CVE-2015-1854 389ds-base: access control bypass with modrdn
Bug Description:
47553 fix checks the write right access only if the RDN is
modified. This allows to rename entries even if the
authenticated user is not allowed of that.
Fix Description:
Roll back a wrong optimization that tested the write access
only if RDN value was changed.
https://fedorahosted.org/389/ticket/47553
Reviewed by: ?
Platforms tested: F17 (upstream test)
Flag Day: no
Doc impact: no
(cherry picked from commit 44e5c0998bdf7dcb167e8472713ff393b776e4e3)
Conflicts:
dirsrvtests/tickets/ticket47553_single_aci_test.py
(cherry picked from commit 886ae7eb6f5bace39105129098833f828d617855)