Bugs fixes in "keystone"
Origin | Bug number | Title | Date fixed |
---|---|---|---|
Launchpad | 1041396 | Token validation includes revoked roles (CVE-2012-4413) | 2013-05-10 |
Launchpad | 1050025 | Token invalidation in case of role grant/revoke should be limited to affected tenant | 2013-05-10 |
Launchpad | 1056373 | memcache driver needs protection against unicode user keys | 2013-05-10 |
Launchpad | 1064914 | Removing user from a tenant isn't invalidating user access to tenant | 2013-05-10 |
Launchpad | 1089488 | Meta bug for tracking Openstack Stable Updates | 2013-05-10 |
CVE | CVE-2013-1665 | Information leak via xml entity parsing | 2013-02-21 |
CVE | CVE-2013-1664 | Denial of service via xml entity parsing | 2013-02-21 |
CVE | CVE-2013-0282 | EC2-style authentication accepts disabled user/tenants | 2013-02-21 |
Launchpad | 1100279 | Local file leak through entities in XML requests (CVE-2013-1665) | 2013-02-21 |
Launchpad | 1121494 | EC2 authentication does not ensure user or tenant is enabled | 2013-02-21 |
CVE | CVE-2013-1665 | Information leak via xml entity parsing | 2013-02-20 |
CVE | CVE-2013-1664 | Denial of service via xml entity parsing | 2013-02-20 |
CVE | CVE-2013-0282 | EC2-style authentication accepts disabled user/tenants | 2013-02-20 |
Launchpad | 1100279 | Local file leak through entities in XML requests (CVE-2013-1665) | 2013-02-20 |
Launchpad | 1121494 | EC2 authentication does not ensure user or tenant is enabled | 2013-02-20 |
CVE | CVE-2013-0247 | Keystone denial of service through invalid token requests | 2013-02-06 |
CVE | CVE-2013-0247 | Keystone denial of service through invalid token requests | 2013-02-05 |
Launchpad | 1064914 | Removing user from a tenant isn't invalidating user access to tenant | 2012-11-28 |
Launchpad | 1064914 | Removing user from a tenant isn't invalidating user access to tenant | 2012-11-28 |
Launchpad | 1041396 | Token validation includes revoked roles (CVE-2012-4413) | 2012-09-13 |
About
-
Send Feedback to @ubuntu_updates