[Git][security-tracker-team/security-tracker][master] keystone DSA

Moritz Muehlenhoff (@jmm) jmm at debian.org
Thu Nov 13 19:43:58 GMT 2025 


Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
140d37c1 by Moritz Mühlenhoff at 2025-11-13T20:43:12+01:00
keystone DSA

- - - - -


3 changed files:

- data/CVE/list
- data/DSA/list
- data/dsa-needed.txt


Changes:

=====================================
data/CVE/list
=====================================
@@ -2908,6 +2908,8 @@ CVE-2025-10875 (Improper Neutralization of Input Used for LLM Prompting vulnerab
 	NOT-FOR-US: Salesforce
 CVE-2025-XXXX [OSSA-2025-002: Unauthenticated access to EC2/S3 token endpoints can grant Keystone authorization]
 	- keystone <unfixed> (bug #1120053)
+	[trixie] - keystone 2:27.0.0-3+deb13u1
+	[bookworm] - keystone 2:22.0.2-0+deb12u1
 	[bullseye] - keystone 2:18.1.0-1+deb11u2
 	NOTE: https://www.openwall.com/lists/oss-security/2025/11/04/2
 	NOTE: https://bugs.launchpad.net/keystone/+bug/2119646


=====================================
data/DSA/list
=====================================
@@ -1,3 +1,6 @@
+[13 Nov 2025] DSA-6056-1 keystone - security update
+	[bookworm] - keystone 2:22.0.2-0+deb12u1
+	[trixie] - keystone 2:27.0.0-3+deb13u1
 [13 Nov 2025] DSA-6055-1 chromium - security update
 	{CVE-2025-13042}
 	[bookworm] - chromium 142.0.7444.162-1~deb12u1


=====================================
data/dsa-needed.txt
=====================================
@@ -31,8 +31,6 @@ git-lfs
 --
 jackson-core
 --
-keystone (jmm)
---
 lasso (carnil)
   Coordination with maintainer
 --
@@ -73,8 +71,6 @@ runc
 --
 sogo/oldstable
 --
-swift (jmm)
---
 sympa/oldstable
 --
 tomcat10/oldstable (apo)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/140d37c1d1d928e089ba68674637c77d1f528a2a

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/140d37c1d1d928e089ba68674637c77d1f528a2a
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20251113/e823c14c/attachment-0001.htm>

More information about the debian-security-tracker-commits mailing list