SuSE 10 Security Update : openldap2 (ZYPP Patch Number 1916)
High Nessus Plugin ID 29535
SynopsisThe remote SuSE 10 host is missing a security-related patch.
DescriptionThis fixes a bug in the Access Control Processing that allowed users with 'selfwrite' access to an attribute to modify arbitrary values of that attribute, instead of just allowing them to add/delete their own DN to/from that attribute.
SolutionApply ZYPP patch number 1916.