Howard Chu has reported a security issue in OpenLDAP, which can be exploited by malicious users to bypass certain security restrictions.
The security issue is caused due to an error within the Access Control List processing. If a user has "selfwrite" access to an attribute, this can be exploited to modify arbitrary values of the attribute.
Solution: Update to version 2.3.25.
Provided and/or discovered by: Howard Chu
Original Advisory: http://www.openldap.org/its/index.cgi/Software%20Bugs?id=4587
Do you have additional information related to this advisory?
Please provide information about patches, mitigating factors, new versions, exploits, faulty patches, links, and other relevant data by posting comments to this Advisory. You can also send this
information to firstname.lastname@example.org