pkg:Debian/keystone

All known vulnerabilities

• CRITICAL9.1CVE-2021-3563keystone - security update
  from 0, < 2:14.2.0-0+deb10u2
• CRITICAL9.1CVE-2021-3563keystone - security update
  from 0
• HIGH8.8CVE-2020-12691OpenStack Keystone V3 /credentials endpoint policy logic allows to change credentials owner or target project ID
  from 0, < 2:17.0.0~rc2-1
• HIGH8.8keystone - security update
  from 0, < 2:17.0.0~rc2-1
• HIGH8.8keystone - security update
  from 0, < 2:14.2.0-0+deb10u1
• HIGH8.8OpenStack Keystone Credential Leakage
  from 0, < 2:16.0.0-5
• HIGH8.8Insufficient Session Expiration in OpenStack Keystone
  from 0, < 2:17.0.0~rc2-1
• HIGH7.9OpenStack Keystone has an Incorrect Authorization Issue
  from 0
• HIGH7.7OpenStack Keystone: LDAP identity backend does not convert enabled attribute to boolean
  from 0
• HIGH7.5keystone - security update
  from 0, < 2:18.1.0-1+deb11u2
• HIGH7.5keystone - security update
  from 0, < 2:22.0.2-0+deb12u1
• HIGH7.5keystone - security update
  from 0, < 2:18.1.0-1+deb11u2
• HIGH7.5OpenStack Keystone allows information disclosure during account locking
  from 0, < 2:18.0.0-3+deb11u1
• HIGH7.5OpenStack Keystone Allows Remote User Account Creation
  from 0, < 2012.1.1-5
• HIGH7.5OpenStack Identity (Keystone) DoS through V3 API authentication chaining
  from 0, < 2014.1-1
• HIGH7.5OpenStack Identity Keystone and keystonemiddleware Insufficiently Protected Credentials
  from 0, < 2:9.0.0~rc2-1
• HIGH7.5OpenStack Keystone: extremely long passwords can crash Keystone by exhausting stack space
  from 0, < 2012.1~rc2-1
• HIGH7.2OpenStack Identity service (keystone) Incorrect Authorization
  from 0, < 2:10.0.0-9
• MEDIUM6.5OpenStack Identity (Keystone) UUID v2 tokens does not expire with revocation events
  from 0, < 2014.1.2.1-1
• MEDIUM6.5OpenStack Identity (Keystone) Multiple vulnerabilities in revocation events
  from 0, < 2014.1.2.1-1
• MEDIUM6.5OpenStack Keystone Domain-scoped tokens don't get revoked
  from 0, < 2014.1.2.1-1
• MEDIUM6.5OpenStack Identity (Keystone) Trustee token revocations does not work with memcache backend
  from 0, < 2013.2.3-1
• MEDIUM6.5OpenStack Keystone Denial of Service vulnerability via a large HTTP request
  from 0, < 2013.1.1-2
• MEDIUM6.0An issue was discovered in OpenStack Keystone before 29.0.2.
  from 0
• MEDIUM6.0An issue was discovered in OpenStack Keystone before 29.0.2.
  from 0
• MEDIUM6.0An issue was discovered in OpenStack Keystone before 29.0.2.
  from 0
• MEDIUM6.0An issue was discovered in OpenStack Keystone before 29.0.2.
  from 0
• MEDIUM6.0python-keystoneclient vulnerable to context confusion in Keystone auth_token middleware
  from 0, < 2013.1.1-2
• MEDIUM5.9OpenStack Keystone and other components vulnerable to Improper Certificate Validation
  from 0, < 2014.1-1
• MEDIUM5.4OpenStack Keystone does not check signature TTL of the EC2 credential auth method
  from 0, < 2:17.0.0~rc2-1
• MEDIUM5.4OpenStack Keystone intended authorization restrictions bypass
  from 0, < 2012.1.1-11
• MEDIUM5.3OpenStack Identity (Keystone) allows remote attackers to bypass intended access restrictions via revoked PKI token
  from 0, < 2013.1.3-2
• MEDIUM5.3keystone - security update
  from 0, < 2:10.0.0-9+deb9u1
• MEDIUM5.3keystone - security update
  from 0, < 2:13.0.0-7
• MEDIUM4.3OpenStack Identity Keystone Improper Access Control
  from 0, < 2:9.0.0-2
• MEDIUM4.3OpenStack Identity (Keystone) improper revoking of the authentication token when deleting a user
  from 0, < 2013.1.1-2
• LOW3.5OpenStack Keystone: Restricted application credentials can create EC2 credentials
  from 0
• —OpenStack Keystone token expiration issues
  from 0, < 2012.1.1-1
• —XML Entity Expansion (XEE) in Django
  from 0, < 2012.1.1-13
• —XML External Entity (XXE) in Django
  from 0, < 2012.1.1-13
• —OpenStack Identity Keystone Privilege Escalation vulnerability
  from 0, < 2013.2-2
• —OpenStack Keystone Sensitive information disclosure via log files
  from 0, < 2013.1.1-2
• —OpenStack Keystone does not invalidate existing tokens when granting or revoking roles
  from 0, < 2012.1.1-6
• —OpenStack Keystone Token authorization for a user in a disabled tenant is allowed
  from 0, < 2012.1.1-9
• —OpenStack Keystone Improper Authentication vulnerability
  from 0, < 2012.1.1-9
• —OpenStack Identity Keystone Improper Privilege Management
  from 0, < 2014.1-5
• —OpenStack Identity Keystone Exposure of Sensitive Information
  from 0, < 2014.1.3-1
• —OpenStack Keystone Logs Passwords
  from 0, < 2015.1.0-1
• —OpenStack Identity Keystone is vulnerable to Block delegation escalation of privilege
  from 0, < 2014.1.1-2
• —OpenStack Identity (Keystone) Denial of Service
  from 0, < 2013.1.1-2
• —OpenStack Keystone allows context-dependent attackers to bypass access restrictions
  from 0, < 2012.1.1-13
• —OpenStack Identity (Keystone) before 2013.2.4, 2014.x before 2014.1.2, and Juno before Juno-2 allows remote authenticated trustees to gain…
  from 0, < 2014.1.1-3
• —The ec2tokens API in OpenStack Identity (Keystone) before Havana 2013.2.1 and Icehouse before icehouse-2 does not return a trust-scoped tok…
  from 0, < 2013.2.1-1
• —OpenStack Identity (Keystone) Folsom, Grizzly 2013.1.3 and earlier, and Havana before havana-3 does not properly revoke user tokens when a…
  from 0, < 2013.1.3-1
• —OpenStack Keystone Folsom, Grizzly before 2013.1.3, and Havana, when using LDAP with Anonymous binding, allows remote attackers to bypass a…
  from 0, < 2013.1.2-1
• —OpenStack Keystone Essex 2012.1.3 and earlier, Folsom 2012.2.3 and earlier, and Grizzly grizzly-2 and earlier allows remote attackers to ca…
  from 0, < 2012.1.1-12