cgrzemba / 389-ds-base

Forked from 389-ds-base 5 years ago
Clone

1dbce48 CVE-2015-1854 389ds-base: access control bypass with modrdn

3 files Authored by tbordaz 8 years ago, Committed by nhosoi 8 years ago,
    CVE-2015-1854 389ds-base: access control bypass with modrdn
    
    Bug Description:
    	47553 fix checks the write right access only if the RDN is
    	modified. This allows to rename entries even if the
    	authenticated user is not allowed of that.
    
    Fix Description:
    	Roll back a wrong optimization that tested the write access
    	only if RDN value was changed.
    
    https://fedorahosted.org/389/ticket/47553
    
    Reviewed by: ?
    
    Platforms tested: F17 (upstream test)
    
    Flag Day: no
    
    Doc impact: no
    
    (cherry picked from commit 44e5c0998bdf7dcb167e8472713ff393b776e4e3)
    
    Conflicts:
    	dirsrvtests/tickets/ticket47553_single_aci_test.py
    
    (cherry picked from commit 886ae7eb6f5bace39105129098833f828d617855)