openstack-keystone is vulnerable to authentication bypass. Remote authenticated users are able to retain access via an expired token due to the token driver storing timestamps with incorrect precision, which causes timestamp expiration time comparisons for tokens to fail.
rhn.redhat.com/errata/RHSA-2014-1121.html
rhn.redhat.com/errata/RHSA-2014-1122.html
www.openwall.com/lists/oss-security/2014/08/15/6
www.ubuntu.com/usn/USN-2324-1
access.redhat.com/security/updates/classification/#low
bugs.launchpad.net/keystone/+bug/1347961
bugzilla.redhat.com/show_bug.cgi?id=1127421
launchpad.net/keystone/icehouse/2014.1.2
rhn.redhat.com/errata/RHSA-2014-1121.html