You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Bug description: When attempting to delete a password from an
entry, a password syntax checking api check_pw_syntax_ext missed
a check if the target entry exists or not. Note: add and replace
checks it and handles the case correctly.
Fix description: In this patch the check is added to the delete
case, as well.
Cloned from Pagure issue: https://pagure.io/389-ds-base/issue/584
Steps:
0. assume there is no entry which dn is uid=tuser1,,ou=People,dc=example,dc=com
delete a password of the non-existing entry
$ ldapmodify ... << EOF
dn: uid=tuser1,,ou=People,dc=example,dc=com
changetype: modify
delete: userpassword
(userpassword: tuser1)
EOF
If the bind user has the privilege to delete the password, the operation crashes the server.
The text was updated successfully, but these errors were encountered: