UbuntuUpdates.org

Package "keystone"

Name: keystone

Description:

OpenStack identity service - Daemons

Latest version: 2:9.3.0-0ubuntu3.1
Release: xenial (16.04)
Level: security
Repository: main
Homepage: http://launchpad.net/keystone

Links

Save this URL for the latest version of "keystone": https://www.ubuntuupdates.org/keystone


Download "keystone"


Other versions of "keystone" in Xenial

Repository Area Version
base main 2:9.0.0-0ubuntu1
updates main 2:9.3.0-0ubuntu3.2

Packages in group

Deleted packages are displayed in grey.


Changelog

Version: 2:9.3.0-0ubuntu3.1 2017-10-11 13:06:49 UTC

  keystone (2:9.3.0-0ubuntu3.1) xenial-security; urgency=medium

  * SECURITY UPDATE: Incorrect role assignment with federated Keystone
    - debian/patches/CVE-2017-2673.patch: do not fetch group assignments
      without groups in keystone/assignment/core.py.
    - CVE-2017-2673
  - debian/patches/fix_requirements.patch: fix ftbfs.

 -- Marc Deslauriers <email address hidden> Fri, 25 Aug 2017 10:41:13 -0400

CVE-2017-2673 federated user gets wrong role



About   -   Send Feedback to @ubuntu_updates