~ubuntu-branches/ubuntu/raring/keystone/raring-security

Viewing all changes in revision 45.

  • Committer: Package Import Robot
  • Author(s): Jamie Strandboge
  • Date: 2013-06-13 06:49:54 UTC
  • mfrom: (43.1.2 raring-proposed)
  • Revision ID: package-import@ubuntu.com-20130613064954-8qdgpg6z73qr7h5g
Tags: 1:2013.1.1-0ubuntu2.1
* SECURITY UPDATE: fix authentication bypass when using LDAP backend
  - debian/patches/CVE-2013-2157.patch: identity/backends/ldap/core.py is
    adjusted to raise an assertion for invalid password when using LDAP and
    an empty password is submitted
  - CVE-2013-2157
  - LP: #1187305

expand all expand all

Show diffs side-by-side

added added

removed removed

Lines of Context: