https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=203043 Bug(s) fixed: 203043 Bug Description: When using the password modify extended operation, the password modify request is allowed to have all three of it's fields (userIdentity, oldPassword, newPassword) empty. When this happens, our server returns LDAP_PROTOCOL_ERROR along with an error message of "ber_scanf failed". Reviewed by: ??? Files: passwd_extop.c Branch: HEAD Fix Description: Even though all three of the password modify request fields are optional, our server requires a new password to be supplied since we don't support server-side password generation. Because of this, we can safely return an error message stating that the user must supply a new password. Platforms tested: RHEL4 Flag Day: no Doc impact: no https://bugzilla.redhat.com/bugzilla/attachment.cgi?id=134417
Attachment:
smime.p7s
Description: S/MIME Cryptographic Signature