-
Committer:
Corey Bryant
-
Date:
2015-08-07 17:33:23 UTC
-
mfrom:
(90.1.1 icehouse)
-
Revision ID:
corey.bryant@canonical.com-20150807173323-le2zey5t3bs0o4mq
* debian/patches/fix-1368545.patch: hanging the value type of
http_connect_timeout to IntOpt. (LP: #1368545)
* SECURITY UPDATE: incorrect cert verification with ssl_insecure option
- debian/patches/CVE-2014-7144.patch: properly parse option in
keystoneclient/middleware/auth_token.py.
- CVE-2014-7144
* SECURITY UPDATE: incorrect cert verification with ssl_insecure option
- debian/patches/CVE-2015-1852.patch: properly parse option in
keystoneclient/middleware/s3_token.py, added test to
keystoneclient/tests/test_s3_token_middleware.py.
- CVE-2015-1852
* Properly run test suite during build:
- debian/control: added python-testresources to Build-Depends
- debian/rules: call testr directly