lp://qastaging/~gandelman-a/ubuntu/quantal/keystone/2012.2.4
- Get this branch:
- bzr branch lp://qastaging/~gandelman-a/ubuntu/quantal/keystone/2012.2.4
Branch merges
- Openstack Ubuntu Testers: Pending requested
-
Diff: 32 lines (+25/-0)1 file modifieddebian/changelog (+25/-0)
Branch information
- Owner:
- Adam Gandelman
- Status:
- Development
Recent revisions
- 163. By Adam Gandelman
-
* Dropped patches, applied upstream:
- debian/patches/ CVE-2013- 1865.patch: [255b1d4]
- debian/patches/ CVE-2013- 0282.patch: [f0b4d30]
- debian/patches/ CVE-2013- 1664+1665. patch: [8a22745]
* Resynchronize with stable/folsom (09f28020):
- [5ea4fcf] V2 API reported at Beta LP: 1135230
- [1889299] PKI-signed token hash saved as token ID for SQL backend only
LP: 1073272
- [40660f0] Key PKI tokens on hash in memcached for auth_token middleware
LP: 1073343
- [b3ce6a7] Use the right subprocess based on os monkeypatch
- [bb1ded0] keystone-all --config-dir is being ignored LP: 1101129
- [9e0a97d] Temporary network outage results in connection refused and
invalid token LP: 1150299
- [255b1d4] Validation of PKI tokens bypasses revocation check LP: 1129713
- [8690166] PKI tokens are broken after 24 hours LP: 1074172
- [790c87e] PKI tokens are broken after 24 hours LP: 1074172
- [f0b4d30] EC2 authentication does not ensure user or tenant is enabled
LP: 1121494
- [8a22745] DoS through XML entity expansion (CVE-2013-1664) LP: 1100282 - 161. By James Page
-
* Resync with latest security updates.
* SECURITY UPDATE: fix PKI revocation bypass
- debian/patches/ CVE-2013- 1865.patch: validate tokens from the backend
- CVE-2013-1865
* SECURITY UPDATE: fix EC2-style authentication for disabled users
- debian/patches/ CVE-2013- 0282.patch: adjust keystone/ contrib/ ec2/core. py
to ensure user and tenant are enabled in EC2
- CVE-2013-0282
* SECURITY UPDATE: fix denial of service
- debian/patches/ CVE-2013- 1664+1665. patch: disable XML entity parsing
- CVE-2013-1664
- CVE-2013-1665
* SECURITY UPDATE: fix PKI revocation bypass
- debian/patches/ CVE-2013- 1865.patch: validate tokens from the backend
- CVE-2013-1865
- LP: #1129713
Branch metadata
- Branch format:
- Branch format 7
- Repository format:
- Bazaar repository format 2a (needs bzr 1.16 or later)