VulnerableCode Package Details - pkg:deb/debian/keystone@2:10.0.0-9?distro=trixie

Staging Environment: Content and features may be unstable or change without notice.

Search for packages

Package details: pkg:deb/debian/keystone@2:10.0.0-9?distro=trixie

purl	pkg:deb/debian/keystone@2:10.0.0-9?distro=trixie

Vulnerabilities affecting this package (0)

Vulnerability	Summary	Fixed by
This package is not known to be affected by vulnerabilities.

Vulnerabilities fixed by this package (1)

Vulnerability	Summary	Aliases
VCID-96bg-ytf8-9fhd	An authorization-check flaw was discovered in federation configurations of the OpenStack Identity service (keystone). An authenticated federated user could request permissions to a project and unintentionally be granted all related roles including administrative roles.	CVE-2017-2673 GHSA-j36m-hv43-7w7m PYSEC-2018-152

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-16T09:40:18.049477+00:00	Debian Importer	Fixing	VCID-96bg-ytf8-9fhd	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-11T18:26:06.296602+00:00	Debian Importer	Fixing	VCID-96bg-ytf8-9fhd	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-03T07:28:03.513797+00:00	Debian Importer	Fixing	VCID-96bg-ytf8-9fhd	https://security-tracker.debian.org/tracker/data/json	38.1.0