[ubuntu/trusty-security] keystone 1:2014.1.2.1-0ubuntu1.1 (Accepted)
Jamie Strandboge
jamie at ubuntu.com
Thu Aug 21 19:23:23 UTC 2014
keystone (1:2014.1.2.1-0ubuntu1.1) trusty-security; urgency=medium
* No change rebuild for security:
- [7378512] Block delegation escalation of privilege
+ CVE-2014-3476
+ LP: #1324592
- [44555e8] Ensure that in v2 auth tenant_id matches trust
+ CVE-2014-3520
+ LP: #1331912
- [6cbf835] Fix revocation event handling with MySQL
+ CVE-2014-5251
+ LP: #1347961
- [bdb88c6] Fix for V2 token issued_at time changing
+ CVE-2014-5252
+ LP: #1348820
- [317f9d3] Fix revoking domain-scoped tokens
+ CVE-2014-5253
+ LP: #1349597
Date: 2014-08-21 17:44:12.673008+00:00
Changed-By: Jamie Strandboge <jamie at ubuntu.com>
https://launchpad.net/ubuntu/trusty/+source/keystone/1:2014.1.2.1-0ubuntu1.1
-------------- next part --------------
Sorry, changesfile not available.
More information about the Trusty-changes
mailing list