Patch-ID# 108129-05 Keywords: security Fontserver crashes xfs zombie core error-file cloned Synopsis: OpenWindows 3.6: Font Server patch Date: Dec/18/2002 Install Requirements: See Special Install Instructions Solaris Release: 2.6 SunOS Release: 5.6 Unbundled Product: OpenWindows Unbundled Release: 3.6 Xref: This patch available for x86 as 108130 Topic: Relevant Architectures: sparc BugId's fixed with this patch: 4239205 4302139 4314299 4323233 4335325 4335328 4336593 4345905 4764193 Changes incorporated in this version: 4764193 Patches accumulated and obsoleted by this patch: Patches which conflict with this patch: Patches required with this patch: Obsoleted by: Files included with this patch: /usr/openwin/bin/xfs Problem Description: 4764193 CERT Advisory CA-2002-34: xfs crashes on bad request (refix) (from 108129-04) 4764193 xfs crashes on bad request (from 108129-03) 4345905 cloned xfs can't write to error log file when the fix bug #4323233 is (from 108129-02) 4335325 xfs doesn't clone itself if client-limit is larger than file descriptor 4335328 The zombie processes are created when the fix bug #4323233 is used. 4336593 xfs core dumped 4323233 font server (xfs) not forking after client-limit is reached and inherits fd's 4314299 /usr/openwin/bin/xfs dumps core 4302139 patch (108117-01,108118-02) removes error-file configuration option for xfs (from 108129-01) 4239205 Fontserver crashes Patch Installation Instructions: -------------------------------- For Solaris 2.0-2.6 releases, refer to the Install.info file and/or the README within the patch for instructions on using the generic 'installpatch' and 'backoutpatch' scripts provided with each patch. For Solaris 7 release, refer to the man pages for instructions on using 'patchadd' and 'patchrm' scripts provided with Solaris. Any other special or non-generic installation instructions should be described below as special instructions. The following example installs a patch to a standalone machine: example# patchadd /var/spool/patch/104945-02 The following example removes a patch from a standalone system: example# patchrm 104945-02 For additional examples please see the appropriate man pages. Special Install Instructions: ----------------------------- The X Window System Font Server, xfs, is normally started automatically from inetd on Solaris when a request for a font service is received. Therefore, to protect a running system against bug 4764193, after installing this patch, you must either reboot or stop all running xfs instances. Xsun clients using the font server will detect the font server shutdown and reconnect automatically to a new instance of the font server. Unfortunately, some other font clients, such as some versions of Xvnc, will not reconnect automatically and will need to be stopped before killing the font server and restarted again after the font server is restarted. (If xfs is still being run from inetd, inetd will automatically restart on the first connection attempt.) To kill xfs, use ps to identify the process id of 'fs' and, as root, run 'kill '. README -- Last modified date: Wednesday, December 18, 2002