[Openstack-devel] Bug#699835: keystone: CVE-2013-0247: Keystone denial of service through invalid token requests
Salvatore Bonaccorso
carnil at debian.org
Tue Feb 5 18:41:19 UTC 2013
Package: keystone
Severity: grave
Tags: security
Justification: user security hole
Hi,
the following vulnerability was published for keystone.
CVE-2013-0247[0]:
Keystone denial of service through invalid token requests
Patches should be available via [1].
If you fix the vulnerability please also make sure to include the
CVE (Common Vulnerabilities & Exposures) id in your changelog entry.
For further information see:
[0] http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0247
http://security-tracker.debian.org/tracker/CVE-2013-0247
[1] https://lists.launchpad.net/openstack/msg20689.html
Please adjust the affected versions in the BTS as needed.
Regards,
Salvatore
More information about the Openstack-devel
mailing list