| Bug | wheezy | jessie | stretch | sid | Description |
|---|
| CVE-2015-7546 | vulnerable (no DSA) | vulnerable (no DSA) | fixed | fixed | The identity service in OpenStack Identity (Keystone) before 2015.1.3 ... |
| CVE-2015-3646 | fixed | vulnerable (no DSA) | fixed | fixed | OpenStack Identity (Keystone) before 2014.1.5 and 2014.2.x before ... |
| CVE-2014-2237 | vulnerable (no DSA) | fixed | fixed | fixed | The memcache token backend in OpenStack Identity (Keystone) 2013.1 ... |
| CVE-2014-0105 | vulnerable (no DSA) | fixed | fixed | fixed | The auth_token middleware in the OpenStack Python client library for ... |
| CVE-2013-2255 | vulnerable (no DSA) | fixed | fixed | fixed | Inconsistent and non-validating HTTPS client |
| CVE-2013-2014 | vulnerable (no DSA) | fixed | fixed | fixed | OpenStack Identity (Keystone) before 2013.1 allows remote attackers to ... |
| CVE-2013-2006 | vulnerable (no DSA) | fixed | fixed | fixed | OpenStack Identity (Keystone) Grizzly 2013.1.1, when DEBUG mode ... |
| CVE-2013-0270 | vulnerable (no DSA) | fixed | fixed | fixed | OpenStack Keystone Grizzly before 2013.1, Folsom, and possibly earlier ... |
| Bug | Description |
|---|
| CVE-2017-2673 | federated user gets wrong role |
| CVE-2016-4911 | The Fernet Token Provider in OpenStack Identity (Keystone) 9.0.x ... |
| CVE-2014-5253 | OpenStack Identity (Keystone) 2014.1.x before 2014.1.2.1 and Juno ... |
| CVE-2014-5252 | The V3 API in OpenStack Identity (Keystone) 2014.1.x before 2014.1.2.1 ... |
| CVE-2014-5251 | The MySQL token driver in OpenStack Identity (Keystone) 2014.1.x ... |
| CVE-2014-3621 | The catalog url replacement in OpenStack Identity (Keystone) before ... |
| CVE-2014-3520 | OpenStack Identity (Keystone) before 2013.2.4, 2014.x before 2014.1.2, ... |
| CVE-2014-3476 | OpenStack Identity (Keystone) before 2013.2.4, 2014.1 before 2014.1.2, ... |
| CVE-2014-2828 | The V3 API in OpenStack Identity (Keystone) 2013.1 before 2013.2.4 and ... |
| CVE-2014-0204 | OpenStack Identity (Keystone) before 2014.1.1 does not properly handle ... |
| CVE-2013-6391 | The ec2tokens API in OpenStack Identity (Keystone) before Havana ... |
| CVE-2013-4477 | The LDAP backend in OpenStack Identity (Keystone) Grizzly and Havana, ... |
| CVE-2013-4294 | The (1) mamcache and (2) KVS token backends in OpenStack Identity ... |
| CVE-2013-4222 | OpenStack Identity (Keystone) Folsom, Grizzly 2013.1.3 and earlier, ... |
| CVE-2013-2157 | OpenStack Keystone Folsom, Grizzly before 2013.1.3, and Havana, when ... |
| CVE-2013-2104 | python-keystoneclient before 0.2.4, as used in OpenStack Keystone ... |
| CVE-2013-2059 | OpenStack Identity (Keystone) Folsom 2012.2.4 and earlier, Grizzly ... |
| CVE-2013-1977 | OpenStack devstack uses world-readable permissions for keystone.conf, ... |
| CVE-2013-1865 | OpenStack Keystone Folsom (2012.2) does not properly perform ... |
| CVE-2013-1665 | The XML libraries for Python 3.4, 3.3, 3.2, 3.1, 2.7, and 2.6, as used ... |
| CVE-2013-1664 | The XML libraries for Python 3.4, 3.3, 3.2, 3.1, 2.7, and 2.6, as used ... |
| CVE-2013-0282 | OpenStack Keystone Grizzly before 2013.1, Folsom 2012.1.3 and earlier, ... |
| CVE-2013-0247 | OpenStack Keystone Essex 2012.1.3 and earlier, Folsom 2012.2.3 and ... |
| CVE-2012-5571 | OpenStack Keystone Essex (2012.1) and Folsom (2012.2) does not ... |
| CVE-2012-5563 | OpenStack Keystone, as used in OpenStack Folsom 2012.2, does not ... |
| CVE-2012-5483 | tools/sample_data.sh in OpenStack Keystone 2012.1.3, when access to ... |
| CVE-2012-4457 | OpenStack Keystone Essex before 2012.1.2 and Folsom before folsom-3 ... |
| CVE-2012-4456 | The (1) OS-KSADM/services and (2) tenant APIs in OpenStack Keystone ... |
| CVE-2012-4413 | OpenStack Keystone 2012.1.3 does not invalidate existing tokens when ... |
| CVE-2012-3542 | OpenStack Keystone, as used in OpenStack Folsom before folsom-rc1 and ... |
| CVE-2012-3426 | OpenStack Keystone before 2012.1.1, as used in OpenStack Folsom before ... |
| CVE-2012-1572 | |