Patch-ID# 103671-02
Keywords: security convert sdtcm calendar file overwrite
Synopsis: CDE 1.0.1: sdtcm_convert has a security vulnerability
Date: Dec/23/96

Solaris Release: 2.4, 2.5

SunOS Release: 5.4, 5.5

Unbundled Product: CDE

Unbundled Release: 1.0.1

Xref: This patch available on CDE 1.0.2 as patch 103670

Relevant Architectures: sparc

BugId's fixed with this patch: 1264172

Changes incorporated in this version: 1250240 1264172

Patches accumulated and obsoleted by this patch: 

Patches which conflict with this patch: 

Patches required with this patch: 

Obsoleted by: 

Files included with this patch:

	/usr/dt/bin/sdtcm_convert

Problem Description: 

        1264172 CDE 1.0.1 and 1.0.2 sdtcm_convert  security vulnerability
	1250240 sdtcm_convert can be used to overwrite files.

Patch Installation Instructions:
-------------------------------- 
Refer to the Install.info file for instructions on using the
generic 'installpatch' and 'backoutpatch' scripts provided with
each patch.  Any other special or non-generic installation
instructions should be described below as special instructions.

Special Install Instructions: 
----------------------------- 

None.