CVE-2013-4222

描述

OpenStack Identity (Keystone) Folsom, Grizzly 2013.1.3 and earlier, and Havana before havana-3 does not properly revoke user tokens when a tenant is disabled, which allows remote authenticated users to retain access via the token.

受影響套件(1)

• Debian/keystonefrom 0, < 2013.1.3-1

參考連結(1)

• ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2013-4222