[ubuntu-cloud-archive/folsom-proposed] keystone (Accepted)
James Page
james.page at ubuntu.com
Wed Oct 23 21:58:04 UTC 2013
keystone (2012.2.4-0ubuntu3.2~cloud0) precise-folsom; urgency=low
.
* New update for the Ubuntu Cloud Archive.
.
keystone (2012.2.4-0ubuntu3.2) quantal-security; urgency=low
.
* SECURITY UPDATE: revoke user tokens when disabling/delete a project
- debian/patches/CVE-2013-4222.patch: add _delete_tokens_for_project() to
common/controller.py and use it in identity/controllers.py
(LP: #1179955)
- CVE-2013-4222
* SECURITY UPDATE: fix and test token revocation list API
- debian/patches/CVE-2013-4294.patch: fix token matching for memcache
backend token revocation (LP: #1202952)
- CVE-2013-4294
Date: Wed, 23 Oct 2013 14:18:28 -0700
Changed-By: James Page <james.page at ubuntu.com>
Signed-By: James Page <james.page at ubuntu.com>
Published-By: James Page <james.page at ubuntu.com>
More information about the Cloud-archive-changes
mailing list