← Back to branch summary

~ubuntu-branches/ubuntu/quantal/keystone/quantal-security

Viewing all changes in revision 37.

  • Committer: Package Import Robot
  • Author(s): Jamie Strandboge
  • Date: 2013-02-19 11:48:27 UTC
  • Revision ID: package-import@ubuntu.com-20130219114827-wlv88hywpuk9464o
Tags: 2012.2.1-0ubuntu1.2
https://launchpad.net/bugs/1121494
https://launchpad.net/bugs/1100279
https://launchpad.net/bugs/1100282
* SECURITY UPDATE: fix EC2-style authentication for disabled users
  - debian/patches/CVE-2013-0282.patch: adjust keystone/contrib/ec2/core.py
    to ensure user and tenant are enabled in EC2
  - CVE-2013-0282
  - LP: #1121494
* SECURITY UPDATE: fix denial of service
  - debian/patches/CVE-2013-1664+1665.patch: disable XML entity parsing
  - CVE-2013-1664
  - CVE-2013-1665
  - LP: #1100279
  - LP: #1100282

expand all expand all

Show diffs side-by-side

added added

removed removed

Lines of Context: