[ubuntu/raring-security] keystone 1:2013.1.3-0ubuntu1.1 (Accepted)

Jamie Strandboge jamie at ubuntu.com
Wed Oct 23 19:23:34 UTC 2013 

keystone (1:2013.1.3-0ubuntu1.1) raring-security; urgency=low

  * SECURITY UPDATE: revoke user tokens when disabling/delete a project
    - debian/patches/CVE-2013-4222.patch: add _delete_tokens_for_project() to
      common/controller.py and use it in identity/controllers.py
      (LP: #1179955)
    - CVE-2013-4222
  * SECURITY UPDATE: fix and test token revocation list API
    - debian/patches/CVE-2013-4294.patch: fix token matching for memcache
      backend token revocation (LP: #1202952)
    - CVE-2013-4294

keystone (1:2013.1.3-0ubuntu1) raring-proposed; urgency=low

  * Dropped patches, applied upstream:
    - debian/patches/CVE-2013-2157.patch: [c100fd2]
  * Resynchronize with stable/grizzly (f60f742) (LP: #1210447):
    - [4b22c02] Bump stable/grizzly next version to 2013.1.3
    - [c100fd2] Force simple Bind for authentication
    - [b426022] password in clear in keystone.log LP: 1166697
    - [8ea8024] Performance issue when delete tokens for users LP: 1178063
    - [76a94c6] Editing User fails when the user already has a Primary Project
      LP: 1161963
    - [27a5b42] User roles are replaced by group roles in v3 tokens
      LP: 1197874
    - [f60f742] Unscoped tokens are revoked when assigning a role to a user
      LP: 1170186
  * debian/control: Update Vcs field.

keystone (1:2013.1.2-0ubuntu2) raring-proposed; urgency=low

  * Rebased to include latest security updates:
    - debian/patches/CVE-2013-2157.patch: Cherry-picked from stable/grizzly.

keystone (1:2013.1.2-0ubuntu1) raring-proposed; urgency=low

  * Resynchronize with stable/grizzly (8dd57da1) (LP: #1188788):
    - [8dd57da] Migration 020 incorrectly assigns roles. LP: 1186128
    - [81a4d38] Removing a user from a project would result to all members of
      that project to be removed LP: 1170649
    - [39c4ca1] default_domain_id breaks the ability to map keystone  to ldap
      LP: 1168726
    - [69d0733] Lacking initial rule for list_groups_for_user operation in
      sample policy.json LP: 1167836
    - [45fa69b] LDAP list group users should not fail if user entry deleted
      LP: 1174585
    - [6090bbe] Update sample_data.sh to match docs  LP: 1073291
    - [a00bab7] use swift stable branch

Date: 2013-10-22 17:36:14.352763+00:00
Changed-By: Jamie Strandboge <jamie at ubuntu.com>
https://launchpad.net/ubuntu/raring/+source/keystone/1:2013.1.3-0ubuntu1.1
-------------- next part --------------
Sorry, changesfile not available.

More information about the Raring-changes mailing list