OpenStack Security Advisory

Bug #1100279
Activity log

Activity log for bug #1100279

Date	Who	What changed	Old value	New value	Message
2013-01-16 13:40:56	Thierry Carrez	bug			added bug
2013-01-16 13:41:12	Thierry Carrez	bug			added subscriber OpenStack Vulnerability Management team
2013-01-16 13:41:27	Thierry Carrez	bug			added subscriber Joseph Heck
2013-01-16 13:41:34	Thierry Carrez	bug			added subscriber Dan Prince
2013-01-16 15:28:13	Thierry Carrez	bug			added subscriber Jonathan Murray
2013-01-18 14:10:12	Thierry Carrez	bug			added subscriber Dolph Mathews
2013-01-19 15:56:48	Dolph Mathews	keystone: assignee		Dolph Mathews (dolph)
2013-01-19 15:56:51	Dolph Mathews	keystone: status	New	Confirmed
2013-01-22 13:35:48	Mark McLoughlin	keystone: milestone		2012.2.3
2013-01-25 16:00:49	Mark McLoughlin	keystone: milestone	2012.2.3
2013-01-30 15:34:52	Thierry Carrez	keystone: importance	Undecided	High
2013-01-30 15:38:52	Thierry Carrez	keystone: status	Confirmed	Triaged
2013-02-01 09:11:06	Thierry Carrez	bug			added subscriber Stuart Stent
2013-02-19 09:04:27	Thierry Carrez	cve linked		2013-1665
2013-02-19 09:05:44	Thierry Carrez	summary	Local file leak through entities in XML requests	Local file leak through entities in XML requests (CVE-2013-1665)
2013-02-19 09:05:56	Thierry Carrez	bug			added subscriber OpenStack Stable Branch Maintainers
2013-02-19 09:06:07	Thierry Carrez	bug			added subscriber Canonical Security Team
2013-02-19 10:34:30	Thierry Carrez	nominated for series		keystone/essex
2013-02-19 10:34:30	Thierry Carrez	bug task added		keystone/essex
2013-02-19 10:34:30	Thierry Carrez	nominated for series		keystone/folsom
2013-02-19 10:34:30	Thierry Carrez	bug task added		keystone/folsom
2013-02-19 10:34:43	Thierry Carrez	keystone/essex: status	New	Triaged
2013-02-19 10:34:45	Thierry Carrez	keystone/essex: importance	Undecided	High
2013-02-19 10:34:47	Thierry Carrez	keystone/folsom: status	New	Triaged
2013-02-19 10:34:49	Thierry Carrez	keystone/folsom: importance	Undecided	High
2013-02-19 15:00:41	Thierry Carrez	information type	Private Security	Public Security
2013-02-19 15:06:52	OpenStack Infra	keystone/folsom: status	Triaged	In Progress
2013-02-19 15:06:52	OpenStack Infra	keystone/folsom: assignee		Dolph Mathews (dolph)
2013-02-19 15:07:10	OpenStack Infra	keystone: status	Triaged	In Progress
2013-02-19 15:09:20	OpenStack Infra	keystone/essex: status	Triaged	In Progress
2013-02-19 15:09:20	OpenStack Infra	keystone/essex: assignee		Dolph Mathews (dolph)
2013-02-19 15:23:28	Mark McLoughlin	keystone/folsom: milestone		2012.2.4
2013-02-19 20:08:18	OpenStack Infra	keystone/folsom: status	In Progress	Fix Committed
2013-02-20 10:26:40	OpenStack Infra	keystone: status	In Progress	Fix Committed
2013-02-20 10:26:53	OpenStack Infra	keystone/essex: status	In Progress	Fix Committed
2013-02-21 08:42:46	Thierry Carrez	keystone: status	Fix Committed	Fix Released
2013-02-21 08:42:46	Thierry Carrez	keystone: milestone		grizzly-3
2013-02-21 22:32:25	Launchpad Janitor	branch linked		lp:ubuntu/precise-security/keystone
2013-02-21 22:32:27	Launchpad Janitor	branch linked		lp:ubuntu/quantal-security/keystone
2013-02-22 12:33:36	Thierry Carrez	removed subscriber OpenStack Vulnerability Management team
2013-04-04 09:29:45	Thierry Carrez	keystone: milestone	grizzly-3	2013.1
2013-04-11 19:21:30	Alan Pevec	keystone/folsom: status	Fix Committed	Fix Released
2013-05-24 12:55:25	Thierry Carrez	summary	Local file leak through entities in XML requests (CVE-2013-1665)	[OSSA 2013-004] Local file leak through entities in XML requests (CVE-2013-1665)
2013-05-24 12:55:39	Thierry Carrez	bug task added		ossa
2013-05-24 12:55:49	Thierry Carrez	ossa: status	New	Fix Released
2013-05-24 12:55:49	Thierry Carrez	ossa: assignee		Thierry Carrez (ttx)
2013-12-16 14:08:48	Curtis Hovey	removed subscriber Registry Administrators
2014-06-04 23:32:05	Morgan Fainberg	keystone/essex: status	Fix Committed	Fix Released