Your message dated Fri, 14 Jun 2013 21:41:41 +0000
with message-id <[email protected]>
and subject line Bug#709535: fixed in python-keystoneclient 1:0.2.5-1
has caused the Debian Bug report #709535,
regarding python-keystoneclient: CVE-2013-2013: OpenStack keystone password
disclosure on command line
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [email protected]
immediately.)
--
709535: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=709535
Debian Bug Tracking System
Contact [email protected] with problems
--- Begin Message ---
Package: python-keystoneclient
Version: 2012.1-3
Severity: important
Tags: security patch upstream
Hi,
the following vulnerability was published for python-keystoneclient.
CVE-2013-2013[0]:
OpenStack keystone password disclosure on command line
Upstream patch is at [1] and introduces the ability for user password to
be updated via a command prompt.
If you fix the vulnerability please also make sure to include the
CVE (Common Vulnerabilities & Exposures) id in your changelog entry.
For further information see:
[0] http://security-tracker.debian.org/tracker/CVE-2013-2013
[1] https://review.openstack.org/#/c/28702/
Regards,
Salvatore
--- End Message ---
--- Begin Message ---
Source: python-keystoneclient
Source-Version: 1:0.2.5-1
We believe that the bug you reported is fixed in the latest version of
python-keystoneclient, which is due to be installed in the Debian FTP archive.
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to [email protected],
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Thomas Goirand <[email protected]> (supplier of updated python-keystoneclient
package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [email protected])
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Format: 1.8
Date: Thu, 30 May 2013 14:06:05 +0800
Source: python-keystoneclient
Binary: python-keystoneclient
Architecture: source all
Version: 1:0.2.5-1
Distribution: unstable
Urgency: low
Maintainer: PKG OpenStack <[email protected]>
Changed-By: Thomas Goirand <[email protected]>
Description:
python-keystoneclient - client library for the OpenStack Keystone API
Closes: 709535
Changes:
python-keystoneclient (1:0.2.5-1) unstable; urgency=low
.
* New upstream release (Closes: #709535).
* Ran wrap-and-sort.
* Added export OSLO_PACKAGE_VERSION=$(VERSION) in debian/rules.
* Added build-depends: python-pbr.
* Bumped Standard-Version: to 3.9.4.
* Using cannonical URLs for the VCS fields.
Checksums-Sha1:
861d2c0f00c1d7761b4f2b014013e147b6ab54e9 1776 python-keystoneclient_0.2.5-1.dsc
48bf912e1c2252c3efa81bca1f166e828613f2cb 115020
python-keystoneclient_0.2.5.orig.tar.xz
ce4a6ef466ac3bfaa8a705fd63e07af596d4c566 28679
python-keystoneclient_0.2.5-1.debian.tar.gz
f7d0498a31305e8d2c480a944e1cd97cadfb4d6a 81522
python-keystoneclient_0.2.5-1_all.deb
Checksums-Sha256:
9ce2238092a2d6e44d5c286a420c99bf0dbabe7e2f21e9dedea78471f36b729d 1776
python-keystoneclient_0.2.5-1.dsc
edadb41c83e13312cc411c0b0f7450e844379dbfda59dbd8d6eac6da3eef5b5b 115020
python-keystoneclient_0.2.5.orig.tar.xz
7c082005f07b1892e987dbf6fa42732a5f7155a1df0c4c57a74a04d0334d7c93 28679
python-keystoneclient_0.2.5-1.debian.tar.gz
896c124edab60af397be217653557a09432ffe23d7a95668e425308615fdb1e7 81522
python-keystoneclient_0.2.5-1_all.deb
Files:
27ffb099c73d15cfc683ec9d807e9630 1776 python extra
python-keystoneclient_0.2.5-1.dsc
33aa3d92e434f9304f131aeb544ff27d 115020 python extra
python-keystoneclient_0.2.5.orig.tar.xz
2b5d199d42df63db97fe91eb4131da1e 28679 python extra
python-keystoneclient_0.2.5-1.debian.tar.gz
f6c1c37a14a53bf96a57baf69f77b2b1 81522 python extra
python-keystoneclient_0.2.5-1_all.deb
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.12 (GNU/Linux)
iEYEARECAAYFAlG7d6gACgkQl4M9yZjvmknduACg2zULfLepOoJD75/e0HyxvRNm
ossAoKMM1eD8dOpjvAa3pmU33Zh6n25A
=aGtq
-----END PGP SIGNATURE-----
--- End Message ---
