CVE-2013-2014
EPSS 2.4%OpenStack Identity (Keystone) Denial of Service
Published: 5/13/2022Modified: 5/19/2024
Description
OpenStack Identity (Keystone) before 2013.1 allows remote attackers to cause a denial of service (memory consumption and crash) via multiple long requests.
Affected packages (2)
- Debian/keystonefrom 0, < 2013.1.1-2
- PyPI/keystonefrom 0, < 8.0.0a0
References (9)
- ADVISORYhttps://nvd.nist.gov/vuln/detail/CVE-2013-2014
- ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2013-2014
- WEBhttp://lists.fedoraproject.org/pipermail/package-announce/2013-July/111914.html
- WEBhttps://bugs.launchpad.net/keystone/+bug/1098177
- WEBhttps://bugs.launchpad.net/keystone/+bug/1099025
- WEBhttp://secunia.com/advisories/53397
- WEBhttps://exchange.xforce.ibmcloud.com/vulnerabilities/84347
- WEBhttps://github.com/openstack/keystone/commit/7691276b869a86c2b75631d5bede9f61e030d9d8
- WEBhttp://www.securityfocus.com/bid/59936