Patch-ID# 108976-10

NOTE:
***********************************************************************
READ THE TERMS OF THE AGREEMENT ("AGREEMENT") IN THE LEGAL_LICENSE.TXT
FILE CAREFULLY BEFORE USING THIS SOFTWARE. BY USING THE SOFTWARE, YOU
AGREE TO THE TERMS OF THIS AGREEMENT. IF YOU DO NOT AGREE TO ALL OF THE
TERMS, PROMPTLY DESTROY THE UNUSED SOFTWARE.
***********************************************************************

Keywords: security rmformat removable media format jaz adaptec 2903b
Synopsis: SunOS 5.8_x86: /usr/bin/rmformat and /usr/sbin/format patch
Date: Aug/18/2006


Install Requirements: Reconfigure after installation                      
                      
Solaris Release: 8_x86

SunOS Release: 5.8_x86

Unbundled Product: 

Unbundled Release: 

Xref: This patch available for SPARC as patch 108975

Topic: SunOS 5.8_x86: /usr/bin/rmformat and /usr/sbin/format patch
	NOTE:	Refer to Special Install Instructions section for
		IMPORTANT specific information on this patch.

Relevant Architectures: i386

BugId's fixed with this patch: 4035460 4146130 4242879 4292212 4304790 4308431 4311553 4322206 4328893 4362287 4397736 4475614 4484419 4742992 4776340 4781880 4808195 6296988

Changes incorporated in this version: 4742992 6296988

Patches accumulated and obsoleted by this patch: 

Patches which conflict with this patch: 

Patches required with this patch: 108969-01 108978-02 (or greater)

Obsoleted by: 

Files included with this patch: 

/etc/security/exec_attr
/usr/bin/rmformat
/usr/sbin/format

Problem Description:

6296988 format: segfault due to buffer overflow in shell escape code
4742992 format shell escape is a security hole under RBAC
 
(from 108976-09)
 
	        This revision updates patch dependencies.
 
(from 108976-08)
 
4776340 ON support for new platforms
4362287 rmformat(1m) should allow formatting ls-120 and usb floppies
4808195 re-use existing localization string for psr2
 
(from 108976-07)
 
4781880 VTOC error: write a block that is out of range -  Fix in format
 
(from 108976-06)
 
4035460 Format does not handle disklabels on intelligent disks sanely
4146130 Using 'format' cmd with disk type of 'other' menu option does not work
4475614 Format allows analyze/write to a T3B device with read only permission
4484419 format sometimes dumps core when mpxio is present
 
(from 108976-05)
 
4397736 Command format displays ":d" instead the number of Blocks
 
(from 108976-04)
 
4328893 format displays different form of disk name for fabric devices
 
(from 108976-03)
 
4304790 sometimes must eject/remount to rmformat zip media on Intel
 
(from 108976-02)
 
4322206 /usr/bin/rmformat has potential buffer overflows
 
(from 108976-01)
 
4292212 New utility rmformat needed to support removable media
4242879 format: no removable media in normal mode
4308431 rmformat -F long/quick failing for Jaz media on Intel
4311553 rmformat fails to write vtoc if the number of slices is just one

Patch Installation Instructions:
--------------------------------
 
For Solaris 2.0-2.6 releases, refer to the Install.info file and/or
the README within the patch for instructions on using the generic
'installpatch' and 'backoutpatch' scripts provided with each patch.
 
For Solaris 7-10 releases, refer to the man pages for instructions
on using 'patchadd' and 'patchrm' scripts provided with Solaris.
Any other special or non-generic installation instructions should be
described below as special instructions.  The following example
installs a patch to a standalone machine:
 
       example# patchadd /var/spool/patch/104945-02
 
The following example removes a patch from a standalone system:
 
       example# patchrm 104945-02
 
For additional examples please see the appropriate man pages.

Special Install Instructions:
-----------------------------
 
        NOTE 1: If you're using CDE 1.4, you MUST also install the following
                patches:
 
                109166-01 (or greater)  CDE 1.4: dtfile patch
                109168-01 (or greater)  CDE 1.4: Desktop Help Update Patch
                108922-02 (or greater)  CDE 1.4: dtwm Patch
 
                If you're using OpenWindows 3.8, you MUST also install the
                following patch:
 
                109464-01 (or greater)  OpenWindows 3.6.2: filemgr fixes
 
        NOTE 2: To get the complete Removable Media functionality, please
                also install the following patches:
 
                108971-01 (or greater)  /usr/lib/fs/pcfs/fsck and
                                        /usr/lib/fs/pcfs/mkfs patch
                108973-01 (or greater)  /sbin/fdisk patch
 
        NOTE 3: To get the complete fix for 4304790 (sometimes must eject/
                remount to rmformat zip media on intel), please also
                install the following patches:
 
                109644-01 (or greater)  sd driver patch
                109643-01 (or greater)  /usr/include/sys/dkio.h patch
                108973-02 (or greater)  /sbin/fdisk patch

README -- Last modified date:  Friday, August 18, 2006