Package: keystone Severity: grave Tags: security upstream patch Hi,
the following vulnerability was published for keystone. CVE-2013-4477[0]: OpenStack Keystone: Unintentional role granting with Keystone LDAP backend Patches are available trough the bugreport at [1]. If you fix the vulnerability please also make sure to include the CVE (Common Vulnerabilities & Exposures) id in your changelog entry. For further information see: [0] http://security-tracker.debian.org/tracker/CVE-2013-4477 [1] https://bugs.launchpad.net/keystone/+bug/1242855 Please adjust the affected versions in the BTS as needed (e.g. not checked if stable is affected). Regards and thanks for your work! Salvatore _______________________________________________ Secure-testing-team mailing list [email protected] http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-team
