| |||||||||||||||||||
Fedora alert FEDORA-2012-19341 (openstack-keystone)
-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2012-19341 2012-11-29 03:26:04 -------------------------------------------------------------------------------- Name : openstack-keystone Product : Fedora 17 Version : 2012.1.3 Release : 3.fc17 URL : http://keystone.openstack.org/ Summary : OpenStack Identity Service Description : Keystone is a Python implementation of the OpenStack (http://www.openstack.org) identity service API. This package contains the Keystone daemon. -------------------------------------------------------------------------------- Update Information: * EC2-style credentials invalidation issue CVE-2012-5571 * Fix /etc/keystone directory permission CVE-2012-5483 -------------------------------------------------------------------------------- ChangeLog: * Fri Nov 30 2012 Alan Pevec <apevec@redhat.com> 2012.1.3-3 - Fix default port for identity.internalURL in sample script - Fix /etc/keystone directory permission CVE-2012-5483 (rhbz#873447) * Wed Nov 28 2012 Alan Pevec <apevec@redhat.com> 2012.1.3-2 - EC2-style credentials invalidation issue (CVE-2012-5571) * Fri Oct 12 2012 Alan Pevec <apevec@redhat.com> 2012.1.3-1 - updated to stable essex release 2012.1.3 * Sun Sep 16 2012 Alan Pevec <apevec@redhat.com> 2012.1.2-4 - Limit token revocation to tenant (lp#1050025) * Wed Sep 12 2012 Alan Pevec <apevec@redhat.com> 2012.1.2-3 - Delete user tokens after role grant/revoke (CVE-2012-4413) * Thu Aug 30 2012 Alan Pevec <apevec@redhat.com> 2012.1.2-2 - Require authz to update user's tenant (CVE-2012-3542) * Mon Aug 13 2012 Alan Pevec <apevec@redhat.com> 2012.1.2-1 - updated to stable essex release 2012.1.2 * Fri Jun 22 2012 Alan Pevec <apevec@redhat.com> 2012.1.1-1 - updated to stable essex release 2012.1.1 (CVE-2012-3426) * Fri Jun 15 2012 Alan Pevec <apevec@redhat.com> 2012.1-5 - fix upgrade case with python-keystone-auth-token (rhbz#824034#c20) * Mon Jun 11 2012 Alan Pevec <apevec@redhat.com> 2012.1-4 - Corrects url conversion in export_legacy_catalog (lp#994936) - Invalidate user tokens when password is changed (lp#996595) - Invalidate user tokens when a user is disabled (lp#997194) - Carrying over token expiry time when token chaining (lp#998185) * Thu May 24 2012 Alan Pevec <apevec@redhat.com> 2012.1-3 - python-keystone-auth-token subpackage (rhbz#824034) - use reserved user id for keystone (rhbz#752842) * Mon May 21 2012 Alan Pevec <apevec@redhat.com> 2012.1-2 - Sync up with Essex stable branch - Remove dependencies no loner needed by Essex -------------------------------------------------------------------------------- References: [ 1 ] Bug #880399 - CVE-2012-5571 OpenStack: Keystone EC2-style credentials invalidation issue https://bugzilla.redhat.com/show_bug.cgi?id=880399 [ 2 ] Bug #873447 - CVE-2012-5483 OpenStack: Keystone /etc/keystone/ec2rc secret key exposure https://bugzilla.redhat.com/show_bug.cgi?id=873447 -------------------------------------------------------------------------------- This update can be installed with the "yum" update program. Use su -c 'yum update openstack-keystone' at the command line. For more information, refer to "Managing Software with yum", available at http://docs.fedoraproject.org/yum/. All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- _______________________________________________ package-announce mailing list package-announce@lists.fedoraproject.org https://admin.fedoraproject.org/mailman/listinfo/package-... (Log in to post comments)
|
|||||||||||||||||||