Candidate: CVE-2012-4450
PublicDate: 2012-10-01 03:26:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-4450
Description:
 389 Directory Server 1.2.10 does not properly update the ACL when a DN
 entry is moved by a modrdn operation, which allows remote authenticated
 users with certain permissions to bypass ACL restrictions and access the DN
 entry.
Ubuntu-Description:
Notes:
Bugs:
Priority: medium
Discovered-by:
Assigned-to:
CVSS: 

Patches_389-ds-base:
 upstream: http://git.fedorahosted.org/cgit/389/ds.git/commit/?id=5beb93d42efb807838c09c5fab898876876f8d09
upstream_389-ds-base: released (1.2.11.16)
hardy_389-ds-base: DNE
lucid_389-ds-base: DNE
natty_389-ds-base: DNE
oneiric_389-ds-base: DNE
precise_389-ds-base: ignored (reached end-of-life)
precise/esm_389-ds-base: DNE (precise was needed)
quantal_389-ds-base: ignored (reached end-of-life)
raring_389-ds-base: not-affected (1.3.0.3-1ubuntu1)
saucy_389-ds-base: not-affected (1.3.0.3-1ubuntu1)
trusty_389-ds-base: not-affected (1.3.0.3-1ubuntu1)
trusty/esm_389-ds-base: DNE (trusty was not-affected [1.3.0.3-1ubuntu1])
utopic_389-ds-base: not-affected (1.3.0.3-1ubuntu1)
vivid_389-ds-base: not-affected (1.3.0.3-1ubuntu1)
vivid/stable-phone-overlay_389-ds-base: DNE
vivid/ubuntu-core_389-ds-base: DNE
wily_389-ds-base: not-affected (1.3.0.3-1ubuntu1)
xenial_389-ds-base: not-affected (1.3.0.3-1ubuntu1)
yakkety_389-ds-base: not-affected (1.3.0.3-1ubuntu1)
zesty_389-ds-base: not-affected (1.3.0.3-1ubuntu1)
devel_389-ds-base: not-affected (1.3.0.3-1ubuntu1)