CVE-2020-12692

Name	CVE-2020-12692
Description	An issue was discovered in OpenStack Keystone before 15.0.1, and 16.0.0. The EC2 API doesn't have a signature TTL check for AWS Signature V4. An attacker can sniff the Authorization header, and then use it to reissue an OpenStack token an unlimited number of times.
Source	CVE (at NVD; CERT, LWN, oss-sec, fulldisc, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, GitHub advisories/code/issues, web search, more)
References	DSA-4679-1
Debian Bugs	959900

Vulnerable and fixed packages

The table below lists information on source packages.

Source Package	Release	Version	Status
keystone (PTS)	jessie	2014.1.3-6	vulnerable
	stretch (security), stretch (lts), stretch	2:10.0.0-9+deb9u1	vulnerable
	buster (security), buster, buster (lts)	2:14.2.0-0+deb10u2	fixed
	bullseye	2:18.0.0-3+deb11u1	fixed
	bookworm	2:22.0.0-2	fixed
	sid, trixie	2:26.0.0-1	fixed

The information below is based on the following data on fixed versions.

Package	Type	Release	Fixed Version	Urgency	Origin	Debian Bugs
keystone	source	wheezy	(unfixed)	end-of-life
keystone	source	jessie	(unfixed)	end-of-life
keystone	source	stretch	(unfixed)	end-of-life
keystone	source	buster	2:14.2.0-0+deb10u1		DSA-4679-1
keystone	source	(unstable)	2:17.0.0~rc2-1			959900

Notes

[stretch] - keystone <end-of-life> (Not supported in stretch LTS)
[jessie] - keystone <end-of-life> (Not supported in Jessie LTS)
https://bugs.launchpad.net/keystone/+bug/1872737
https://www.openwall.com/lists/oss-security/2020/05/06/4