Ubuntu

“keystone” 2012.2.1-0ubuntu1.2 source package in The Quantal Quetzal

Publishing history

2012.2.1-0ubuntu1.2
SUPERSEDED: Quantal pocket Updates in component main and section net
  • Removed from disk on 2013-03-22.
  • Removal requested on 2013-03-21.
  • Superseded on 2013-03-20 by keystone - 2012.2.1-0ubuntu1.3
  • Published on 2013-02-20
  • Copied from ubuntu quantal in Private PPA for Ubuntu Security Team by Ubuntu Archive Robot
2012.2.1-0ubuntu1.2
SUPERSEDED: Quantal pocket Security in component main and section net
  • Removed from disk on 2013-03-22.
  • Removal requested on 2013-03-21.
  • Superseded on 2013-03-20 by keystone - 2012.2.1-0ubuntu1.3
  • Published on 2013-02-20
  • Copied from ubuntu quantal in Private PPA for Ubuntu Security Team by Jamie Strandboge

Changelog

keystone (2012.2.1-0ubuntu1.2) quantal-security; urgency=low

  * SECURITY UPDATE: fix EC2-style authentication for disabled users
    - debian/patches/CVE-2013-0282.patch: adjust keystone/contrib/ec2/core.py
      to ensure user and tenant are enabled in EC2
    - CVE-2013-0282
    - LP: #1121494
  * SECURITY UPDATE: fix denial of service
    - debian/patches/CVE-2013-1664+1665.patch: disable XML entity parsing
    - CVE-2013-1664
    - CVE-2013-1665
    - LP: #1100279
    - LP: #1100282
 -- Jamie Strandboge <email address hidden>   Tue, 19 Feb 2013 11:48:27 -0600