[Secure-testing-commits] r23276 - data/CVE
Salvatore Bonaccorso
carnil at alioth.debian.org
Sat Aug 10 08:12:41 UTC 2013
Author: carnil
Date: 2013-08-10 08:12:40 +0000 (Sat, 10 Aug 2013)
New Revision: 23276
Modified:
data/CVE/list
Log:
add CVE-2013-4222/keystone, part of external check
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2013-08-10 07:55:59 UTC (rev 23275)
+++ data/CVE/list 2013-08-10 08:12:40 UTC (rev 23276)
@@ -1891,8 +1891,10 @@
- nullmailer 1:1.11-2 (bug #684619)
NOTE: CVE request originally for /etc/nullmailer/remotes permissions in gentoo, but Debian
NOTE: had the same problem until 1:1.11-2
-CVE-2013-4222
+CVE-2013-4222 [Keystone disabling a tenant does not disable a user token]
RESERVED
+ - keystone <unfixed>
+ NOTE: http://lists.openstack.org/pipermail/openstack-security/2013-August/000263.html
CVE-2013-4221 [remote code execution due to XML deserialization in Restlet]
RESERVED
- restlet <itp> (bug #596472)
More information about the Secure-testing-commits
mailing list