CVE-2016-5416

Name of the Vulnerable Software and Affected Versions Red Hat Enterprise Linux Desktop versions 6 through 7 Red Hat Enterprise Linux HPC Node versions 6 through 7 Red Hat Enterprise Linux Server versions 6 through 7 Red Hat Enterprise Linux Workstation versions 6 through 7 389 Directory Server (affected versions not specified)

Description The issue allows remote attackers to read the default Access Control Instructions in 389 Directory Server within various Red Hat Enterprise Linux versions.

Recommendations For Red Hat Enterprise Linux Desktop versions 6 through 7, update the 389 Directory Server configuration to restrict access to sensitive information. For Red Hat Enterprise Linux HPC Node versions 6 through 7, update the 389 Directory Server configuration to restrict access to sensitive information. For Red Hat Enterprise Linux Server versions 6 through 7, update the 389 Directory Server configuration to restrict access to sensitive information. For Red Hat Enterprise Linux Workstation versions 6 through 7, update the 389 Directory Server configuration to restrict access to sensitive information. As a temporary workaround, consider restricting access to the 389 Directory Server until a patch is available.