~corey.bryant/ubuntu/+source/barbican:stable/xena

Last commit made on 2022-12-05
Get this branch:
git clone -b stable/xena https://git.launchpad.net/~corey.bryant/ubuntu/+source/barbican
Only Corey Bryant can upload to this branch. If you are Corey Bryant please log in for upload directions.

Branch information

Name:
stable/xena
Repository:
lp:~corey.bryant/ubuntu/+source/barbican

Recent commits

1e55d6f... by Corey Bryant

releasing package barbican version 2:13.0.2-0ubuntu1~cloud0

63588de... by Corey Bryant

New stable point release for OpenStack Xena (LP: #1998549).

5891cdf... by Corey Bryant

d/p/CVE*: Dropped. Fixed in new upstream release.

36f5e82... by Corey Bryant

New update for the Ubuntu Cloud Archive.

* New update for the Ubuntu Cloud Archive.
* SECURITY UPDATE: Access restrictions bypass
  - debian/patches/CVE-2022-23451-1.patch: Change access policies to
    secret metadata in barbican/common/policies/secretmeta.py. Add a new
    role in barbican/common/policies/base.py and make use of these changes
    in barbican/api/controllers/__init__.py,
    barbican/api/controllers/secretmeta.py and
    barbican/api/controllers/secrets.py.
  - debian/patches/CVE-2022-23451-2.patch: Fix secure RBAC rules in
    barbican/common/policies/secretmeta.py
  - debian/patches/CVE-2022-23451-post1.patch: Change consumer controller
    code in barbican/api/controllers/*, change policy rules in
    barbican/common/policies/consumers.py and add tests in
    barbican/tests/api/test_resources_policy.py and
    functionaltests/api/v1/functional/test_acls.py.
  - debian/patches/CVE-2022-23451-post2.patch: Change secret policies in
    barbican/common/policies/secrets.py, add tests in
    barbican/tests/api/test_resources_policy.py and
    functionaltests/api/v1/functional/test_secrets_rbac.py and update
    api guide in api-guide/source/acls.rst.
  - CVE-2022-23451
* SECURITY UPDATE: Ownership bypass
  - debian/patches/CVE-2022-23452.patch: Update container secret policies
    in barbican/common/policies/containers.py and add a new role in
    barbican/common/policies/base.py.
  - CVE-2022-23452

29d77ab... by Corey Bryant

Update upstream source from tag '13.0.2'

Update to upstream version '13.0.2'
with Debian dir 835eca87b78c49bd6b0971aa343ede73084a72a9

6d09861... by Corey Bryant

New upstream version 13.0.2

2fd9e46... by Corey Bryant

New upstream version 14.0.2

787619a... by Corey Bryant

New upstream version 15.0.0

d61d699... by Corey Bryant

New upstream version 14.0.0+git2022091212.304d5c04

c8cae6d... by Corey Bryant

New upstream version 14.0.0+git2022071413.ae22ab00