It was discovered that the Red Hat Certificate System's / Dogtag Certificate System's Certificate Manager did not properly check certificate revocation requests. An agent permitted to perform revocations of end entity certificates via Certificate System's web interface could use this flaw to revoke the Certificate Authority (CA) certificate.
The issue was originally reported via Red Hatbug #832212.
Patch applied to address this issue:
This issue has been addressed in following products:
Red Hat Certificate System 8
Via RHSA-2012:1103 https://rhn.redhat.com/errata/RHSA-2012-1103.html