Oval Definition:oval:com.redhat.rhsa:def:20070310
Revision Date:2007-05-01Version:635
Title:RHSA-2007:0310: openldap security update (Low)
Description:OpenLDAP is an open source suite of LDAP (Lightweight Directory Access Protocol) applications and development tools.

  • A flaw was found in the way OpenLDAP handled selfwrite access. Users with selfwrite access were able to modify the distinguished name of any user. (CVE-2006-4600)

    All users are advised to upgrade to these updated openldap packages, which contain a backported patch to correct this issue.
    • Family:unixClass:patch
    Status:Reference(s):CVE-2006-4600
    RHSA-2007:0310
    RHSA-2007:0310-02
    RHSA-2007:0310-02
    Platform(s):Red Hat Enterprise Linux 4
    		Product(s):
    Definition Synopsis
  • Red Hat Enterprise Linux must be installed
  • OR Package Information
  • Red Hat Enterprise Linux 4 is installed
  • AND
  • compat-openldap is earlier than 0:2.1.30-7.4E
  • AND compat-openldap is signed with Red Hat redhatrelease2 key
  • openldap is earlier than 0:2.2.13-7.4E
  • AND openldap is signed with Red Hat redhatrelease2 key
  • openldap-clients is earlier than 0:2.2.13-7.4E
  • AND openldap-clients is signed with Red Hat redhatrelease2 key
  • openldap-devel is earlier than 0:2.2.13-7.4E
  • AND openldap-devel is signed with Red Hat redhatrelease2 key
  • openldap-servers is earlier than 0:2.2.13-7.4E
  • AND openldap-servers is signed with Red Hat redhatrelease2 key
  • openldap-servers-sql is earlier than 0:2.2.13-7.4E
  • AND openldap-servers-sql is signed with Red Hat redhatrelease2 key
    • BACK