[Secure-testing-commits] r50539 - data/CVE
Moritz Muehlenhoff
jmm at moszumanska.debian.org
Mon Apr 10 17:10:32 UTC 2017
Author: jmm
Date: 2017-04-10 17:10:32 +0000 (Mon, 10 Apr 2017)
New Revision: 50539
Modified:
data/CVE/list
Log:
keystone fixed
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-04-10 17:04:03 UTC (rev 50538)
+++ data/CVE/list 2017-04-10 17:10:32 UTC (rev 50539)
@@ -54511,10 +54511,10 @@
NOTE: https://googleonlinesecurity.blogspot.cz/2016/02/cve-2015-7547-glibc-getaddrinfo-stack.html
NOTE: https://sourceware.org/ml/libc-alpha/2016-02/msg00416.html
CVE-2015-7546 (The identity service in OpenStack Identity (Keystone) before 2015.1.3 ...)
- - keystone <unfixed>
+ - keystone 1:9.0.0
[jessie] - keystone <no-dsa> (Too intrusive to backport, needs to switch to different token provider)
[wheezy] - keystone <no-dsa> (Too intrusive to backport, needs to switch to different token provider)
- - python-keystonemiddleware <unfixed>
+ - python-keystonemiddleware 3.0.0-1
[jessie] - python-keystonemiddleware <no-dsa> (Too intrusive to backport, needs to switch to different token provider)
NOTE: https://wiki.openstack.org/wiki/OSSN/OSSN-0062
NOTE: Keystone: <= 2015.1.2, >= 8.0.0 <= 8.0.1
More information about the Secure-testing-commits
mailing list