Name : openstack-keystone Product : Fedora 17 Version : 2012.1.2 Release : 4.fc17 URL : http://keystone.openstack.org/ Summary : OpenStack Identity Service Description : Keystone is a Python implementation of the OpenStack (http://www.openstack.org) identity service API.
* Require authz to update user's tenant (CVE-2012-3542)
* Delete user tokens after role grant/revoke (CVE-2012-4413)
* Fails to validate tokens in Admin API (CVE-2012-4456)
* Fails to raise Unauthorized user error for disabled tenant (CVE-2012-4457)
* Sun Sep 16 2012 Alan Pevec <apevec@redhat.com> 2012.1.2-4 - Limit token revocation to tenant (lp#1050025) * Wed Sep 12 2012 Alan Pevec <apevec@redhat.com> 2012.1.2-3 - Delete user tokens after role grant/revoke (CVE-2012-4413) * Thu Aug 30 2012 Alan Pevec <apevec@redhat.com> 2012.1.2-2 - Require authz to update user's tenant (CVE-2012-3542) * Mon Aug 13 2012 Alan Pevec <apevec@redhat.com> 2012.1.2-1 - updated to stable essex release 2012.1.2 * Fri Jun 22 2012 Alan Pevec <apevec@redhat.com> 2012.1.1-1 - updated to stable essex release 2012.1.1 (CVE-2012-3426) * Fri Jun 15 2012 Alan Pevec <apevec@redhat.com> 2012.1-5 - fix upgrade case with python-keystone-auth-token (rhbz#824034#c20) * Mon Jun 11 2012 Alan Pevec <apevec@redhat.com> 2012.1-4 - Corrects url conversion in export_legacy_catalog (lp#994936) - Invalidate user tokens when password is changed (lp#996595) - Invalidate user tokens when a user is disabled (lp#997194) - Carrying over token expiry time when token chaining (lp#998185) * Thu May 24 2012 Alan Pevec <apevec@redhat.com> 2012.1-3 - python-keystone-auth-token subpackage (rhbz#824034) - use reserved user id for keystone (rhbz#752842) * Mon May 21 2012 Alan Pevec <apevec@redhat.com> 2012.1-2 - Sync up with Essex stable branch - Remove dependencies no loner needed by Essex ------------------------------------------------------------------------------- - References:
This update can be installed with the "yum" update program. Use su -c 'yum update openstack-keystone' at the command line. For more information, refer to "Managing Software with yum", available at http://docs.fedoraproject.org/yum/.