-
Committer:
Package Import Robot
-
Author(s):
Jamie Strandboge
-
Date:
2013-02-19 11:57:49 UTC
-
Revision ID:
package-import@ubuntu.com-20130219115749-toy57xgkry9rd37z
Tags: 2012.1+stable~20120824-a16a0ab9-0ubuntu2.5
* SECURITY UPDATE: fix EC2-style authentication for disabled users
- debian/patches/CVE-2013-0282.patch: adjust keystone/contrib/ec2/core.py
to ensure user and tenant are enabled in EC2
- CVE-2013-0282
- LP: #1121494
* SECURITY UPDATE: fix denial of service
- debian/patches/CVE-2013-1664+1665.patch: disable XML entity parsing
- CVE-2013-1664
- CVE-2013-1665
- LP: #1100279