Comment 2 for bug 1050025

Revision history for this message
Thierry Carrez (ttx) wrote : Re: Potential problem with fix for "Revoking a role does not affect existing tokens (CVE-2012-4413)"

Looking at the code, definitely looks like it's not limited by tenant :/