openSUSE 10 Security Update : openldap2 (openldap2-1917)
High Nessus Plugin ID 27363
SynopsisThe remote openSUSE host is missing a security update.
DescriptionThis fixes a bug in the Access Control Processing that allowed users with 'selfwrite' access to an attribute to modify arbitrary values of that attribute, instead of just allowing them to add/delete their own DN to/from that attribute.
SolutionUpdate the affected openldap2 package.