Difference between revisions of "SecurityAdvisories/Folsom"
(CVE-2012-5482) |
(OSSA-2012-018) |
||
Line 9: | Line 9: | ||
| Title | | Title | ||
| Impact | | Impact | ||
+ | |- | ||
+ | | Keystone | ||
+ | | November 28, 2012 | ||
+ | | [http://lists.openstack.org/pipermail/openstack-announce/2012-November/000055.html 2012-018] | ||
+ | | [https://bugs.launchpad.net/keystone/+bug/1064914 2012-5571] | ||
+ | | EC2-style credentials invalidation issue | ||
+ | | | ||
|- | |- | ||
|rowspan=2 |Glance | |rowspan=2 |Glance |
Revision as of 23:51, 28 November 2012
Folsom Security Advisories
Product | Date | Openstack Security Advisory | CVE Number | Title | Impact |
Keystone | November 28, 2012 | 2012-018 | 2012-5571 | EC2-style credentials invalidation issue | |
Glance | November 7, 2012 | 2012-017 | 2012-4573 | Authentication bypass for image deletion | High |
November 9, 2012 | 2012-017.1 | 2012-5482 |
Fixed in 2012.2
Product | Date | Openstack Security Advisory | CVE Number | Title | Impact |
Keystone | September 28, 2012 | 2012-05 | 2012-4456 | Some actions in Keystone admin API do not validate token | High |
2012-4456 |