Viktor Ashirov

**Name of the Vulnerable Software and Affected Versions** Red Hat Enterprise Linux Desktop versions 6 through 7 Red Hat Enterprise Linux HPC Node versions 6 through 7 Red Hat Enterprise Linux Server versions 6 through 7 Red Hat Enterprise Linux Workstation versions 6 through 7 389 Directory Server (affected versions not specified) **Description** The issue allows remote attackers to read the default Access Control Instructions in 389 Directory Server within various Red Hat Enterprise Linux versions. **Recommendations** For Red Hat Enterprise Linux Desktop versions 6 through 7, update the 389 Directory Server configuration to restrict access to sensitive information. For Red Hat Enterprise Linux HPC Node versions 6 through 7, update the 389 Directory Server configuration to restrict access to sensitive information. For Red Hat Enterprise Linux Server versions 6 through 7, update the 389 Directory Server configuration to restrict access to sensitive information. For Red Hat Enterprise Linux Workstation versions 6 through 7, update the 389 Directory Server configuration to restrict access to sensitive information. As a temporary workaround, consider restricting access to the 389 Directory Server until a patch is available.