VulnerableCode Package Details - pkg:deb/debian/keystone@2:27.0.0-3%2Bdeb13u1

Staging Environment: Content and features may be unstable or change without notice.

Search for packages

Package details: pkg:deb/debian/keystone@2:27.0.0-3%2Bdeb13u1

purl	pkg:deb/debian/keystone@2:27.0.0-3%2Bdeb13u1

Next non-vulnerable version	2:29.0.0-2
Latest non-vulnerable version	2:29.0.0-2
Risk	1.6

Vulnerabilities affecting this package (1)

Vulnerability	Summary	Fixed by
VCID-6wj2-abbb-xqf6 Aliases: CVE-2026-33551 GHSA-4phw-6824-6cfp		2:29.0.0-2 Affected by 0 other vulnerabilities.

Vulnerabilities fixed by this package (1)

Vulnerability	Summary	Aliases
VCID-93vc-hgec-nfe6	Openstack Keystone Incorrect Authorization vulnerability A flaw was found in openstack-keystone, only the first 72 characters of an application secret are verified allowing attackers bypass some password complexity which administrators may be counting on. The highest threat from this vulnerability is to data confidentiality and integrity. A [patch](https://opendev.org/openstack/keystone/commit/7859ed26003858ebfd9a5e866b43f1a6a9e83dca) is available.	CVE-2021-3563 GHSA-cc99-whm5-mmq3

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-16T09:22:01.396816+00:00	Debian Importer	Affected by	VCID-6wj2-abbb-xqf6	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T08:48:11.405796+00:00	Debian Importer	Fixing	VCID-93vc-hgec-nfe6	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-13T06:13:06.235106+00:00	Debian Importer	Affected by	VCID-6wj2-abbb-xqf6	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-13T05:46:55.722139+00:00	Debian Importer	Fixing	VCID-93vc-hgec-nfe6	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-08T18:44:22.710743+00:00	Debian Importer	Fixing	VCID-93vc-hgec-nfe6	https://security-tracker.debian.org/tracker/data/json	38.1.0