The LDAP Tool Box project provides a set of LDAP-related applications, administrative tools, and other utilities. They have just released version 2.8 of their slapd-cli tools (formerly called openldap-initscript), which provide a set of command-line tools for OpenLDAP. This release includes the following changes:

• Fixed a potential privilege escalation vulnerability that could be exploited by manipulating the PID file
• Fixed a potential privilege escalation vulnerability that could result from recursive file ownership changes
• Fixed a checksync tool issue with multiple suffixes
• Fixed an issue when the OpenLDAP service used a name other than “slapd”
• Migrated away from deprecated memberOf configuration
• Migrated away from init.d references in favor of systemd
• Added support for command-line autocomplete
• Updated the status output to include the OpenLDAP version
• Provide an option to use a default configuration and sample data
• Updated documentation