Bugs fixes in "keystone"
| Origin | Bug number | Title | Date fixed |
|---|---|---|---|
| Launchpad | 1290423 | maintainer scripts always/inconsistently run db_sync during upgrade | 2014-03-13 |
| Launchpad | 1289935 | Revoke API calls non-existant method in revoke map syncronize | 2014-03-13 |
| CVE | CVE-2013-2059 | Keystone: Deleted user can still create instances | 2013-05-17 |
| Launchpad | 1166670 | Deleted user can still create instances | 2013-05-17 |
| CVE | CVE-2013-2059 | Keystone: Deleted user can still create instances | 2013-05-17 |
| Launchpad | 1166670 | Deleted user can still create instances | 2013-05-17 |
| CVE | CVE-2012-3542 | OpenStack Keystone, as used in OpenStack Folsom before folsom-rc1 and OpenStack Essex (2012.1), allows remote attackers to add an arbitrary user to a | 2013-05-16 |
| CVE | CVE-2012-5571 | OpenStack Keystone Essex (2012.1) and Folsom (2012.2) does not properly handle EC2 tokens when the user role has been removed from a tenant, which al | 2013-05-16 |
| Launchpad | 1046905 | Memcached Token Backend does not support list tokens | 2013-05-16 |
| Launchpad | 1050025 | Token invalidation in case of role grant/revoke should be limited to affected tenant | 2013-05-16 |
| Launchpad | 1056373 | memcache driver needs protection against unicode user keys | 2013-05-16 |
| Launchpad | 1089488 | Meta bug for tracking Openstack Stable Updates | 2013-05-16 |
| CVE | CVE-2013-0247 | Keystone denial of service through invalid token requests | 2013-05-10 |
| CVE | CVE-2012-3542 | OpenStack Keystone, as used in OpenStack Folsom before folsom-rc1 and OpenStack Essex (2012.1), allows remote attackers to add an arbitrary user to a | 2013-05-10 |
| CVE | CVE-2012-5571 | OpenStack Keystone Essex (2012.1) and Folsom (2012.2) does not properly handle EC2 tokens when the user role has been removed from a tenant, which al | 2013-05-10 |
| CVE | CVE-2013-0282 | EC2-style authentication accepts disabled user/tenants | 2013-05-10 |
| CVE | CVE-2012-4413 | openstack revoking a role does not affect existing tokens | 2013-05-10 |
| CVE | CVE-2013-1664 | Denial of service via xml entity parsing | 2013-05-10 |
| Launchpad | 1040626 | Update user's default tenant partially succeeds without authz | 2013-05-10 |
| Launchpad | 1046905 | Memcached Token Backend does not support list tokens | 2013-05-10 |
About
-
Send Feedback to @ubuntu_updates
