OpenLDAP is an open source suite of LDAP (Lightweight Directory Access
Protocol) applications and development tools.
A flaw was found in the way OpenLDAP handled selfwrite access. Users with
selfwrite access were able to modify the distinguished name of any user.
(CVE-2006-4600)
All users are advised to upgrade to these updated openldap packages, which
contain a backported patch to correct this issue.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
RedHat | any | s390 | compat-openldap | < 2.1.30-7.4E | compat-openldap-2.1.30-7.4E.s390.rpm |
RedHat | any | ppc | openldap-devel | < 2.2.13-7.4E | openldap-devel-2.2.13-7.4E.ppc.rpm |
RedHat | any | ppc | openldap-servers | < 2.2.13-7.4E | openldap-servers-2.2.13-7.4E.ppc.rpm |
RedHat | any | s390 | openldap-clients | < 2.2.13-7.4E | openldap-clients-2.2.13-7.4E.s390.rpm |
RedHat | any | ppc | openldap-servers-sql | < 2.2.13-7.4E | openldap-servers-sql-2.2.13-7.4E.ppc.rpm |
RedHat | any | ia64 | openldap-servers | < 2.2.13-7.4E | openldap-servers-2.2.13-7.4E.ia64.rpm |
RedHat | any | x86_64 | openldap-servers | < 2.2.13-7.4E | openldap-servers-2.2.13-7.4E.x86_64.rpm |
RedHat | any | i386 | compat-openldap | < 2.1.30-7.4E | compat-openldap-2.1.30-7.4E.i386.rpm |
RedHat | any | s390x | openldap-devel | < 2.2.13-7.4E | openldap-devel-2.2.13-7.4E.s390x.rpm |
RedHat | any | x86_64 | openldap-devel | < 2.2.13-7.4E | openldap-devel-2.2.13-7.4E.x86_64.rpm |