Comment 36 for bug 1677723
Revision history for this message
| Tristan Cacqueray (tristan-cacqueray) wrote Re: federated user gets wrong role (CVE-2017-2673) | #36 |
© 2004
Canonical Ltd.
•
Terms of use
•
Data privacy
•
Contact Launchpad Support
•
Blog
•
Careers
•
System status
•
35a32c5
(Get the code!)
Thanks for the quick feedback, so the impact description proposed in comment #24 is still valid.
Assuming the patches proposed in #29, #30 and #31 are pre-approved, I'll follow-up the pre-OSSA with this new disclosure date: 2017-04-25, 1500 UTC.
@horizon-coresec, please review the proposed patches.