Ubuntu

“keystone” 2012.2.4-0ubuntu3.1 source package in Ubuntu

Changelog

keystone (2012.2.4-0ubuntu3.1) quantal-security; urgency=low

  * SECURITY UPDATE: fix auth_token middleware neglects to check expiry of
    signed token when using PKI
    - debian/patches/CVE-2013-2104.patch: explicitly check the expiry on the
      tokens, and reject tokens that have expired. Also update test data
    - CVE-2013-2104
    - LP: #1179615
  * debian/patches/fix-testsuite-for-2038-problem.patch: Adjust json example
    cert data to use 2037 instead of 2112 and regenerate the certs. Also
    adjust token expiry data to use 2037 instead of 2999.
  * SECURITY UPDATE: fix authentication bypass when using LDAP backend
    - debian/patches/CVE-2013-2157.patch: identity/backends/ldap/core.py is
      adjusted to raise an assertion for invalid password when using LDAP and
      an empty password is submitted
    - CVE-2013-2157
    - LP: #1187305
 -- Jamie Strandboge <email address hidden>   Thu, 13 Jun 2013 13:42:44 -0500

Upload details

Uploaded by:
Jamie Strandboge on 2013-06-13
Uploaded to:
Quantal
Original maintainer:
Ubuntu Developers
Component:
main
Architectures:
all
Section:
net
Urgency:
Low Urgency

See full publishing history Publishing

Series Pocket Published Component Section

Builds

Quantal: [FULLYBUILT] i386

Downloads

File Size MD5 Checksum
keystone_2012.2.4.orig.tar.gz 542.4 KiB aa14a95341aa9028efe81c27d9e448a5
keystone_2012.2.4-0ubuntu3.1.debian.tar.gz 31.4 KiB 0e50976edff20813c671324f87653e19
keystone_2012.2.4-0ubuntu3.1.dsc 2.5 KiB 7a3ca6678939fd66784949c587af8a49

Binary packages built by this source

keystone: OpenStack identity service - Daemons

 Keystone is a proposed independent authentication service for OpenStack.
 .
 This initial proof of concept aims to address the current use cases in Swift
 and Nova which are:
 .
  * REST-based, token auth for Swift
  * many-to-many relationship between identity and tenant for Nova. Keystone
    does authentication and stuff
 .
 This package contains the daemons.

keystone-doc: OpenStack identity service - Documentation

 Keystone is a proposed independent authentication service for OpenStack.
 .
 This initial proof of concept aims to address the current use cases in Swift
 and Nova which are:
 .
  * REST-based, token auth for Swift
  * many-to-many relationship between identity and tenant for Nova. Keystone
    does authentication and stuff
 .
 This package contains the documentation.

python-keystone: OpenStack identity service - Python library

 Keystone is a proposed independent authentication service for OpenStack.
 .
 This initial proof of concept aims to address the current use cases in Swift
 and Nova which are:
 .
  * REST-based, token auth for Swift
  * many-to-many relationship between identity and tenant for Nova. Keystone
    does authentication and stuff
 .
 This package contains the Python libraries.