VulnerableCode Package Details - pkg:alpm/archlinux/keystone@0.9.2-1

Staging Environment: Content and features may be unstable or change without notice.

Search for packages

Package details: pkg:alpm/archlinux/keystone@0.9.2-1

Essentials
History (1)

purl	pkg:alpm/archlinux/keystone@0.9.2-1

Next non-vulnerable version	None.
Latest non-vulnerable version	None.
Risk	4.5

Vulnerabilities affecting this package (1)

Vulnerability	Summary	Fixed by
VCID-93vc-hgec-nfe6 Aliases: CVE-2021-3563 GHSA-cc99-whm5-mmq3	Openstack Keystone Incorrect Authorization vulnerability A flaw was found in openstack-keystone, only the first 72 characters of an application secret are verified allowing attackers bypass some password complexity which administrators may be counting on. The highest threat from this vulnerability is to data confidentiality and integrity. A [patch](https://opendev.org/openstack/keystone/commit/7859ed26003858ebfd9a5e866b43f1a6a9e83dca) is available.	There are no reported fixed by versions.

Vulnerabilities fixed by this package (0)

Vulnerability	Summary	Aliases
This package is not known to fix vulnerabilities.

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-01T18:26:45.545681+00:00	Arch Linux Importer	Affected by	VCID-93vc-hgec-nfe6	https://security.archlinux.org/AVG-1979	38.0.0