Lucene search
K

12 matches found

Tenable Nessus
Tenable Nessus
added 2014/06/13 12:0 a.m.30 views

openSUSE Security Update : openstack-keystone (openSUSE-SU-2013:1089-1)

This update of openstack-keystone fixes two security vulnerabilities. - Add CVE-2013-2104.patch: fix missing expiration check in Keystone PKI token validation CVE-2013-2104, bnc821201 - Add CVE-2013-2157.patch: fix authentication bypass when using LDAP backend CVE-2013-2157, bnc823783 %NASLMINLEV...

5.5CVSS5.3AI score0.03128EPSS
Exploits0References5
OpenVAS
OpenVAS
added 2014/04/08 12:0 a.m.33 views

Fedora Update for openstack-keystone FEDORA-2014-4210

The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5CVSS6.5AI score0.03128EPSS
Exploits2References2
OpenVAS
OpenVAS
added 2013/11/08 12:0 a.m.28 views

Fedora Update for openstack-keystone FEDORA-2013-20373

The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.4AI score
Exploits0References2
CVE
CVE
added 2013/08/20 10:0 p.m.80 views

CVE-2013-2157

CVE-2013-2157 affects OpenStack Keystone (Folsom/Grizzly before 2013.1.3 and Havana) where LDAP authentication with anonymous binds allows a remote attacker to bypass authentication using an empty password. Connected sources confirm remediation via OpenStack/Keystone upgrades or patches (e.g., up...

4.3CVSS6.8AI score0.03128EPSS
Exploits0References4Affected Software1
OpenVAS
OpenVAS
added 2013/08/12 12:0 a.m.23 views

Fedora Update for openstack-keystone FEDORA-2013-10713

The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.8CVSS9.8AI score0.04863EPSS
Exploits3References2
Tenable Nessus
Tenable Nessus
added 2013/08/10 12:0 a.m.33 views

Fedora 18 : openstack-keystone-2012.2.4-5.fc18 (2013-10713)

authtoken: Check token expiry CVE-2013-2104 Force simple Bind for authentication CVE-2013-2157 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possibl...

5.5CVSS5.3AI score0.03128EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2013/07/22 12:0 a.m.28 views

Fedora 19 : openstack-keystone-2013.1.2-3.fc19 (2013-10467)

Stable Grizzly update 2013.1.2 Force simple Bind for authentication CVE-2013-2157 restrict /var/log/keystone/ rhbz956814 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and...

5CVSS5.3AI score0.03244EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2013/06/27 4:36 p.m.32 views

Important: Red Hat Security Advisory: openstack-keystone security and bug fix update

Updated openstack-keystone packages that fix one security issue and various bugs are now available for Red Hat OpenStack 3.0 Grizzly Preview. The Red Hat Security Response Team has rated this update as having important security impact. A Common Vulnerability Scoring System CVSS base score, which...

4.3CVSS5.8AI score0.03128EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2013/06/18 12:0 a.m.29 views

Ubuntu: Security Advisory (USN-1875-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.5CVSS9.6AI score0.03128EPSS
Exploits0References2
securityvulns
securityvulns
added 2013/06/17 12:0 a.m.108 views

[USN-1875-1] OpenStack Keystone vulnerabilities

========================================================================== Ubuntu Security Notice USN-1875-1 June 14, 2013 keystone vulnerabilities ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: -...

5.5CVSS0.3AI score0.03128EPSS
Exploits0
Ubuntu
Ubuntu
added 2013/06/14 2:48 a.m.68 views

USN-1875-1: OpenStack Keystone vulnerabilities

Eoghan Glynn and Alex Meade discovered that Keystone did not properly perform expiry checks for the PKI tokens used in Keystone. If Keystone were setup to use PKI tokens, a previously authenticated user could continue to use a PKI token for longer than intended. This issue only affected Ubuntu...

5.5CVSS5.4AI score0.03128EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2013/06/14 12:0 a.m.32 views

Ubuntu 12.10 / 13.04 : keystone vulnerabilities (USN-1875-1)

Eoghan Glynn and Alex Meade discovered that Keystone did not properly perform expiry checks for the PKI tokens used in Keystone. If Keystone were setup to use PKI tokens, a previously authenticated user could continue to use a PKI token for longer than intended. This issue only affected Ubuntu...

5.5CVSS5.4AI score0.03128EPSS
Exploits0References3
Rows per page
Query Builder