Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2013-2104

Опубликовано: 21 янв. 2014
Источник: debian

Описание

python-keystoneclient before 0.2.4, as used in OpenStack Keystone (Folsom), does not properly check expiry for PKI tokens, which allows remote authenticated users to (1) retain use of a token after it has expired, or (2) use a revoked token once it expires.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
keystonenot-affectedpackage
keystonenot-affectedwheezypackage
python-keystoneclientfixed1:0.2.5-1package
python-keystoneclientnot-affectedwheezypackage

Примечания

  • Keystone Folsom fix: https://review.openstack.org/#/c/30743/

  • python-keystoneclient fix: https://review.openstack.org/#/c/30742/

  • Starting with 2013.1-1 code in keystone/middleware/auth_token.py moved to python-keystoneclient

Связанные уязвимости

ubuntu логотип

CVE-2013-2104

ubuntu
около 12 лет назад

python-keystoneclient before 0.2.4, as used in OpenStack Keystone (Folsom), does not properly check expiry for PKI tokens, which allows remote authenticated users to (1) retain use of a token after it has expired, or (2) use a revoked token once it expires.

redhat логотип

CVE-2013-2104

redhat
больше 12 лет назад

python-keystoneclient before 0.2.4, as used in OpenStack Keystone (Folsom), does not properly check expiry for PKI tokens, which allows remote authenticated users to (1) retain use of a token after it has expired, or (2) use a revoked token once it expires.

nvd логотип

CVE-2013-2104

nvd
около 12 лет назад

python-keystoneclient before 0.2.4, as used in OpenStack Keystone (Folsom), does not properly check expiry for PKI tokens, which allows remote authenticated users to (1) retain use of a token after it has expired, or (2) use a revoked token once it expires.

github логотип

GHSA-4rrr-j7ff-r844

CVSS3: 7.5
github
больше 3 лет назад

python-keystoneclient missing expiration check in PKI token validation