Ubuntu

“keystone” 2012.1+stable~20120824-a16a0ab9-0ubuntu2.4 source package in The Precise Pangolin

Publishing history

2012.1+stable~20120824-a16a0ab9-0ubuntu2.4
SUPERSEDED: Precise pocket Updates in component main and section net
  • Removed from disk on 2013-02-27.
  • Removal requested on 2013-02-21.
  • Superseded on 2013-02-20 by keystone - 2012.1+stable~20120824-a16a0ab9-0ubuntu2.5
  • Published on 2013-02-05
  • Copied from ubuntu precise in Private PPA for Ubuntu Security Team by Ubuntu Archive Robot
2012.1+stable~20120824-a16a0ab9-0ubuntu2.4
SUPERSEDED: Precise pocket Security in component main and section net
  • Removed from disk on 2013-02-27.
  • Removal requested on 2013-02-21.
  • Superseded on 2013-02-20 by keystone - 2012.1+stable~20120824-a16a0ab9-0ubuntu2.5
  • Published on 2013-02-05
  • Copied from ubuntu precise in Private PPA for Ubuntu Security Team by Jamie Strandboge

Changelog

keystone (2012.1+stable~20120824-a16a0ab9-0ubuntu2.4) precise-security; urgency=low

  * SECURITY UPDATE: fix token creation error handling
    - debian/patches/CVE-2013-0247.patch: validate size of user_id, username,
      password, tenant_name, tenant_id and token size to help guard against a
      denial of service via large log files filling the disk
    - CVE-2013-0247
 -- Jamie Strandboge <email address hidden>   Thu, 31 Jan 2013 12:22:43 -0600