Launchpad CVE tracker

CVE 2013-2006

OpenStack Identity (Keystone) Grizzly 2013.1.1, when DEBUG mode logging is enabled, logs the (1) admin_token and (2) LDAP password in plaintext, which allows local users to obtain sensitive by reading the log file.

Related bugs and status

CVE-2013-2006 (Candidate) is related to these bugs:

Bug #1172195: admin_token and LDAP password show up in log in DEBUG mode

Summary				In	Importance	Status
	1172195	admin_token and LDAP password show up in log in DEBUG mode		OpenStack Identity (keystone)	Low	Fix Released
	1172195	admin_token and LDAP password show up in log in DEBUG mode		OpenStack Identity (keystone) grizzly	Low	Fix Released

See the

CVE page on Mitre.org for more details.

References

MISC: http://www.securityfoc...
MISC: http://lists.fedorapro...
MISC: http://lists.fedorapro...
MISC: http://rhn.redhat.com/...
MISC: http://www.openwall.co...
MISC: http://www.openwall.co...
MISC: https://bugs.launchpad...
MISC: https://bugs.launchpad...
MISC: https://github.com/ope...

Launchpad.net

CVE 2013-2006

Related bugs and status

Related bugs

References