OSEC

Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com
 
Date: Tue Jan 16 2001 - 13:30:21 CST

  • Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

    *******************************************************************************
    * *
    * This is a newly released patch... *
    * *
    * Online links can be found at *
    * http://ftp.support.compaq.com/patches/public/unix/v4.0f/mupssrt0705u_cpqim.README
    *******************************************************************************

    TITLE: Compaq Management Agents for Tru64 UNIX
     
    PATCH IDENTIFICATION: MUPssrt0705u_cpqim

    CATEGORY: Software Update

    OPERATING SYSTEM: Tru64 UNIX V4.0f, 4.0g, 5.0, 5.0a and 5.1
                       
    EFFECTIVE DATE: 1/12/2001

    ELECTRONIC DISTRIBUTION ALLOWED: Yes

    DESCRIPTION:
     This software update contains a new version of the Compaq Management Agents
     for Tru64 UNIX.

    Enhancements/Fixes:
     This patch fixes a potential security vulnerability in the web-enabled portion of
     Compaq Insight Manager for Tru64 UNIX. This security vulnerability could result in
     a modification of the host server's stack and cause denial of service for the agents.
            
    WARNING:
     
     THIS KIT MUST BE RE-INSTALLED FOLLOWING AN UPDATE TO TRU64 UNIX V4.0F, 4.0G, 5.0,
     5.0A, OR 5.1. FAILURE TO DO SO WILL RESULT IN THE INTRODUCTION OF THE SSRT0705
     SECURITY VULNERABILITY.
           
    Instructions on how to apply this software update
    -------------------------------------------------

     The software update is in a file (MUPssrt0705_cpqim.tar) which contains an
     updated version of the agents in setld format.
     
     The goal will be for an administrator to download the software update from
     this FTP site, copy it to the target Tru64 UNIX System and extract the files.

     If you are applying this patch to a cluster, perform the steps below on one
     cluster member only, providing that all members are running.
     
     The following steps provide detailed instructions:

    Step 1: As super user (root) create a temporary directory on the target
            Tru64 UNIX Alpha System, ie: /usr/tmp/patch

            Download the tar file into that directory.

    Step 2: Uncompress and extract the target files

            # cd /usr/tmp/patch
            # /usr/bin/tar xvf MUPssrt0705_cpqim.tar

            A directory named cpqim211 will be extracted. It contains the setld
             kit files.
            
    Step 3: Install the setld kit:

            # /usr/sbin/setld -l cpqim211

    Step 4: Follow the setld instructions.

    Step 5: When the installation is complete, delete the temporary subdirectory
            on the target server.

            # rm -r /usr/tmp/patch

    =============================================================================

    Copyright 2001, Compaq Computer Corporation. All rights reserved.

      Compaq does not warrant that this information is necessarily
      accurate or complete for all user situations and, consequently,
      Compaq will not be responsible for any damages resulting from
      user's use or disregard of the information provided in this
      document.

    Product names mentioned herein may be trademarks and/or registered
    trademarks of their respective companies. 

    ---