security attributes of UNIX users are not mapped correctly when they are viewed from PC Users' dialog. PROBLEM: (91080) (PATCH ID: OSF520DX-017) ******** This patch fixes the problem that username entries are replicated in the /etc/group file when modifying users with either dxaccounts or sysman accounts. PROBLEM: (91042) (PATCH ID: OSF520DX-019) ******** In the dxaccounts application, the C2 security options that set a time limit use a drop-down box for the units of time that include Hours, Days, Weeks, and Years. The system actually stores these values in the security database in seconds. The problem occurs when one of these values is changed by some method other than dxaccounts to a number of seconds that does not divide to an even number of hours, such as 1800 seconds. If the value is set to 1800 seconds, and then the user record is opened in dxaccounts, no value is displayed in dxaccounts. If the record is then saved in dxaccounts, the value will be changed from the intended 1800 second value. PROBLEM: (91506, 91512) (PATCH ID: OSF520DX-020) ******** Under C2 security when adding or modifying users with useradd, usermod, or the dxaccounts application, if a password is specified the password length restrictions are not enforced. PROBLEM: (92088, 92132) (PATCH ID: OSF520DX-027) ******** This patch fixes the following problems of Dxaccounts on ASU installed system. 1) Can't create a PC user synchronized with a Unix account due to the 'expiration date invalid' error message when the date is not set. 2) An hourglass cursor does not disappear after the warning message. 3) Deleting a PC user synchronized with a NIS Unix account cause a core dump. 4) Selecting more than three PC users synchronized with LOCAL Unix accounts and clicking the Delete button causes a core dump. PROBLEM: (91506, 91512, SSRT0785U) (PATCH ID: OSF520DX-025) ******** A potential security vulnerability has been discovered, where under certain circumstances, system integrity may be compromised. This may be in the form of passwords that have a length outside of the intended range. Compaq has corrected this potential vulnerability. PROBLEM: (58932, 64915, 90938, 91588, 94072, 94439) (PATCH ID: OSF520DX-058) ******** Problems fixed by this patch: + userdel -r does not check that the user directory is not a file + dxaccounts allows drag and drop of a PC user into NIS user view + trying to set an invalid defaults flag with usermod -D doesn't complain + NIS users might not be deleted from local groups + dxaccounts may coredump when clicking on a copied icon + possible unaligned access error with useradd -x account_expiration PROBLEM: (93054, 89746) (PATCH ID: OSF520DX-057) ******** userdel coredumps when the shell field is empty in the /etc/passwd file. usermod does not work properly with NIS +/- users. PROBLEM: (88402) (PATCH ID: OSF520DX-045) ******** A potential security vulnerability has been discovered, where under certain circumstances, system integrity may be compromised. This may be in the form of improper file access. Compaq has corrected this potential vulnerability. PROBLEM: (BCPMK0NMM, DE_G04643, 86013) (PATCH ID: OSF520DX-056) ******** The useradd(8) has an option to specify which template to use when creating an user under Enhanced Security mode: useradd -x template=TEMPLATE_NAME. However when one uses this option, the user created has default template values. This patch corrects this problem. PROBLEM: (91300, 88987) (PATCH ID: OSF520DX-036) ******** The Advanced Server for UNIX (ASU) APIs have been updated. This patch updates the account management software to use the updated APIs when ASU is in use on the system. PROBLEM: (95318) (PATCH ID: OSF520DX-075) ******** The useradd command was not managing default and template data properly. This showed up most notably with 'useradd -p' producing: "Password must be between 32 and 80 characters". HP has corrected this deficiency.