Manualshelf

Installation guide

ManualsBrandsRed Hat ManualsConsumer electronicsDIRECTORY 8.1 RELEASE NOTES
21222324252627282930
honored.
520151 When the proxy authentication was used, the
proxy user was unable to change the
"userPassword" attribute of another user,
although the proxy user had sufficient rights to do
so. T his update has fixed the problem so that the
proxy user is now able to change the attribute.
707015 Previously, disabling the use of SSLv3 with the
FIPS Mode on was not supported so that Red Hat
Directory Server had no way to explicitly disallow
the use of SSLv3 and only use T LSv1 after the
FIPS mode was enabled. This update adds the
necessary support for disabling SSLv3 with the
FIPS Mode on and thus fixes the problem.
February 22,
2011
RHSA-
2011:0293
CVE-2011-
0019
A flaw was found in the way Red Hat Directory
Server handled simple paged result searches. If
an unauthenticated user were able to send
multiple simple paged search requests to
Directory Server, it could cause the server to
crash.
CVE-2011-
0022
When multiple Red Hat Directory Server
instances were configured on the system to run
under different unprivileged users, the Directory
Server setup scripts set insecure permissions on
the /var/run/dirsrv/ directory, which stores
process ID (pid) files. A local user could use this
flaw to manipulate the pid files in that directory,
possibly preventing Directory Server instances
from starting correctly, or causing the Directory
Server init script to kill an arbitrary process when
shutting down Directory Server.
CVE-2011-
0532
Multiple scripts set the LD_LIBRARY_PATH
environment variable to an insecure value
containing an empty path. A local user able to
trick a user running those scripts (usually the root
user) to run them while working from an attacker-
writable directory could use this flaw to escalate
their privileges via a specially-crafted dynamic
library.
January 3,
2011
RHBA-
2011:0003
614511 The DN normalization routines could possibly
dereference a NULL pointer.
640027 A DN with multi-valued RDNs could be incorrectly
normalized if it contained an escaped '+'
character.
641944 The DN normalization routines would normalize
non-DN attributes used in the RDN as if they
contained a DN value. T his resulted in incorrectly
normalized values.
November 10,
2010
RHBA-
2010:0874
644608 During an upgrade, the ancestorid could be
rebuilt with an incorrect order, causing search
Red Hat Directory Server 8.2 Red Hat Directory Server 8.2 Release Notes
20