Patch-ID# 120094-36


Download this patch from My Oracle Support

Your use of the firmware, software and any other materials contained in this update is subject to My Oracle Support Terms of Use, which may be viewed at My Oracle Support.
For further information on patching best practices and resources, please see the following links:
Copyright (c) 2012, Oracle and/or its affiliates. All rights reserved.

Keywords: security xscreensaver
Synopsis: X11 6.6.2: xscreensaver patch
Date: Oct/09/2014


Install Requirements: NA

Solaris Release: 10

SunOS Release: 5.10

Unbundled Product: X11

Unbundled Release: 6.6.2

Xref: This patch available for x86 as patch 120095

Topic:

Relevant Architectures: sparc

Bugs fixed with this patch:

Sun CR # Bug #
17046701
17046774
480672815142600
481806215146235
501529615201967
507797415219996
508315515221761
620395115239418
622802315248824
623224115250596
623790115252945
624093815254157
625652015260794
626730615264645
633322615290550
634605615295912
636855815305046
636860715305084
636902115305334
637379715307413
638847315314194
639564915317555
640620015322479
641716815326852
642373015329513
645001915340706
645147715341386
645649915343995
646188715346556
647836215354012
647884115354196
648397715356573
657318215405753
658086215410030
658324715411306
660711215424697
660762915425108
661028215426641
661166215427472
665231115451695
665245415451768
667065915462355
669899615478889
673615715500787
675744815513960
676990115521700
682537415553552
683902615561643
684548815565602
684575115565807
684912415568147
685903915574928
686565215578720
687593015585117
692499615621645
693549715630084
695513315645301
695775415647215
702364815700093
703013615704574


Changes incorporated in this version: 17046701

Patches accumulated and obsoleted by this patch:

Patches which conflict with this patch:

Patches required with this patch:

Obsoleted by:

Files included with this patch:

/usr/openwin/bin/xscreensaver
/usr/openwin/bin/xscreensaver-command
/usr/openwin/bin/xscreensaver-demo
/usr/openwin/lib/app-defaults/XScreenSaver
/usr/openwin/lib/xscreensaver/bin/xscreensaver-getimage
/usr/openwin/lib/xscreensaver/bin/xscreensaver-getimage-video
/usr/openwin/lib/xscreensaver/bin/xscreensaver-lock
/usr/openwin/lib/xscreensaver/config/xscreensaver-demo.glade2
/usr/openwin/lib/xscreensaver/hacks/vidwhacker

Problem Description:

17046701 problem in xscreensaver
 
(from 120094-35)
 
17046774 problem with xscreensaver
 
(from 120094-34)
 
7030136 removing dead code from screensaver
7023648 xscreensaver does not allow user to enter password and login w/ sv_SE.ISO8859-01/-15
 
(from 120094-33)
 
6955133 IDLECMD in policy.conf does not work with TJDS and LDAP users
 
(from 120094-32)
 
6957754 xscreensaver-lock is left behind in non-English or non-UTF-8 locales even if xscreensaver dies
 
(from 120094-31)
 
6935497 JDS xscreensaver lock screen requires Oracle rebranding
6845751 xscreensaver-lock chews CPU when daemon dies while unlock dialog is up (refix)
 
(from 120094-30)
 
6924996 high volume of Xlib: extension "RANDR" missing on display from screensaver
6845751 xscreensaver-lock chews CPU when daemon dies while unlock dialog is up
 
(from 120094-29)
 
6875930 security issues with a11y: popup windows come through screensaver when a11y is turned on  
6849124 xscreensaver leaves a dialog that cannot be moved/closed after password change warning 
6839026 [tx] Xsun chews CPU when xscreensaver locks - console appears to be hung (refix)	
 
(from 120094-28)
 
6865652 restart daemon should be disabled in xscreensaver-demo
 
(from 120094-27)
 
6839026 [tx] Xsun chews CPU when xscreensaver locks - console appears to be hung
 
(from 120094-26)
 
6859039 XScreenSaver Symbolic Link Local Information Disclosure Vulnerability
6757448 xscreensaver doesn't notice XRandR resize events
 
(from 120094-25)
 
6845488 [tjds] help system needs to be more restrictive
 
(from 120094-24)
 
6736157 [A11Y] security problem when desktop a11y support is turned on
 
(from 120094-23)
 
6825374 popup still appearing through xscreensaver under Xorg
 
(from 120094-22)
 
6769901 popup windows appearing through xscreensaver
 
(from 120094-21)
 
6583247 JDS session is accessible for a while before xscreensaver lock is displayed on hotdesking
 
(from 120094-20)
 
6698996 TJDS screen is not locked and is waiting for the role password
 
(from 120094-19)
 
6670659 password dialog window remains on the screen even after screen is unlocked
 
(from 120094-18)
 
6607629 "Kill daemon" option of xscreensaver application should not work for normal user on TJDS
6652311 DTU specific issue: [tjds] xscreensaver-demo should always be launched in global zone
 
(from 120094-17)
 
6611662 desktop sessions go blank within few seconds of logging
6652454 xscreensaver does not invoke after IDLE time expires from a Sun Ray DTU
 
(from 120094-16)
 
6610282 On-Screen Keyboard application and desktop shown without unlocking xscreensaver lock screen on TJDS
 
(from 120094-15)
 
6573182 after applying patch 120094-11 (or greater), xscreensaver coredumps
6607112 xscreensaver doesn't wake up with mouse movements on TJDS
 
(from 120094-14)
 
6580862 unable to type in Windows session with full screen mode when hotdesked into same DTU on TJDS
 
(from 120094-13)
 
6483977 double password request by xscreensaver under certain conditions
 
(from 120094-12)
 
6451477 [tjds] xscreensaver-demo should always be launched in global zone
 
(from 120094-11)
 
6395649 at-spi-registryd starts when screen is locked even when accessible device support is off
6461887 GNOME screen lock does not prevent access to other applications via 'alt-tab'
6478362 when AT support is enabled, input focus is located at password label
6478841 hard-coded display number in screensaver with dual/multiple heads env
 
(from 120094-10)
 
6388473 xscreensaver needs to be modified for Trusted JDS
6406200 need Trusted logo in xscreensaver-lock program
 
(from 120094-09)
 
6456499 cannot unlock screen with smartcard after installing patch 120094-08
 
(from 120094-08)
 
5077974 bugID 147583: Screen Lock unlocks without authentication
5083155 [Cinnabar Solaris] unable to unlock screen when running dual-head magnification
6240938 xscreensaver-lock's password timer needs to to be reset for each key
6346056 (rework) xscreensaver should not enable input method 
6450019 unable to enter passwd for GNOME 2.14 screen saver, "System Error"
 
(from 120094-07)
 
6232241 NSCM login takes username twice
6333226 xscreensaver (JDS) hangs while using smartcard if it's idle overnight
6417168 xscreensaver loops while trying to unlock session for user whose password was expired 
5015296 xscreensaver doesn't audit
6256520 xscreensaver: 'Can't run hacks if logged in as root!' unlocalized
6373797 xscreensaver spews 'extension "GLX" missing on display' all over console
6423730 xscreensaver fails with more than 4 Xinput devices
 
(from 120094-06)
 
6346056 xscreensaver should not enable input method
 
(from 120094-05)
 
4806728 Dialognostics should be Diagnostics in the Advanced tab of xscreensaver-demo
4818062 mouse-over displays incorrect information
6368558 JDS unlock dialog logo not in line with unified "coolstart" branding
6368607 increase unlock dialog box timeout to 2 minutes
6369021 xscreensaver preferences panel shouldn't say "passwdTimeout"
 
(from 120094-04)
 
6203951 xscreensaver lockscreen translation errors
 
(from 120094-03)
 
6228023 xscreensaver segfaults when XInputExtension is missing
 
(from 120094-02)
 
6267306 new image should be included in xscreensaver dialog
 
(from 120094-01)
 
6237901 LDAP and GNOME xscreensaver authentication failure


Patch Installation Instructions:
-------------------------------- 
 
Please refer to the man pages for instructions on using 'patchadd'
and 'patchrm' commands provided with Solaris.
 
The following example installs a patch to a standalone machine:
 
       example# patchadd /var/spool/patch/123456-07
 
The following example removes a patch from a standalone system:
 
       example# patchrm 123456-07
 
For additional examples please see the appropriate man pages. Any
other special or non-generic installation instructions should be
described below as special instructions.


Special Install Instructions:
----------------------------- 
 
None.


README -- Last modified date: Thursday, October 9, 2014