[ubuntu-cloud-archive/icehouse-updates] keystone (Accepted)
James Page
james.page at ubuntu.com
Thu Sep 4 12:23:09 UTC 2014
keystone (1:2014.1.2.1-0ubuntu1.1~cloud0) precise-icehouse; urgency=medium
.
* New update for the Ubuntu Cloud Archive.
.
keystone (1:2014.1.2.1-0ubuntu1.1) trusty-security; urgency=medium
.
* No change rebuild for security:
- [7378512] Block delegation escalation of privilege
+ CVE-2014-3476
+ LP: #1324592
- [44555e8] Ensure that in v2 auth tenant_id matches trust
+ CVE-2014-3520
+ LP: #1331912
- [6cbf835] Fix revocation event handling with MySQL
+ CVE-2014-5251
+ LP: #1347961
- [bdb88c6] Fix for V2 token issued_at time changing
+ CVE-2014-5252
+ LP: #1348820
- [317f9d3] Fix revoking domain-scoped tokens
+ CVE-2014-5253
+ LP: #1349597
Date: Fri, 22 Aug 2014 03:27:34 -0400
Changed-By: Openstack Ubuntu Testing Bot <openstack-testing-bot at ubuntu.com>
Signed-By: Openstack Ubuntu Testing Bot
Published-By: James Page <james.page at ubuntu.com>
More information about the Cloud-archive-changes
mailing list