Information on source package keystone

Available versions

ReleaseVersion
jessie2014.1.3-6
stretch2:10.0.0-9+deb9u1
buster2:14.2.0-0+deb10u2
bullseye2:18.0.0-3+deb11u1
bookworm2:22.0.0-2
trixie2:26.0.0-1
sid2:26.0.0-1

Open issues

BugjessiestretchbusterbullseyebookwormtrixiesidDescription
CVE-2022-2447vulnerablevulnerableunknownunknownunknownunknownunknownA flaw was found in Keystone. There is a time lag (up to one hour in a ...
CVE-2021-38155vulnerablevulnerablefixedfixedfixedfixedfixedOpenStack Keystone 10.x through 16.x before 16.0.2, 17.x before 17.0.1 ...
CVE-2021-3563vulnerablevulnerablefixedvulnerable (no DSA)vulnerable (no DSA)fixedfixedA flaw was found in openstack-keystone. Only the first 72 characters o ...
CVE-2020-12692vulnerablevulnerablefixedfixedfixedfixedfixedAn issue was discovered in OpenStack Keystone before 15.0.1, and 16.0. ...
CVE-2020-12691vulnerablevulnerablefixedfixedfixedfixedfixedAn issue was discovered in OpenStack Keystone before 15.0.1, and 16.0. ...
CVE-2020-12690vulnerablevulnerablefixedfixedfixedfixedfixedAn issue was discovered in OpenStack Keystone before 15.0.1, and 16.0. ...
CVE-2020-12689vulnerablevulnerablefixedfixedfixedfixedfixedAn issue was discovered in OpenStack Keystone before 15.0.1, and 16.0. ...
CVE-2018-14432vulnerablefixedfixedfixedfixedfixedfixedIn the Federation component of OpenStack Keystone before 11.0.4, 12.0. ...
CVE-2015-7546vulnerable (no DSA)fixedfixedfixedfixedfixedfixedThe identity service in OpenStack Identity (Keystone) before 2015.1.3 ...
CVE-2015-3646vulnerable (no DSA)fixedfixedfixedfixedfixedfixedOpenStack Identity (Keystone) before 2014.1.5 and 2014.2.x before 2014 ...

Resolved issues

BugDescription
CVE-2019-19687OpenStack Keystone 15.0.0 and 16.0.0 is affected by Data Leakage in th ...
CVE-2017-2673An authorization-check flaw was discovered in federation configuration ...
CVE-2016-4911The Fernet Token Provider in OpenStack Identity (Keystone) 9.0.x befor ...
CVE-2014-5253OpenStack Identity (Keystone) 2014.1.x before 2014.1.2.1 and Juno befo ...
CVE-2014-5252The V3 API in OpenStack Identity (Keystone) 2014.1.x before 2014.1.2.1 ...
CVE-2014-5251The MySQL token driver in OpenStack Identity (Keystone) 2014.1.x befor ...
CVE-2014-3621The catalog url replacement in OpenStack Identity (Keystone) before 20 ...
CVE-2014-3520OpenStack Identity (Keystone) before 2013.2.4, 2014.x before 2014.1.2, ...
CVE-2014-3476OpenStack Identity (Keystone) before 2013.2.4, 2014.1 before 2014.1.2, ...
CVE-2014-2828The V3 API in OpenStack Identity (Keystone) 2013.1 before 2013.2.4 and ...
CVE-2014-2237The memcache token backend in OpenStack Identity (Keystone) 2013.1 thr ...
CVE-2014-0204OpenStack Identity (Keystone) before 2014.1.1 does not properly handle ...
CVE-2014-0105The auth_token middleware in the OpenStack Python client library for K ...
CVE-2013-6391The ec2tokens API in OpenStack Identity (Keystone) before Havana 2013. ...
CVE-2013-4477The LDAP backend in OpenStack Identity (Keystone) Grizzly and Havana, ...
CVE-2013-4294The (1) mamcache and (2) KVS token backends in OpenStack Identity (Key ...
CVE-2013-4222OpenStack Identity (Keystone) Folsom, Grizzly 2013.1.3 and earlier, an ...
CVE-2013-2255HTTPSConnections in OpenStack Keystone 2013, OpenStack Compute 2013.1, ...
CVE-2013-2157OpenStack Keystone Folsom, Grizzly before 2013.1.3, and Havana, when u ...
CVE-2013-2104python-keystoneclient before 0.2.4, as used in OpenStack Keystone (Fol ...
CVE-2013-2059OpenStack Identity (Keystone) Folsom 2012.2.4 and earlier, Grizzly bef ...
CVE-2013-2014OpenStack Identity (Keystone) before 2013.1 allows remote attackers to ...
CVE-2013-2006OpenStack Identity (Keystone) Grizzly 2013.1.1, when DEBUG mode loggin ...
CVE-2013-1977OpenStack devstack uses world-readable permissions for keystone.conf, ...
CVE-2013-1865OpenStack Keystone Folsom (2012.2) does not properly perform revocatio ...
CVE-2013-1665The XML libraries for Python 3.4, 3.3, 3.2, 3.1, 2.7, and 2.6, as used ...
CVE-2013-1664The XML libraries for Python 3.4, 3.3, 3.2, 3.1, 2.7, and 2.6, as used ...
CVE-2013-0282OpenStack Keystone Grizzly before 2013.1, Folsom 2012.1.3 and earlier, ...
CVE-2013-0270OpenStack Keystone Grizzly before 2013.1, Folsom, and possibly earlier ...
CVE-2013-0247OpenStack Keystone Essex 2012.1.3 and earlier, Folsom 2012.2.3 and ear ...
CVE-2012-5571OpenStack Keystone Essex (2012.1) and Folsom (2012.2) does not properl ...
CVE-2012-5563OpenStack Keystone, as used in OpenStack Folsom 2012.2, does not prope ...
CVE-2012-5483tools/sample_data.sh in OpenStack Keystone 2012.1.3, when access to Am ...
CVE-2012-4457OpenStack Keystone Essex before 2012.1.2 and Folsom before folsom-3 do ...
CVE-2012-4456The (1) OS-KSADM/services and (2) tenant APIs in OpenStack Keystone Es ...
CVE-2012-4413OpenStack Keystone 2012.1.3 does not invalidate existing tokens when g ...
CVE-2012-3542OpenStack Keystone, as used in OpenStack Folsom before folsom-rc1 and ...
CVE-2012-3426OpenStack Keystone before 2012.1.1, as used in OpenStack Folsom before ...
CVE-2012-1572OpenStack Keystone: extremely long passwords can crash Keystone by exh ...

Security announcements

DSA / DLADescription
DLA-3714-1keystone - security update
DSA-4679-1keystone - security update
DSA-4275-1keystone - security update

Search for package or bug name: Reporting problems