Oval Definition:
oval:org.opensuse.security:def:20124413
Revision Date
:
2020-11-28
Version
:
1
Title
:
CVE-2012-4413
Description
:
OpenStack Keystone 2012.1.3 does not invalidate existing tokens when granting or revoking roles, which allows remote authenticated users to retain the privileges of the revoked roles.
Family
:
unix
Class
:
vulnerability
Status
:
Reference(s)
:
CVE-2012-4413
SUSE-SU-2012:1206-1
SUSE-SU-2012:1352-1
Platform(s)
:
SUSE OpenStack Cloud 6
Product(s)
:
Definition Synopsis
SUSE OpenStack Cloud 6 is installed
AND
Package Information
openstack-keystone-8.0.2~a0~dev8-1 is installed
OR
python-keystone-8.0.2~a0~dev8-1 is installed
BACK