lp://staging/~openstack-ubuntu-testing/keystone/folsom

Created by James Page and last modified
Get this branch:
bzr branch lp://staging/~openstack-ubuntu-testing/keystone/folsom
Members of Openstack Ubuntu Testers can upload to this branch. Log in for directions.

Branch merges

Related bugs

Related blueprints

Branch information

Owner:
Openstack Ubuntu Testers
Project:
OpenStack Identity (keystone)
Status:
Development

Recent revisions

170. By Adam Gandelman

* Dropped patches, applied upstream:
  - debian/patches/CVE-2013-2059.patch: [992466d]

169. By Adam Gandelman

Add missing CVE-2013-2059.patch.

168. By James Page

Re-sync changelog with latest security updates

167. By Adam Gandelman

Add meta-bug ref.

166. By Adam Gandelman

Fix release.

165. By Adam Gandelman

Drop patch as per changelog history.

164. By Adam Gandelman

Fix distro release name.

163. By Adam Gandelman

Releasing 2012.2.4-0ubuntu1.

162. By Adam Gandelman

Resync changelog with current package in quantal-proposed.

161. By James Page

* Resync with latest security updates.
* SECURITY UPDATE: fix PKI revocation bypass
  - debian/patches/CVE-2013-1865.patch: validate tokens from the backend
  - CVE-2013-1865
* SECURITY UPDATE: fix EC2-style authentication for disabled users
  - debian/patches/CVE-2013-0282.patch: adjust keystone/contrib/ec2/core.py
    to ensure user and tenant are enabled in EC2
  - CVE-2013-0282
* SECURITY UPDATE: fix denial of service
  - debian/patches/CVE-2013-1664+1665.patch: disable XML entity parsing
  - CVE-2013-1664
  - CVE-2013-1665
* SECURITY UPDATE: fix PKI revocation bypass
  - debian/patches/CVE-2013-1865.patch: validate tokens from the backend
  - CVE-2013-1865
  - LP: #1129713

Branch metadata

Branch format:
Branch format 7
Repository format:
Bazaar repository format 2a (needs bzr 1.16 or later)
This branch contains Public information 
Everyone can see this information.