[ubuntu-cloud-archive/folsom-updates] keystone (Accepted)

Dave Walker (Daviey) DaveWalker at ubuntu.com
Fri Dec 7 23:46:22 UTC 2012

 keystone (2012.2-0ubuntu1.2~cloud0) precise-folsom; urgency=low
   * Security update for the Ubuntu Cloud Archive.
 keystone (2012.2-0ubuntu1.2) quantal-security; urgency=low
   * SECURITY UPDATE: fix for EC2-style credentials invalidation
     - debian/patches/CVE-2012-5571.patch: adjust contrib/ec2/core.py to verify
       that the user is in at least one valid role for the tenant
     - CVE-2012-5571
     - LP: #1064914
   * debian/patches/fix-ssl-tests-lp1068851.patch: update certificates for
     SSL tests
   * SECURITY UPDATE: fix for token expiration
     - debian/patches/CVE-2012-5563.patch: ensure token expiration is
     - CVE-2012-5563
     - LP: #1079216

Date: Wed, 28 Nov 2012 11:27:15 -0800
Changed-By: Adam Gandelman <adamg at canonical.com>
Signed-By: Adam Gandelman
Published-By: Dave Walker (Daviey) <DaveWalker at ubuntu.com>

More information about the Cloud-archive-changes mailing list