openSUSE Security Update : python-keystoneclient (openSUSE-SU-2013:1090-1)

This update of python-keystoneclient fixes a security vulnerability. - Add CVE-2013-2013.patch: allow secure user password update CVE-2013-2013, bnc817415. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE...

CVE-2013-2013

CVE-2013-2013 affects python-keystoneclient prior to 0.2.4. The user-password-update command accepts the new password via the --password argument, allowing a local attacker to reveal the password by listing the process. Impact is local information disclosure; remediation is to upgrade to 0.2.4+ o...

Fedora Update for python-keystoneclient FEDORA-2013-13900

The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Fedora 18 : python-keystoneclient-0.2.0-2.fc18 (2013-13900)

Allow secure user password update. CVE-2013-2013 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues...

Fedora Update for python-keystoneclient FEDORA-2013-14302

The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Fedora 19 : python-keystoneclient-0.2.3-7.fc19 (2013-14302)

Selective backports from stable/grizzly : - Ec2Signer: Initial support for v4 signature verification. - Allow signature verification for older boto versions. - Default signingdir to secure temp dir. - Fix memcache encryption middleware. CVE-2013-2166, CVE-2013-2167 - Check token expiry...