Upstream information
Description
OpenStack Keystone Essex 2012.1.3 and earlier, Folsom 2012.2.3 and earlier, and Grizzly grizzly-2 and earlier allows remote attackers to cause a denial of service (disk consumption) via many invalid token requests that trigger excessive generation of log entries.SUSE information
Overall state of this security issue: Resolved
This issue is currently rated as having moderate severity.
National Vulnerability Database | |
---|---|
Base Score | 5 |
Vector | AV:N/AC:L/Au:N/C:N/I:N/A:P |
Access Vector | Network |
Access Complexity | Low |
Authentication | None |
Confidentiality Impact | None |
Integrity Impact | None |
Availability Impact | Partial |
- SUSE-SU-2013:0402-1, published Wed Mar 6 15:04:38 MST 2013
List of released packages
Product(s) | Fixed package version(s) | References |
---|---|---|
SUSE Cloud 1.0 |
|
Builds SAT Patch Nr: 7314 |
openSUSE 12.3 |
| Patchnames: openSUSE-2013-237 |