[Git][security-tracker-team/security-tracker][master] keystone fixed in sid

[Moritz Muehlenhoff (@jmm)]

Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
e159c72a by Moritz Muehlenhoff at 2025-11-14T16:58:07+01:00
keystone fixed in sid

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -3327,7 +3327,7 @@ CVE-2025-11690 (An Insecure Direct Object Reference (IDOR) vulnerability exists
 CVE-2025-10875 (Improper Neutralization of Input Used for LLM Prompting vulnerability  ...)
 	NOT-FOR-US: Salesforce
 CVE-2025-XXXX [OSSA-2025-002: Unauthenticated access to EC2/S3 token endpoints can grant Keystone authorization]
-	- keystone <unfixed> (bug #1120053)
+	- keystone 2:28.0.0-2 (bug #1120053)
 	[trixie] - keystone 2:27.0.0-3+deb13u1
 	[bookworm] - keystone 2:22.0.2-0+deb12u1
 	[bullseye] - keystone 2:18.1.0-1+deb11u2



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/e159c72a028b25fce1f639ecb7c146966829efae

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/e159c72a028b25fce1f639ecb7c146966829efae
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20251114/b85d6d77/attachment.htm>