lp:debian/jessie/keystone
- Get this branch:
- bzr branch lp:debian/jessie/keystone
Branch information
- Owner:
- Ubuntu branches
- Status:
- Development
Recent revisions
- 35. By Thomas Goirand <email address hidden>
-
* CVE-2013-4294: Fixes token revocation failure using Keystone memcache/KVS
backends using upstream patch (Closes: #722505).
* Added French debconf translation thanks to Julien Patriarca
<email address hidden> (Closes: #722419). - 34. By Thomas Goirand <email address hidden>
-
* New upstream point release.
* Added ja.po Debconf translation thanks to victory <email address hidden>,
and several DDs (Closes: #717707).
* Several Debconf translations updates:
- Danish, thanks to Joe Dalton (Closes: #720007).
- Portuguese, thanks to the Traduz team (Closes: #720067).
- Italian, thanks to Beatrice Torracca (Closes: #720934).
- Czech, thanks to Michal Šimůnek (Closes: #721034).
- Russian, thanks to Yuri Kozlov (Closes: #721254).
* Installs httpd/keystone.py in /usr/share/keystone/ wsgi.py as requested
by fc__.
* Removes CVE-2013-2157_Force_ simple_ Bind_for_ authentication. patch now
applied upstream.
* Refreshes patches. - 33. By Thomas Goirand <email address hidden>
-
CVE-2013-2059: Keystone tokens not immediately invalidated when user is
deleted [OSSA 2013-011]. Added backported to Essex patch which I picked-up
from Launchpad. Thanks to the Canonical security team (Closes: #707598). - 32. By Thomas Goirand <email address hidden>
-
* CVE-2013-0282: Ensure EC2 users and tenant are enabled (Closes: #700947).
* CVE-2013-0280: Information leak and Denial of Service using XML entities
(Closes: #700948). - 31. By Thomas Goirand <email address hidden>
-
CVE-2013-0247: Keystone denial of service through invalid token requests
(Closes: #699835). - 30. By Thomas Goirand <email address hidden>
-
* Applies security patch from upstream: Ensures User is member of tenant in
ec2 validation (Closes: #694433).
* Added Japanese debconf template translation, thanks to victory
<email address hidden> (Closes: #693056). - 29. By Thomas Goirand <email address hidden>
-
* Fixes keystone.config which wasn't starting dbconfig-common at first
setup.
* Do not use override_dh_fixperms: , sets the permissions of keystone.conf in
the postinst using "install -m" instead of cp -auxf.
* The default db is now sqlite:///var/ lib/keystone/ keystonedb, since that's
what we run with Folsom, and that it might cause problems as
"keystone.sqlite" isn't a valid MySQL db name. Changed debian/keystone. config
accordingly. - 28. By Thomas Goirand <email address hidden>
-
* Fixes sometimes failing keystone.postrm (db_get in some conditions can
return false), and fixed non-consistant indenting.
* Uses /usr/share/keystone/ keystone. conf instead of /usr/share/ doc/keystone
/keystone.conf.sample for temporary storing the conf file (this was a policy
violation, as the doc folder should never be required).
* Fixes CVE-2012-4457: fails to raise Unauthorized user error for disabled,
CVE-2012-4456: fails to validate tokens in Admin API (Closes: #689210). - 27. By Thomas Goirand <email address hidden>
-
Fixes parsing of the SQL connection in keystone.config.
Branch metadata
- Branch format:
- Branch format 7
- Repository format:
- Bazaar repository format 2a (needs bzr 1.16 or later)
- Stacked on:
- lp:debian/keystone