Created by Ubuntu Package Importer on 2013-05-06 and last modified on 2013-10-18
Get this branch:
bzr branch lp:debian/jessie/keystone
Members of Ubuntu branches can upload to this branch. Log in for directions.

Related bugs

Related blueprints

Branch information

Ubuntu branches

Recent revisions

36. By Thomas Goirand <email address hidden> on 2013-10-18

* New upstream release.
* Uploading to unstable.

35. By Thomas Goirand <email address hidden> on 2013-09-20

* CVE-2013-4294: Fixes token revocation failure using Keystone memcache/KVS
  backends using upstream patch (Closes: #722505).
* Added French debconf translation thanks to Julien Patriarca
  <email address hidden> (Closes: #722419).

34. By Thomas Goirand <email address hidden> on 2013-07-25

* New upstream point release.
* Added ja.po Debconf translation thanks to victory <email address hidden>,
  and several DDs (Closes: #717707).
* Several Debconf translations updates:
  - Danish, thanks to Joe Dalton (Closes: #720007).
  - Portuguese, thanks to the Traduz team (Closes: #720067).
  - Italian, thanks to Beatrice Torracca (Closes: #720934).
  - Czech, thanks to Michal Šimůnek (Closes: #721034).
  - Russian, thanks to Yuri Kozlov (Closes: #721254).
* Installs httpd/keystone.py in /usr/share/keystone/wsgi.py as requested
  by fc__.
* Removes CVE-2013-2157_Force_simple_Bind_for_authentication.patch now
  applied upstream.
* Refreshes patches.

33. By Thomas Goirand <email address hidden> on 2013-05-10

CVE-2013-2059: Keystone tokens not immediately invalidated when user is
deleted [OSSA 2013-011]. Added backported to Essex patch which I picked-up
from Launchpad. Thanks to the Canonical security team (Closes: #707598).

32. By Thomas Goirand <email address hidden> on 2013-02-19

* CVE-2013-0282: Ensure EC2 users and tenant are enabled (Closes: #700947).
* CVE-2013-0280: Information leak and Denial of Service using XML entities
  (Closes: #700948).

31. By Thomas Goirand <email address hidden> on 2013-02-06

CVE-2013-0247: Keystone denial of service through invalid token requests
(Closes: #699835).

30. By Thomas Goirand <email address hidden> on 2012-11-26

* Applies security patch from upstream: Ensures User is member of tenant in
ec2 validation (Closes: #694433).
* Added Japanese debconf template translation, thanks to victory
<email address hidden> (Closes: #693056).

29. By Thomas Goirand <email address hidden> on 2012-10-10

* Fixes keystone.config which wasn't starting dbconfig-common at first
* Do not use override_dh_fixperms:, sets the permissions of keystone.conf in
the postinst using "install -m" instead of cp -auxf.
* The default db is now sqlite:///var/lib/keystone/keystonedb, since that's
what we run with Folsom, and that it might cause problems as
"keystone.sqlite" isn't a valid MySQL db name. Changed debian/keystone.config

28. By Thomas Goirand <email address hidden> on 2012-10-01

* Fixes sometimes failing keystone.postrm (db_get in some conditions can
return false), and fixed non-consistant indenting.
* Uses /usr/share/keystone/keystone.conf instead of /usr/share/doc/keystone
/keystone.conf.sample for temporary storing the conf file (this was a policy
violation, as the doc folder should never be required).
* Fixes CVE-2012-4457: fails to raise Unauthorized user error for disabled,
CVE-2012-4456: fails to validate tokens in Admin API (Closes: #689210).

27. By Thomas Goirand <email address hidden> on 2012-09-30

Fixes parsing of the SQL connection in keystone.config.

Branch metadata

Branch format:
Branch format 7
Repository format:
Bazaar repository format 2a (needs bzr 1.16 or later)
Stacked on:
This branch contains Public information 
Everyone can see this information.