Patch Name: PHSS_31823 Patch Description: s700_800 11.04 Virtualvault 4.7 IWS update Creation Date: 04/08/06 Post Date: 04/08/17 Hardware Platforms - OS Releases: s700: 11.04 s800: 11.04 Products: Virtualvault A.04.70 Filesets: VaultTS.VV-IWS,fr=A.04.70,fa=HP-UX_B.11.04_32/64,v=HP VaultTS.VV-CORE-CMN,fr=A.04.70,fa=HP-UX_B.11.04_32/64,v=HP Automatic Reboot?: Yes Status: General Release Critical: No Category Tags: defect_repair general_release Path Name: /hp-ux_patches/s700_800/11.X/PHSS_31823 Symptoms: PHSS_31823: 1. SSL-enabled Apache Administration Web Server may exhibit unexpected behavior for mod_ssl versions prior to 2.8.19. PHSS_30944: 1. Apache Administration Web Server may exhibit unexpected behavior with Apache versions prior to 1.3.31 2. SSL-enabled Apache Administration Web Server may exhibit unexpected behavior for mod_ssl versions prior to 2.8.18 3. mod_proxy module of Apache Administration Web Server may exhibit unexpected behavior in versions 1.3.26 to 1.3.31. PHSS_30639: 1. SSL-enabled Apache Administration Web Server may exhibit unexpected behavior with OpenSSL versions prior to 0.9.7d PHSS_30055: 1. Apache Administration Web Server may exhibit unexpected behavior with apache versions prior to 1.3.29. 2. Apache Administration Web Server may exhibit unexpected behavior with OpenSSL versions prior to 0.9.7c. Defect Description: PHSS_31823: 1. SSL-enabled Apache Administration Web Server may exhibit unexpected behavior for mod_ssl versions prior to 2.8.19 Resolution: 1. Migrated mod_ssl module of Apache Administration Web Server version from 2.8.18 to 2.8.19. PHSS_30944: 1. Apache Administration Web Server may exhibit unexpected behavior with Apache versions prior to 1.3.31 2. SSL-enabled Apache Administration Web Server may exhibit unexpected behavior for mod_ssl versions prior to 2.8.18 3. mod_proxy module of Apache Administration Web Server may exhibit unexpected behavior in versions 1.3.26 to 1.3.31. Resolution: 1 Migrated Apache Administration Web Server to version 1.3.31 2. Migrated mod_ssl module of Apache Administration Web Server version from 2.8.17 to 2.8.18. 3. Apache provided a patch for the mod_proxy module that adds a check for invalid content length. PHSS_30639: 1. SSL-enabled Apache Administration Web Server may exhibit unexpected behavior with OpenSSL versions prior to 0.9.7d Resolution: 1. Migrated OpenSSL version of Apache Administration Web Server to 0.9.7d PHSS_30055: 1. Apache Administration Web Server may exhibit unexpected behavior with apache versions prior to 1.3.29. 2. Apache Administration Web Server may exhibit unexpected behavior with OpenSSL versions prior to 0.9.7c. Resolution: 1. Migrated Apache version for the administration server from 1.3.27 to 1.3.29. 2. Migrated OpenSSL version for the administration server from 0.9.6j to 0.9.7c. Enhancement: No SR: 8606374112 8606367048 8606367047 8606363846 8606355700 8606339401 8606295989 Patch Files: VaultTS.VV-IWS,fr=A.04.70,fa=HP-UX_B.11.04_32/64,v=HP: /opt/vaultTS/ws-admserv/bin/httpd VaultTS.VV-CORE-CMN,fr=A.04.70,fa=HP-UX_B.11.04_32/64,v=HP: /opt/vaultTS/bin/openssl what(1) Output: VaultTS.VV-IWS,fr=A.04.70,fa=HP-UX_B.11.04_32/64,v=HP: /opt/vaultTS/ws-admserv/bin/httpd: mod_ssl/2.8.19 $Source: apache/src/main/http_main.c, vaultTS, vault TS_4.7 $ $Date: 04/06/17 06:01:13 $ $Revisio n: 1.5.1.5 PATCH_11.04 (PHSS_30944) $ src/lib/vvcertutil/certutil.c, vaultTS, vaultTS_4.7 1.9 08/14/98 src/lib/vvcertutil/b64dec.c, vaultTS, vaultTS_4.7 1. 1 06/07/97 VaultTS.VV-CORE-CMN,fr=A.04.70,fa=HP-UX_B.11.04_32/64,v=HP: /opt/vaultTS/bin/openssl: None cksum(1) Output: VaultTS.VV-IWS,fr=A.04.70,fa=HP-UX_B.11.04_32/64,v=HP: 1970232094 2829969 /opt/vaultTS/ws-admserv/bin/httpd VaultTS.VV-CORE-CMN,fr=A.04.70,fa=HP-UX_B.11.04_32/64,v=HP: 3710398699 2055758 /opt/vaultTS/bin/openssl Patch Conflicts: None Patch Dependencies: None Hardware Dependencies: None Other Dependencies: None Supersedes: PHSS_30055 PHSS_30639 PHSS_30944 Equivalent Patches: PHSS_31825: s700: 11.04 s800: 11.04 PHSS_31827: s700: 11.04 s800: 11.04 Patch Package Size: 1970 KBytes Installation Instructions: Please review all instructions and the Hewlett-Packard SupportLine User Guide or your Hewlett-Packard support terms and conditions for precautions, scope of license, restrictions, and, limitation of liability and warranties, before installing this patch. ------------------------------------------------------------ 1. Back up your system before installing a patch. 2. Login as root. 3. Copy the patch to the /tmp directory. 4. Move to the /tmp directory and unshar the patch: cd /tmp sh PHSS_31823 5. Run swinstall to install the patch: swinstall -x autoreboot=true -x patch_match_target=true \ -s /tmp/PHSS_31823.depot By default swinstall will archive the original software in /var/adm/sw/save/PHSS_31823. If you do not wish to retain a copy of the original software, include the patch_save_files option in the swinstall command above: -x patch_save_files=false WARNING: If patch_save_files is false when a patch is installed, the patch cannot be deinstalled. Please be careful when using this feature. For future reference, the contents of the PHSS_31823.text file is available in the product readme: swlist -l product -a readme -d @ /tmp/PHSS_31823.depot To put this patch on a magnetic tape and install from the tape drive, use the command: dd if=/tmp/PHSS_31823.depot of=/dev/rmt/0m bs=2k Special Installation Instructions: None