Document ID: 279917
http://support.veritas.com/docs/279917
E-Mail this document to a colleague
http://support.veritas.com/docs/279917
E-Mail this document to a colleague
Security fix for VERITAS Cluster Server 3.5 (all versions) on Solaris - Symantec Security Advisory SYM05-023
Details:
Download Now - 62184 K
File Name: SOL_VCS3.5P5+i18n-secfix-e418977a_279917.tar.Z
File Type: Patch
Click Below to Browse the FTP files by Product:
ftp.support.veritas.com/pub/support/products
This patch
resolves a buffer overflow vulnerability in VERITAS Cluster Server 3.5 for
Solaris.
This patch can
be applied to 3.5 MP4 (VERITAS Cluster Server 3.5 patch level 5) only. All other
3.5 versions must first be upgraded to 3.5 MP4 before applying this
patch: http://support.veritas.com/docs/278582
All versions of
VERITAS Cluster Server 3.5 on Solaris are affected and should be upgraded to MP4
and this patch applied. For further information on this vulnerability, refer
to http://support.veritas.com/docs/279870
which also contains links to patches for other platforms and versions.
This patch also
contains a number of fixes for incidents not related to security (see below).
Refer to the
information included in the patch file for installation instructions
Download Now - 62184 K
File Name: SOL_VCS3.5P5+i18n-secfix-e418977a_279917.tar.Z
File Type: Patch
Click Below to Browse the FTP files by Product:
ftp.support.veritas.com/pub/support/products
Supplemental Material:
| System: Ref.# | Description |
| ETrack: 284786 | When server returns ECONREFUSED, commands running on localhost should retry before exit. |
| ETrack: 312812 | Modify halog for UTF8 encoding. |
| ETrack: 322217 | Removed unnecessary 'sync' call from hacf. |
| ETrack: 368367 | Modify ha commands to show output when debug log tag is set. |
| ETrack: 426545 | Add engine check for username password length. |
| ETrack: 426548 | Packaging changes to remove root suid in some binaries. |
Products Applied:
Cluster Server QuickStart 3.5 (Solaris), 3.5 (Solaris) BETA, 3.5 MP1 (Solaris)
Cluster Server Traffic Director 3.5 (Solaris), 3.5 (Solaris) BETA, 3.5 MP1(Solaris), 3.5 MP3 (Solaris), 4.0 (Linux), 4.0 (Linux) BETA, 4.0 (Solaris), 4.0 (Solaris) BETA, 4.0 MP1 (Linux), 4.0 MP1 (Solaris)
Cluster Server for UNIX 3.5 (AIX), 3.5 (HP-UX), 3.5 (Solaris), 3.5 (Solaris) BETA, 3.5 MP1 (Solaris), 3.5 MP1J (Solaris), 3.5 MP2 (Solaris), 3.5 MP3 (Solaris), 3.5 MP4 (Solaris), 3.5 P1, 3.5 U1 (HP-UX), 3.5 U2 (HP-UX), 3.5 U3 (HP-UX), 3.5.1 (AIX), 3.5.2 (AIX), 4.0 (AIX), 4.0 (AIX) Beta, 4.0 (Linux), 4.0 (Linux) BETA, 4.0 (Solaris), 4.0 (Solaris) BETA, 4.0 MP1 (AIX), 4.0 MP1 (AIX) ACAP, 4.0 MP1 (Linux), 4.0 MP1 (Solaris), 4.0 MP2 (AIX), 4.0 MP2 (Linux), 4.0 MP2 (Solaris), 4.1 (HP-UX) (Fixed), 4.1 (HP-UX) BCAP (Fixed), 4.1 (Linux) (Fixed), 4.1 (Linux) DCAP (Fixed), 4.1 (Linux) RP1 (Fixed), 4.1 (Linux) TCAP (Fixed), 4.1 (Solaris x64) (Fixed), 4.1 (Solaris) (Fixed), 4.1 (Solaris) CAP (Fixed), 4.1 (Solaris) DCAP (Fixed), x4.1 (HP-UX) GA (Fixed)
Storage Foundation Cluster File System 3.5 (HP-UX), 3.5 (Solaris), 3.5 MP1(Solaris), 3.5 MP2 (Solaris), 3.5 MP3 (Solaris), 3.5 MP4 (Solaris), 3.5 U1 (HP-UX), 3.5 U2 (HP-UX), 3.5 U3 (HP-UX), 4.0 (AIX), 4.0 (Linux), 4.0 (Linux) BETA, 4.0 (Solaris), 4.0 (Solaris) BETA, 4.0 MP1 (AIX), 4.0 MP1 (AIX) ACAP, 4.0 MP1 (Linux), 4.0 MP1 (Solaris), 4.0 MP2 (AIX), 4.0 MP2 (AIX) LCAP, 4.0 MP2 (Linux), 4.0 MP2 (Solaris), 4.1 (HP-UX) (Fixed), 4.1 (HP-UX) BCAP (Fixed), 4.1 (HP-UX) DCAP (Fixed), 4.1 (Linux) (Fixed), 4.1 (Linux) DCAP (Fixed), 4.1 (Linux) TCAP (Fixed), 4.1 (Solaris) (Fixed), 4.1 (Solaris) CAP (Fixed), xx4.1 (HP-UX) GA (Fixed)
Storage Foundation QuickStart 3.5 (Solaris), 3.5 MP1(Solaris), 3.5 MP2 (Solaris), 4.0 MP1 (Linux), 4.0(Linux), 4.0(Linux) BETA, 4.0(Solaris), 4.1 (Solaris) (Fixed), 4.1 (Solaris) CAP (Fixed)
Storage Foundation for Oracle Real Application Clusters 3.5 (HP-UX), 3.5 (Solaris), 3.5 MP1(Solaris), 3.5 MP2 (Solaris), 3.5 MP2 (Solaris) RP1, 3.5 MP2 (Solaris) RP2, 3.5 MP2 (Solaris) RP3, 3.5 MP3 (Solaris), 3.5 MP4 (Solaris), 3.5 U1 (HP-UX), 3.5 U2 (HP-UX), 3.5 U3 (HP-UX), 4.0 (AIX), 4.0 (AIX) BETA, 4.0 (Linux), 4.0 (Linux) BETA, 4.0 (Solaris), 4.0 (Solaris) BETA, 4.0 FP1 (Solaris), 4.0 MP1 (AIX), 4.0 MP1 (AIX) ACAP, 4.0 MP1 (Linux), 4.0 MP1 (Solaris), 4.0 MP2 (AIX), 4.0 MP2 (Linux), 4.0 MP2 (Solaris), 4.1 (HP-UX) (Fixed), 4.1 (HP-UX) BCAP (Fixed), 4.1 (HP-UX) DCAP (Fixed), 4.1 (Solaris) (Fixed), 4.1 (Solaris) CAP (Fixed)
Cluster Server QuickStart 3.5 (Solaris), 3.5 (Solaris) BETA, 3.5 MP1 (Solaris)
Cluster Server Traffic Director 3.5 (Solaris), 3.5 (Solaris) BETA, 3.5 MP1(Solaris), 3.5 MP3 (Solaris), 4.0 (Linux), 4.0 (Linux) BETA, 4.0 (Solaris), 4.0 (Solaris) BETA, 4.0 MP1 (Linux), 4.0 MP1 (Solaris)
Cluster Server for UNIX 3.5 (AIX), 3.5 (HP-UX), 3.5 (Solaris), 3.5 (Solaris) BETA, 3.5 MP1 (Solaris), 3.5 MP1J (Solaris), 3.5 MP2 (Solaris), 3.5 MP3 (Solaris), 3.5 MP4 (Solaris), 3.5 P1, 3.5 U1 (HP-UX), 3.5 U2 (HP-UX), 3.5 U3 (HP-UX), 3.5.1 (AIX), 3.5.2 (AIX), 4.0 (AIX), 4.0 (AIX) Beta, 4.0 (Linux), 4.0 (Linux) BETA, 4.0 (Solaris), 4.0 (Solaris) BETA, 4.0 MP1 (AIX), 4.0 MP1 (AIX) ACAP, 4.0 MP1 (Linux), 4.0 MP1 (Solaris), 4.0 MP2 (AIX), 4.0 MP2 (Linux), 4.0 MP2 (Solaris), 4.1 (HP-UX) (Fixed), 4.1 (HP-UX) BCAP (Fixed), 4.1 (Linux) (Fixed), 4.1 (Linux) DCAP (Fixed), 4.1 (Linux) RP1 (Fixed), 4.1 (Linux) TCAP (Fixed), 4.1 (Solaris x64) (Fixed), 4.1 (Solaris) (Fixed), 4.1 (Solaris) CAP (Fixed), 4.1 (Solaris) DCAP (Fixed), x4.1 (HP-UX) GA (Fixed)
Storage Foundation Cluster File System 3.5 (HP-UX), 3.5 (Solaris), 3.5 MP1(Solaris), 3.5 MP2 (Solaris), 3.5 MP3 (Solaris), 3.5 MP4 (Solaris), 3.5 U1 (HP-UX), 3.5 U2 (HP-UX), 3.5 U3 (HP-UX), 4.0 (AIX), 4.0 (Linux), 4.0 (Linux) BETA, 4.0 (Solaris), 4.0 (Solaris) BETA, 4.0 MP1 (AIX), 4.0 MP1 (AIX) ACAP, 4.0 MP1 (Linux), 4.0 MP1 (Solaris), 4.0 MP2 (AIX), 4.0 MP2 (AIX) LCAP, 4.0 MP2 (Linux), 4.0 MP2 (Solaris), 4.1 (HP-UX) (Fixed), 4.1 (HP-UX) BCAP (Fixed), 4.1 (HP-UX) DCAP (Fixed), 4.1 (Linux) (Fixed), 4.1 (Linux) DCAP (Fixed), 4.1 (Linux) TCAP (Fixed), 4.1 (Solaris) (Fixed), 4.1 (Solaris) CAP (Fixed), xx4.1 (HP-UX) GA (Fixed)
Storage Foundation QuickStart 3.5 (Solaris), 3.5 MP1(Solaris), 3.5 MP2 (Solaris), 4.0 MP1 (Linux), 4.0(Linux), 4.0(Linux) BETA, 4.0(Solaris), 4.1 (Solaris) (Fixed), 4.1 (Solaris) CAP (Fixed)
Storage Foundation for Oracle Real Application Clusters 3.5 (HP-UX), 3.5 (Solaris), 3.5 MP1(Solaris), 3.5 MP2 (Solaris), 3.5 MP2 (Solaris) RP1, 3.5 MP2 (Solaris) RP2, 3.5 MP2 (Solaris) RP3, 3.5 MP3 (Solaris), 3.5 MP4 (Solaris), 3.5 U1 (HP-UX), 3.5 U2 (HP-UX), 3.5 U3 (HP-UX), 4.0 (AIX), 4.0 (AIX) BETA, 4.0 (Linux), 4.0 (Linux) BETA, 4.0 (Solaris), 4.0 (Solaris) BETA, 4.0 FP1 (Solaris), 4.0 MP1 (AIX), 4.0 MP1 (AIX) ACAP, 4.0 MP1 (Linux), 4.0 MP1 (Solaris), 4.0 MP2 (AIX), 4.0 MP2 (Linux), 4.0 MP2 (Solaris), 4.1 (HP-UX) (Fixed), 4.1 (HP-UX) BCAP (Fixed), 4.1 (HP-UX) DCAP (Fixed), 4.1 (Solaris) (Fixed), 4.1 (Solaris) CAP (Fixed)
Last Updated: November 16 2005 02:39 AM GMT
Expires on: 11-13-2015
Subscribe to receive critical updates about this document
Expires on: 11-13-2015
Subscribe to receive critical updates about this document
Subjects:
Cluster Server for UNIX
Application: Patches
Cluster Server QuickStart
Application: Patches
Cluster Server Traffic Director
Application: Patches
Solaris
Application: Patches
Storage Foundation Cluster File System
Application: Patches
Storage Foundation for Oracle Real Application Clusters
Application: Patches
Storage Foundation QuickStart
Application: Informational
Cluster Server for UNIX
Application: Patches
Cluster Server QuickStart
Application: Patches
Cluster Server Traffic Director
Application: Patches
Solaris
Application: Patches
Storage Foundation Cluster File System
Application: Patches
Storage Foundation for Oracle Real Application Clusters
Application: Patches
Storage Foundation QuickStart
Application: Informational
Languages:
English (US)
English (US)
Operating Systems:
Solaris
Solaris
10, 10 (32-bit), 10 (64-bit), 10 (x86), 2.6, 7.0, 7.0 (32-bit), 7.0 (64-bit), 8.0, 8.0 (32-bit), 8.0 (64-bit), 9.0, 9.0 (32-bit), 9.0 (64-bit)
Symantec World Headquarters:
20330 Stevens Creek Blvd. Cupertino, CA 95014
World Wide Web: http://www.symantec.com,
Tech Support Web: http://entsupport.symantec.com,
E-Mail Support: http://seer.entsupport.symantec.com/email_forms,
FTP: ftp://ftp.entsupport.symantec.com or http://ftp.entsupport.symantec.com
20330 Stevens Creek Blvd. Cupertino, CA 95014
World Wide Web: http://www.symantec.com,
Tech Support Web: http://entsupport.symantec.com,
E-Mail Support: http://seer.entsupport.symantec.com/email_forms,
FTP: ftp://ftp.entsupport.symantec.com or http://ftp.entsupport.symantec.com
THE INFORMATION PROVIDED IN THE SYMANTEC SOFTWARE KNOWLEDGE BASE IS PROVIDED "AS IS" WITHOUT WARRANTY OF ANY KIND. SYMANTEC SOFTWARE DISCLAIMS ALL WARRANTIES, EITHER EXPRESS OR IMPLIED, INCLUDING THE WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE. IN NO EVENT SHALL SYMANTEC SOFTWARE OR ITS SUPPLIERS BE LIABLE FOR ANY DAMAGES WHATSOEVER INCLUDING DIRECT, INDIRECT, INCIDENTAL, CONSEQUENTIAL, LOSS OF BUSINESS PROFITS OR SPECIAL DAMAGES,EVEN IF SYMANTEC SOFTWARE OR ITS SUPPLIERS HAVE BEEN ADVISED OF THE POSSIBILITY OF SUCH DAMAGES. SOME STATES DO NOT ALLOW THE EXCLUSION OR LIMITATION OF LIABILITY FOR CONSEQUENTIAL OR INCIDENTAL DAMAGES SO THE FOREGOING LIMITATION MAY NOT APPLY.