1. Forum
  2. Usenet
  3. LINUX.DEBIAN.ANNOUNCE.SEC

  • [SECURITY] [DSA 4275-1] keystone security update

    From Moritz Muehlenhoff@1:229/2 to All on Thu Aug 16 23:00:02 2018
    From: [email protected]

    -----BEGIN PGP SIGNED MESSAGE-----
    Hash: SHA512

    - ------------------------------------------------------------------------- Debian Security Advisory DSA-4275-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff August 16, 2018 https://www.debian.org/security/faq
    - -------------------------------------------------------------------------

    Package : keystone
    CVE ID : CVE-2018-14432
    Debian Bug : 904616

    Kristi Nikolla discovered an information leak in Keystone, the OpenStack identity service, if running in a federated setup.

    For the stable distribution (stretch), this problem has been fixed in
    version 2:10.0.0-9+deb9u1.

    We recommend that you upgrade your keystone packages.

    For the detailed security status of keystone please refer to
    its security tracker page at: https://security-tracker.debian.org/tracker/keystone

    Further information about Debian Security Advisories, how to apply
    these updates to your system and frequently asked questions can be
    found at: https://www.debian.org/security/

    Mailing list: [email protected]
    -----BEGIN PGP SIGNATURE-----

    iQIzBAEBCgAdFiEEtuYvPRKsOElcDakFEMKTtsN8TjYFAlt11EIACgkQEMKTtsN8 TjYs1g/+MXDw9LTGA6b3/rmafDKeb6lfzI1Q4QvSElX1LGLOTfS0ySmHY9/D546d WQ6pYGRljxK2C9ddQtKduw4jOfPhMBOtw72vdvc7mVS+4iL2FOol/7spJe572fsH /N/quYXK58WpuHLi2frLwVBX4rcq9wqk/AjsP7uLa5MTzjLlQ5AEPqeoTT+n4Td/ ZibPSrZTWDW5ZWVaoGeDIRngmESRP1sP7Rp53hoos6oXDRfgHcjzaWt1sr1jIaeR mphLoSfYZ3R6cNH0MKNnKcYG5tw7NAw8TdA3MNajFQJWzXEDa5gLuP0hmQJpQn6U vMHazl+fpslLDFK8uJwQKTr6o9BiQwYsZmkGWdpsJ4TaVieqmUR6OPzQl/PiENUm cUFvUtqh+4mY10hK47Itxk6bildYiVgfytdn8e9/rbtkxL5PpM/FUlLObjyNwtkp AaPTVAMsvfqjIRqi5zm0vSy74uCZrbjKyHtUiEVnkm1+6TzIHVWXIlsRO7lqQc2v YOY99G4XhFQmU5HuaGKula/x2E0CMMu/U6FLiwT68HGqK9gdtvsm3PJLVUFGbmRV ABqfS3pDPKfrpzRrPjzJrYdXFuL+Vb9M2k6CcBYiqKLTq6yeQ06BJSpWPSyK6Pqu oOrSoGpzTY73XaY8MRGMqRBSehvVCUzAVLZnWLDXqt0nJmGKVYo=
    =D2qy
    -----END PGP SIGNATURE-----

    --- SoupGate-Win32 v1.05
    * Origin: you cannot sedate... all the things you hate (1:229/2)