-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
- -------------------------------------------------------------------------
Debian Security Advisory DSA-6331-1 [email protected]
https://www.debian.org/security/ Moritz Muehlenhoff
June 08, 2026 https://www.debian.org/security/faq
- -------------------------------------------------------------------------
Package : keystone
CVE ID : CVE-2026-42998 CVE-2026-42999 CVE-2026-43000
CVE-2026-43001 CVE-2026-44394
Multiple vulnerabilities were discovered in Keystone, the OpenStack
identity service, which may result in authorisation bypass, privilege
escalation, user impersonation or incomplete termination of access
privileges.
For the oldstable distribution (bookworm), these problems have been fixed
in version 2:22.0.2-0+deb12u3. This update also include two fixes
already uploaded to be included in the final Bookworm point release
(CVE-2026-40683, CVE-2026-33551).
For the stable distribution (trixie), these problems have been fixed in
version 2:27.0.0-3+deb13u4. This update also include two fixes
already uploaded to be included in the next Trixie point release
(CVE-2026-40683, CVE-2026-33551).
We recommend that you upgrade your keystone packages.
For the detailed security status of keystone please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/keystone
Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/
Mailing list: [email protected]
-----BEGIN PGP SIGNATURE-----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=ueM8
-----END PGP SIGNATURE-----