Patches & Updates
Deploy and monitor updates to all of your systems through Sun from anywhere you have an Internet connection.
Start today with Knowledge-based software update services for Solaris and Linux.
Please review changes to Patch Access.
Patches:
Download Patch (62909900 bytes): HTTP 
Download Signed Patch (62914082 bytes): HTTP 
Signed Patch Documentation  Patch Finder

Obsoleted by: 141243-02 Policy Agent 2.2 for Apache 2.0

Disclaimer: 

Please note: Although OBSOLETED patches are available on SunSolve, Sun recommends using the most recent patches and the most recent revision of those patches. OBSOLETED patches do not include the latest bug fixes and/or product enhancements, and may require the installation of additional patches as a corrective measure.

Status: OBSOLETE
Patch Id: 141243-01
***********************************************************************
READ THE TERMS OF THE AGREEMENT ("AGREEMENT") IN THE LEGAL_LICENSE.TXT
FILE CAREFULLY BEFORE USING THIS SOFTWARE. BY USING THE SOFTWARE, YOU
AGREE TO THE TERMS OF THIS AGREEMENT. IF YOU DO NOT AGREE TO ALL OF THE
TERMS, PROMPTLY DESTROY THE UNUSED SOFTWARE.
***********************************************************************
For further information on patching best practices and resources, please
see the Big Admin Patching Center, http://www.sun.com/bigadmin/patches/ 
***********************************************************************
Summary: Obsoleted by: 141243-02 Policy Agent 2.2 for Apache 2.0
Date:  Jul/20/2009
Installation Requirements:
None
Solaris Release: Note: Solaris 9/10 Sparc/x86 32-bit, Solaris 10 Sparc 64-bit, Windows, Red Hat Enterprise Linux 3.0/5.0 32-bit/64-bit, Debian GNU/Linux 3.0 32-bit, AIX 5.3
Sun OS Release: Note: Solaris 9/10 Sparc/x86 32-bit, Solaris 10 Sparc 64-bit, Windows, Red Hat Enterprise Linux 3.0/5.0 32-bit/64-bit, Debian GNU/Linux 3.0 32-bit, AIX 5.3
Unbundled Product: Policy Agent
Unbundled Release: 2.2-03
Xref: 
Topic: 
Policy Agent
Relevant Architecture: all
BugId's fixed with this patch:

6324372 6348824 6388611 6415948 6422880 6424575 6425354 6426407 6432320 6436876 6437044 6440620 6441289 6441340 6454345 6459091 6459689 6462618 6468919 6473138 6474265 6475899 6478254 6481331 6482994 6490037 6493666 6497470 6498382 6499387 6512951 6517216 6518235 6523083 6532260 6534376 6539600 6545159 6547416 6559591 6562986 6567161 6567164 6570155 6576305 6581272 6581279 6582422 6589691 6590223 6591796 6595643 6608463 6629988 6631862 6639069 6640911 6647805 6653582 6654718 6663489 6664608 6672424 6676032 6689264 6689884 6693333 6707603 6709064 6710640 6714995 6715064 6716149 6716192 6723548 6723849 6725383 6728280 6731954 6735280 6736820 6739060 6744530 6747546 6752711 6765838 6766307 6766389 6768406 6774751 6785022 6787007 6788032 6788038 6789020 6795157 6797023 6804139 6812084 6817868 6827797 6829880 6835807 6848590 6854317 6854462

Changes incorporated in this version:

6795157 6672424 6812084 6788038 6789020 6804139 6744530 6709064 6774751 6817868 6785022 6714995 6827797 6788032 6735280 6787007 6797023 6829880 6835807 6854462 6848590 6854317

Patches accumulated and obsoleted by this patch:

Patches which conflict with this patch: 

Required Patches:

Obsoleted by:
  
Files Included in this Patch: 
sun-one-policy-agent-2.2-apache-WINNT.zip
sun-one-policy-agent-2.2-apache-aix.zip
sun-one-policy-agent-2.2-apache-linux.tar.gz
sun-one-policy-agent-2.2-apache-linux64.tar.gz
sun-one-policy-agent-2.2-apache-solaris_sparc.tar.gz
sun-one-policy-agent-2.2-apache-solaris_sparc64.tar.gz
sun-one-policy-agent-2.2-apache-solaris_x86.tar.gz
Problem Description: 
Bugs fixed in 2.2-03
--------------------
6795157 PA 2.2-01 crashes
6672424 PA 2.2 -policy-agent-protected page displays in accordance with the value for header
6812084 Mapped session or profile attrib to HTTP HEADER crashes if too large
6788038 Memory corruption with POST data preservation
6789020 In CDSSO mode non enforced POST requests cannot be accessed
6804139 Web agent causes Web Server hangs if agent's log rotation fails
6744530 Remote logging - Log message sent by WS7.0 2.2 agent had an empty recMsg     
6709064 Profiles attributes that has "dn:dn" corrupt forwarded http headers
6774751 AM 7.1 protected page is jumbled when session is upgraded
6817868 Web agents 2.1 & 2.2: libxml2 library bugs
6785022 Web agent2.2 cannot handle new AM 7.1 advices
6714995 PA didn't reflected the changes in the PA Session Cache when AM Enabled Property
6827797 HTTP Header Corruption, when profile attribute map has title, dn and uid
6788032 Random crashes with IIS6 agent (IIS 6 Agent only)
6735280 IIS6 Policy Agent should support POST data preservation (IIS 6 Agent only)
6787007 GET request causes core dump (SJS Web Proxy Server Agent only)
6797023 Web Server 6.1 agent always set path info to null (SJS Web Server Agent only)
6829880 IIS6 PA does not support agent url override functionality (IIS 6 Agent only)
6835807 Problem with post data preservation feature in (SJS Web Server 6.1 & 7.0 agents only)
6854462 Domino agent 2.2-02 install fails on Solaris (Domino Agent only)
6848590 HTTP POST not working on IIS 5 PA Agents 2.2-02 on Firefox 2.0.X (IIS 5 Agent only)
6854317  When user account doesn't exist in AD, Sharepoint agent should redirect to access denied page (SharePoint Agent only)
 
Bugs fixed in 2.2-02
--------------------
6676032 Possibility to add composite advice in the query instead of sending it through a POST request
6747546 Property com.sun.am.policy.agents.config.ignore_path_info sending PATH_INFO
6725383 Remove the sunwMethod parameter from the URL in CSDSSO
6766307 NSS Initialize is failing when the cert db is not present
6739060 Ldap/session attributes with empty values are added in the request header
6768406 Performance issue in agent 2.2-01 hp3
6723849 Agent Performance drops by 3 times when SSO-Only is enabled
6672424 Agent 2.2 policy-agent-protected page displays in accordance with the value for header
6707603 Web agent crashes when trying to erase a query parameter that doesn't exist
6654718 403 http error encounter when protected pages has multiple frames and auto reload 
6664608 High CPU consumption when running Sun Policy Agent 2.2-01
6663489 Web agent modifies the query part of the url when redirecting the request after login
6629988 Memory corruption resulting in web server crash.
6608463 Web Agent support for policy clock skew
6595643 Possibility to add a "landing page" to the cdcservlet url
6653582 CPU spike in Web agent 2.2 due to sunwErrCode and goto parameters
6640911 In web agents stale policies are not removed creating an infinite loop
6631862 Memory leak in Web Agents
6647805 Need to add HTTP methods for Subversion in Webagents
6731954 Enable large file support for apache agent (Apache 2.0 Agent only)
6715064 Need Agent to display error message instead of 500 error if AM server is not responding (Apache 2.0 Agent and Domino Agent only)
6752711 path_info variable should be encoded if it is encoded in the url (Domino Agent only)
6765838 Domino Policy Agent throws exception when PATH_INFO contains "//" (Domino Agent only)
6710640 Truncation of Cookie Length by Domino Web Policy Agent 2.2-01 (Domino Agent only)
6693333 PA2.2 for Domino7: URL contains JP chars gets corrupted after SSO auth (Domino Agent only)
6639069 Domino agent should never send a null authname (Domino Agent only)
6736820 IIS 6 agent doesn't work properly with ASP pages in CDSSO mode (IIS 6 Agent only)
6766389 Reconstructed url doesn't contain the path info (IIS 6 Agent only)
6716149 pdb files are not provided with IIS5 agent 2.2 (IIS 5 Agent only)
6716192 IIS 5 agent 2.2 crashes because of nspr library (IIS 5 Agent only)
6723548 WPS with PA send request to backend web server when session upgrade (SJS Web Proxy Server 4.0 Agent only)
6689264 Web Proxy 4.0 with Policy Agent 2.2 crashes if "ampxy_host" is null (SJS Web Proxy Server 4.0 Agent only)
6689884 OPTION * causes crash (SJS Web Proxy Server 4.0 Agent only)
6728280 ldap/session attributes with empty values are added in the request header (SJS Web Server 6.1 Agent only)
 
Bugs fixed in 2.2-01
--------------------
6581272 Provide pdb files as part agent bits on Windows platform
6567164 WebDAV support in Web Agents
6567161 Logout url functionality not working when ignore policy evaluation is set to true
6539600 C-SDK - am_sso_validate_token() API having problems
6468919 Web agent should flush policy cache once receiving session notification
6591796 Upgrading NSS and NSPR libraries in web agents
6582422 Memory leak in C-SDK in CDSSO mode
6459689 Possibility to choose the way to handle requests with unknown method
6547416 unknown_method_mode property is not working when set to NONE and SSO only
6517216 Web Agent crash under heavy load...
6523083 Fix for 500 internal error and web agent crash on Solaris 2.9 during load testing
6490037 Web agent 2.2 fails against AM 6.3  
6497470 Agent 2.2 causes proxy4 crash when fetch_from_root_resource set to false  
6481331 Agent 2.2 for Proxy4 crashes when chinese characters are used as part of the  URL
6482994 Agent 2.2 for Proxy Server 4x throws "Server Error" if a colon is used in the URL  
6498382 Resource based idle timeout
6478254 Agent is not posting the auth response back to server in auth to realm condition
6436876 C-SDK causes UWC session timeouts
6432320 Missing  Web Policy Agent 2.2 configuration parameter "cookie.secure" using CDSSO
6437044 Idle time out does not work properly
6441340 Web Agents 2.2 Custom Advice Handling not working with AM 7.1
6425354 Possibility to enable the socket TCP_NODELAY option
6426407 Agent Multi-site failover issue
6422880 WebAgent does not replay the amlbcookie in all the requests it makes to the server
6388611 Agent configured with Policy on condition with time/terminate gives 403 Forbidden
6462618 Apache 2.0.54 agent/RHAS4.0- Accessing resources results in Apache server shut down (Apache Agent only)
6534376 Apache Agent 2.2: REMOTE_USER header should not be set to NULL for non-enforced URLS (Apache Agent only)
6589691 Description: Corrections in Apache agent related to request method strings and numbers (Apache Agent only)
6570155 Apache Agent needs to initialize its thread pool much earlier (Apache Agent only)
6454345 Problem when using apache virtual server and default port (Apache Agent)
6590223 Possibility to set secure cookie in Apache and Domino agent in CDSSO mode (Apache and Domino Agent only)
6348824 Authentication fails for users witjh 5 digits (Domino Agent only)
6518235 Ready to install panel needs to include Sharepoint/OWA in the list of items (IIS 6 Agent only)
6559591 Memory leak and preview pane fixes in IIS6 Auth filter (IIS 6 Agent only)
6581279 Memory leak in IIS6 Policy agent (IIS 6 Agent only)
6324372 Agent for IIS6 crashes when URL is at certain length (IIS 6 Agent only)
6562986 IIS 6 agent does not send proper http response with suncompositeadvice (IIS 6 Agent only)
6474265 Customer encounters long delay when accessing Perl cgi through IIS6 Agent (IIS 6 Agent only )
6499387 Basic Auth filter cannot work with other filters of HIGH priority (IIS 6 Agent only)
6493666 Basic Auth and not-enforced list urls not working in IIS6 agent (IIS 6 Agent only)
6441289 IIS6 Agent fails when configured for CDSSO and enableUniqueSSOTokenCookie (IIS 6 Agent only)
6424575 Agent 2.2 has problems with crashing application pool on windows 2003 (IIS 6 Agent only)
6545159 CDSSO mode wipes out form post data (SJS Web Server 6.1 Agent only)
6440620 In CDSSO mode, after Authorization, GET's are changing to POST's (SJS Web Server 6.1 Agent)
6576305 OWA agent crashing sporadically, which is logged in Windows Event log viewer (IIS 6 Basic Auth filter only)
6559591 Memory leak and preview pane fixes in IIS6 Auth filter (IIS 6 Basic Auth filter only)
6532260 IIS6 OWA Changes (IIS 6 Basic Auth filter only)
6512951 Firefox responding very slowly with the IIS auth filter when used with Sharepoint Services (IIS 6 Basic Auth filter only)
6475899 IIS6 Replay Password Encryption for Basic Authentication (IIS 6 Basic Auth filter only)
6473138 Windows Desktop SSO not working with IIS6 agent (IIS 6 Basic Auth filter only)
6459091 IIS6 Agent hangs when presented with an invalid sso token (IIS 6 Basic Auth filter only)
6415948 IIS 6 agent: problem when IIS Basic Authentication option is set (IIS 6 Basic Auth filter only)
Revision History: 
Patch Installation Instructions: 
----------------------------------
 
1. Download and untar the patch bits to a temporary location.
2. This will contain Agent bits for the specific container, packaged as separate bundles,
   one for each Operating system/supported platform.
3. These bundles are full Agent installation bits.
4. For detailed installation and configuration instructions for a specific Agent/platform,
   refer to release notes
   http://docs.sun.com/app/docs/doc/819-2796/adtaa?a=view
Special Install Instructions: 
Note:
 
Following bug-fixes have corresponding new properties added to AMAgent.properties file.
Please review the AMAgent.properties file as well as the 2.2-0x release notes thoroughly
to learn how to set these properties and understand their purpose.
 
6676032 - property com.sun.am.use_redirect_for_advice
6725383 - property com.sun.am.policy.agents.config.use.sunwmethod
6768406 - property com.sun.am.policy.agents.config.policy_number_of_tries
6715064 - property com.sun.am.policy.agents.config.errorpage.url
6608463 - property com.sun.am.policy.agents.config.policy_clock_skew
6475899 - property com.sun.am.replaypasswd.key
6481331 - property com.sun.am.policy.agents.config.encode_url_special_chars.enable
6432320 - property com.sun.am.cookie.secure
6425354 - property com.sun.am.tcp_nodelay.enable
6426407 - property com.sun.am.connect_timeout
    - property com.sun.am.poll_primary_server








  

    
      
  
      
      

    		
  




 






     
     

     





    

        

        
            

                

                    
                        Sun support customers:
                
more support information is available after you sign in.
                		
                

                
 

                

                    »  
                
                
                    
                        
                            Login
                        
                        
                    
                
                

                

                    »  
                    Register
                

                

                    »  
                    Lost UserName/Password
                

            

        

        

        

    

     







    

    

        
Login Required

        
You must login and have a valid contract to access Sun's Premium content which includes:
        
    
            
  • Sun Alerts
    • 
            
  • Bugs
    • 
            
  • Patches
    • 
            
  • Solutions
    • 
            
  • White Papers
    • 
            
  • Documentation
    • 
            
  • Support Knowledge
    • 
        

    

    






    

    

        
Login Required

        
You must login and have a valid contract to access Sun's contracted features

    

    





    

        

            

                
                    Access Legend:
                    
(Login to access)   Sun Contracted Content
                        
(Login to access)   Sun Contracted Feature
                

            

        

    








 

 

 
Please make use of SunSolve Feedback application by selecting the floating [+] to provide feedback about this specific document.

 

 






    
        
            


            

                

                        


                        

                            
Search

                            

                                    

                                        

                                            
                                            
                                            
                                        

                                    

                                		
                            

                            
Article Details

                            
Article ID :
                                
                            141243-01
                            

                            
Article Type :
                                
                            Patch Descriptions
                            

                            
Last reviewed :
                                
                            2009-11-25
                            

                            
Audience :
                                
                            PUBLIC
                            

                            
Keywords :
                                
                            apache2.0 agents,  security fix
                            

                            
Provide feedback  (help) 

                            
Page Tools

                            
»  Print This Page

                            
»  Email This Article

                            
»  Bookmark This Article

        
                        


                        

                    

            
        
    







    

        
            

                
Security Support


                

                    »  
                    Security Center
                

                

                    »  
                    Report Security Vulnerabilities
                


                

                    »  
                    Security PGP Key
                


                

                    »  
                    Sun Alert Notifications - RSS Feeds
                


                

                    »  
                    Sun Alert Notifications - eNewsletter
                


                

                    »  
                    Solaris Fingerprint Database
                

            

        		
    



 








    

        
            

                
SunSolve Navigation

                

                    »  
                    Forums for contracted customers
                

                

                    »  
                    Licenses
                

               

                    »  
                    Log a Service Request
                

                

                    »  
                    Patches and Updates
                

                

                    »  
                    Product Download Center
                

                

                    »  
                    SunSystem Handbook
                

                
»  
                    SunSolve Japan
                

            

        		
    









    

        
            

                
SunSolve Feedback, Help and Updates

                

                    »  
                    Blog
                

                

                    »  
                    Community
                

                

                    »  
                    Feedback
                

                

                    »  
                    Help
                

                

                    »  
                    Learn about SunSolve
                

                

                    »  
                    Twitter
                

            

        		
    








     
     







   
   







     












About Oracle |
Oracle and Sun |
 Oracle RSS Feeds |
Subscribe |
Careers |
Contact Us |
Site Maps |
Legal Notices |
Terms of Use |
Your Privacy Rights |
Copyright  © 2010, Oracle Corporation and/or its affiliates
| SunSolve Version 7.4.2 #1