Scientific Linux Security Update : Important: 389-Ds-Base Security Update on SL7.x srpm/x86_64
High Nessus Plugin ID 83174
SynopsisThe remote Scientific Linux host is missing one or more security updates.
DescriptionA flaw was found in the way the Directory Server performed authorization of modrdn operations. An unauthenticated attacker able to issue an ldapmodrdn call to the directory server could use this flaw to perform unauthorized modifications of entries in the directory server. (CVE-2015-1854)
After installing this update, the 389 server service will be restarted automatically.
SolutionUpdate the affected packages.