Control: tag -1 pending Hello,
Bug #946614 in keystone reported by you has been fixed in the Git repository and is awaiting an upload. You can see the commit message below and you can check the diff of the fix at: https://salsa.debian.org/openstack-team/services/keystone/commit/12f37be150f85197a083ef656961f301a5bb9dfc ------------------------------------------------------------------------ * CVE-2019-19687: project members and readers can list any credentials with the /v3/credentials API when enforce_scope is false. Add upstream patch: CVE-2019-19687_Fix_credential_list_for_project_members.patch. (Closes: #946614). ------------------------------------------------------------------------ (this message was generated automatically) -- Greetings https://bugs.debian.org/946614