Ubuntu Update For Keystone USN-2406-1 Network Vulnerability

Summary

Check the version of keystone

Solution

Please Install the Updated Packages.

Insight

Brant Knudson discovered that OpenStack Keystone did not properly perform input sanitization when performing endpoint catalog substitution. A remote attacker with privileged access for creating endpoints could exploit this to obtain sensitive information.

Affected

keystone on Ubuntu 14.04 LTS

Detection

Get the installed version with the help of detect NVT and check if the version is vulnerable or not.

Severity

Classification

CVE CVE-2014-3621
CVSS Base Score: 4.0
AV:N/AC:L/Au:S/C:P/I:N/A:N

Related Vulnerabilities

Ubuntu Update for cmake vulnerabilities USN-890-6
Ubuntu Update for dbus USN-1576-2
Ubuntu Update for cups, cupsys vulnerabilities USN-906-1
Ubuntu Update for acpi-support USN-2297-1
Ubuntu Update for curl USN-1801-1

Ubuntu Update for keystone USN-2406-1

Take action and discover your vulnerabilities