[ubuntu-cloud-archive/folsom-updates] keystone (Accepted)
Dave Walker (Daviey)
DaveWalker at ubuntu.com
Fri Dec 7 23:46:22 UTC 2012
keystone (2012.2-0ubuntu1.2~cloud0) precise-folsom; urgency=low
.
* Security update for the Ubuntu Cloud Archive.
.
keystone (2012.2-0ubuntu1.2) quantal-security; urgency=low
.
* SECURITY UPDATE: fix for EC2-style credentials invalidation
- debian/patches/CVE-2012-5571.patch: adjust contrib/ec2/core.py to verify
that the user is in at least one valid role for the tenant
- CVE-2012-5571
- LP: #1064914
* debian/patches/fix-ssl-tests-lp1068851.patch: update certificates for
SSL tests
* SECURITY UPDATE: fix for token expiration
- debian/patches/CVE-2012-5563.patch: ensure token expiration is
maintained
- CVE-2012-5563
- LP: #1079216
Date: Wed, 28 Nov 2012 11:27:15 -0800
Changed-By: Adam Gandelman <adamg at canonical.com>
Signed-By: Adam Gandelman
Published-By: Dave Walker (Daviey) <DaveWalker at ubuntu.com>
More information about the Cloud-archive-changes
mailing list