Denial Of Service (DoS)

redhat-ds-base is vulnerable to denial of service (DoS). The vulnerability exists when multiple Red Hat Directory Server instances were configured on the system to run under different unprivileged users, the Directory Server setup scripts set insecure permissions on the /var/run/dirsrv/ directory, which stores process ID (pid) files. A local user could use this flaw to manipulate the pid files in that directory, possibly preventing Directory Server instances from starting correctly, or causing the Directory Server init script to kill an arbitrary process when shutting down Directory Server.