Download
| Alert*
DSA-4679-1 keystone -- keystone
A vulnerability was found in the EC2 credentials API of Keystone, the OpenStack identity service: Any user authenticated within a limited scope could create an EC2 credential with an escalated permission, such as obtaining "admin" while the user is on a limited "viewer" role.
|