Reviewed: https://review.opendev.org/c/openstack/ossa/+/967413 Committed: https://opendev.org/openstack/ossa/commit/5bfc10a9df582fd8f6c3e3d082874086de125ecb Submitter: "Zuul (22348)" Branch: master
commit 5bfc10a9df582fd8f6c3e3d082874086de125ecb Author: Jeremy Stanley <[email protected]> Date: Mon Nov 17 18:05:07 2025 +0000 OSSA-2025-002 Errata 1 CVE-2025-65073 has been assigned. Also incorporate unmaintained branch changes which appeared after publication, and a clarification to the description which was previously discussed on the oss-security mailing list: https://www.openwall.com/lists/oss-security/2025/11/05/13 Change-Id: I19991a47adb395f62b207fbc2ff69769e839e986 Signed-off-by: Jeremy Stanley <[email protected]> Related-Bug: #2119646 -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/2119646 Title: [OSSA-2025-002] Unauthenticated access to EC2/S3 token endpoints can grant Keystone authorization (CVE-2025-65073) To manage notifications about this bug go to: https://bugs.launchpad.net/keystone/+bug/2119646/+subscriptions -- ubuntu-bugs mailing list [email protected] https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
