Note: This is an archival copy of Security Sun Alert 200008 as previously published on http://sunsolve.sun.com.
Latest version of this security advisory is available from http://support.oracle.com as Sun Alert 1000007.1.
Article ID : 1000007.1
Article Type : Sun Alerts (SURE)
Last reviewed : 2006-11-05
Audience : PUBLIC
Copyright Notice: Copyright © 2010, Oracle Corporation and/or its affiliates.

CDE dtsession Patches 113240-07, 113240-08, 109354-21, and 109354-22 WITHDRAWN, May Cause Lockscreen to Fail or Hang

Category
Security

Category
Availability

Release Phase
Resolved

Product
Solaris 9 Operating System
Solaris 8 Operating System

Bug Id
5023052

Date of Workaround Release
09-APR-2004

Date of Resolved Release
07-MAY-2004

Impact

Sun Ray servers running Solaris 8 or Solaris 9 with patches 113240-07, 113240-08, 109354-21, or 109354-22 installed, may fail to lock the screen when a Smartcard is removed and reinserted more than 90 seconds later. Removing and reinserting the Smartcard a second time may cause the lockscreen session to hang.

Note: Patches 113240-07, 113240-08, 109354-21, and 109354-22 have been WITHDRAWN and are no longer available on SunSolve.


Contributing Factors

This issue can occur in the following releases:

SPARC Platform

  • Sun Ray Server Software (SRSS) Version 2.0 for Solaris 8 with patch 109354-21 or 109354-22 and without patch 109354-23
  • Sun Ray Server Software (SRSS) Version 2.0 for Solaris 9 with patch 113240-07 or 113240-08 and without patch 113240-09

Note: This issue only occurs on Sun Ray servers running CDE when a Smartcard is used.


Symptoms

If the described issue occurs the lockscreen password window will fail to appear upon removing and inserting the Smartcard.


Workaround

To recover from the described issue, the hanging session must be terminated. To terminate the session on a Sun Ray system, press and hold down the <Control> key and the <Alt> key simultaneously while pressing the <Back Space> key twice.

Note: Any unsaved data will be lost.

To workaround the described issue, apply one of the following suggestions:

Remove patch 113240-07, 113240-08, 109354-21, or 109354-22 from the system.

Or

Press the lock button on the CDE front panel before removing the Smartcard. This will correctly lock the session and prevent the lockscreen from hanging when the Smartcard is reinserted.


Resolution

This issue is addressed in the following releases:

SPARC Platform

  • Sun Ray Server Software (SRSS) Version 2.0 for Solaris 8 with patch 109354-23 or later
  • Sun Ray Server Software (SRSS) Version 2.0 for Solaris 9 with patch 113240-09 or later


Modification History
Date: 07-MAY-2004
  • State: Resolved
  • Updated Contributing Factors and Relief/Workaround sections

Date: 17-OCT-2006
  • Updated Relief/Workaround Section


References

109354-23
113240-09




Attachments
This solution has no attachment